react-simple-utils-kit

MAL-2026-6303

npmmalware6/23/2026
Description

Malicious code in react-simple-utils-kit (npm)

Indicators of Compromise
SHA256 Hashes (16)
038aa6bccd8008fec1f309d718e53dd4b89e4ca15a976c6a80652e0dd58a5b58
8886d4d16de552939e01d8bd472dd2b8dce46a0abf77d253cbcb09dae4830373
b0b31ec7c4d366cc5f7f5a46466f414bba1a641964c6b997d30f9220f186bbbd
b1ec8b00031d31e45f8ed1936395bd52f1ea16df4e652521b3732bafdbbff604
bfeef9da283d7f26660e055fd2f70cf71c1231f13a3029971689bf9082098e88
2e293c75200e773ed6bef24f23d483ffc71565dd465336318f240f06be8eb3ff
66fb37d80d5b57c42447704336d28fa810af4c46c2cee5f2abac2452dd3b469b
95a5ed56bbe208d78882a1026d8aa0b9e8659b3a85c1b9a849a0718907e1c342
963d8f444d49da2d58e2c58cceff09bf9c685f38b03fd4286f8521e9b4701b9a
e682e830cea8fa19e03a89aab70edc2259dbd0744d335cfc40de5ca0be2e2ca3
Details
Ecosystemnpm
Attack Typemalware
Published6/23/2026
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001