{"id":"MAL-2025-41582","summary":"Malicious code in logger-extjs (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-JS-LOGGEREXTJS-13561402"],"modified":"2025-12-02T10:14:46.525897Z","published":"2025-08-28T07:32:48Z","database_specific":{"malicious-packages-origins":[{"id":"RLMA-2025-04590","import_time":"2025-08-29T06:42:27.69178526Z","modified_time":"2025-08-28T07:32:48Z","sha256":"4b2a9cdae59fd841e34e4981a1070d69fb9872e8fa924cc31de8f41f0568224a","source":"reversing-labs","versions":["1.0.0"]},{"sha256":"a3be990bdde417ff50a7b7b18d1df6971c2d5dc4e12518cc58727e19e86311e0","source":"reversing-labs","id":"RLUA-2025-05865","import_time":"2025-12-02T09:10:06.675448649Z","modified_time":"2025-12-01T13:16:34Z"}]},"references":[{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-JS-LOGGEREXTJS-13561402"},{"type":"ARTICLE","url":"https://socket.dev/blog/north-korea-contagious-interview-campaign-338-malicious-npm-packages"}],"affected":[{"package":{"name":"logger-extjs","ecosystem":"npm","purl":"pkg:npm/logger-extjs"},"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/logger-extjs/MAL-2025-41582.json"}}],"schema_version":"1.7.3","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}