{"id":"MAL-2025-44705","summary":"Malicious code in internal-helper-utils (npm)","details":"The package communicates with a domain associated with malicious activity.\n\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2025-09-26T11:06:45Z","published":"2025-09-01T20:35:37Z","database_specific":{"malicious-packages-origins":[{"versions":["1.0.0"],"source":"reversing-labs","id":"RLMA-2025-05044","modified_time":"2025-09-26T09:33:52Z","import_time":"2025-09-26T11:05:55.032723818Z","sha256":"d935a0b55fd25b58918f3bfa58b78e6a27cfe5ef0f472061ffb677a43746fe61"}]},"affected":[{"package":{"name":"internal-helper-utils","ecosystem":"npm","purl":"pkg:npm/internal-helper-utils"},"ranges":[{"type":"SEMVER","events":[{"introduced":"1.0.0"}]}],"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/internal-helper-utils/MAL-2025-44705.json"}}],"schema_version":"1.7.3","credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}