a4wu

MAL-2026-485

npmmalware1/23/2026

Description

Malicious code in a4wu (npm)

Indicators of Compromise

SHA256 Hashes (2)

dbda459fa895bbd7a94bd12494e3092b3964f21d8a480826313bdb3f7302904b

65f0ae226eb7aef794335d5c42f8f82348461976fcd5188fdb74129e54e36f5a

References (1)

https://github.com/advisories/GHSA-q3gw-cjjf-gqq5OSV

Details

Ecosystemnpm

Attack Typemalware

Published1/23/2026

Affected Versions

Aliases

GHSA-q3gw-cjjf-gqq5

Quick Actions

All Incidents npm Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001