@tw-utils/static

MAL-2026-3073

npmmalware4/25/2026

Description

Malicious code in @tw-utils/static (npm)

Indicators of Compromise

SHA256 Hashes (3)

2f01c1a28bafd8675e9d425257b79a93d02b8e718d74b0b9a0c5bd9ea5103fa0

811319f73df72902b8b7426461b160097ab94d9827d09e2515c154b0ccc24dce

c341bf906c2b059e45f297307e95cb02bca93dd073a5cbe0675368008383024e

Details

Ecosystemnpm

Attack Typemalware

Published4/25/2026

Quick Actions

All Incidents npm Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001