express-timer
MAL-2026-5555
npmbackdoor6/11/2026
Description
Malicious code in express-timer (npm)
Indicators of Compromise
SHA256 Hashes (6)
10e5427085b867032f1b16630f04e82e89945022633c39475f30c7855b0fe76f
6bc13771ab814ced3a28c13a753e6c12a6c1cf760883f034a5a02a867b4ffc8d
7c2b03ef5914ee50d649906c3c1607f9a02334a73b93da3f198ec936a43e4fa7
18332a53ad8e0030325aea1b7bbdc537a1ee4112d4ed73e464d5181369ee4509
19d2dea0d7ac642b1921e0ac1bab9fa5ac543437d783764952da75a4b1fba33b
5b4fd1651a86f29904cbafe5a1d50f51a3108413ce0fef61fd92cfc61dedc683
References (6)
https://www.npmjs.com/package/express-timer/v/1.0.1OSVhttps://www.npmjs.com/package/express-timer/v/1.0.4OSVhttps://www.npmjs.com/package/express-timer/v/1.0.2OSVhttps://www.npmjs.com/package/express-timer/v/1.0.3OSVhttps://www.npmjs.com/package/express-timer/v/1.0.5OSVhttps://www.npmjs.com/package/express-timer/v/1.0.6OSV
Details
Ecosystemnpm
Attack Typebackdoor
Published6/11/2026
Quick Actions