{"id":"MAL-2026-6559","summary":"Malicious code in lc-chatbot (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (81ca324fdc9c4ba5536abcd43972f1a506f4af99ace29447b66a17947b1b8606)\npackage.json declares both preinstall and postinstall scripts that run `node callback.js`, so the callback fires automatically on `npm install` with no user interaction. callback.js collects identifying data from the installer's machine — os.hostname(), os.userInfo().username, process.cwd(), the consuming package name@version, and process.platform/arch — and transmits it to two attacker-controlled collectors: (1) a DNS lookup whose label is the hex-encoded hostname under a canarytokens.com subdomain, and (2) an HTTPS GET to https://eolxuw8fddeyjj8.m.pipedream.net carrying the collected fields as query parameters. The callback wraps all I/O in try/catch and forces process.exitCode=0, so the install completes silently even if the network call fails, hiding the beacon from the installer. The package self-describes as a dependency-confusion proof-of-concept, but the behavior is genuine install-time exfiltration of installer-identifying data and harms any machine that runs `npm install`.\n\n## Source: ossf-package-analysis (10b9ccdaec6709f86d79c1dec1b8fbfa87926dedbdc1e2355979308e7c516f3e)\nThe OpenSSF Package Analysis project identified 'lc-chatbot' @ 0.9.0-rc.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2026-06-29T07:16:44.675956118Z","published":"2026-06-28T13:05:55Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2026-06-28T13:05:55Z","sha256":"10b9ccdaec6709f86d79c1dec1b8fbfa87926dedbdc1e2355979308e7c516f3e","source":"ossf-package-analysis","import_time":"2026-06-28T13:36:05.411260521Z","versions":["0.9.0-rc.0"]},{"id":"IN-MAL-2026-007743","source":"amazon-inspector","ranges":[{"events":[{"introduced":"0"}],"type":"SEMVER"}],"modified_time":"2026-06-29T05:32:14Z","import_time":"2026-06-29T07:09:09.42843666Z","versions":["0.9.0-rc.0"],"sha256":"81ca324fdc9c4ba5536abcd43972f1a506f4af99ace29447b66a17947b1b8606"}]},"references":[{"type":"PACKAGE","url":"https://www.npmjs.com/package/lc-chatbot/v/0.9.0-rc.0"}],"affected":[{"package":{"name":"lc-chatbot","ecosystem":"npm","purl":"pkg:npm/lc-chatbot"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"versions":["0.9.0-rc.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/lc-chatbot/MAL-2026-6559.json","indicators":{"package_integrity":[{"hashes":{"sha512_sri":"sha512-E6cBS04zwWZqm+wUfWQ1Kg1rTXfSnJEKrVFVu3xaq1ckezTo94M7HPKIFKGPKkt4lf9oVZGwNnuaM/QGHc6I1A==","sha1":"41f14c35c8cacde5bb997af29f4864386a631e02"},"filename":"lc-chatbot-0.9.0-rc.0.tgz"}],"evidence_files":[{"sha256":"5552a7029e119325c9623ab04ba83ea9d73d793a75fdabae1a7a5a9929095d1d","path":"callback.js","tlsh":"024132665cb8502018a9f17a83af1216d5a3f3230bc9dfe0bc5de2509f70535025e9f4"},{"sha256":"99663291c19bc4c45baa1dbd5225cf6beb7c352cece2a5f4bd2d9624d946bc23","path":"package.json","tlsh":"3ee068384a238e232cf0bfd2083652562d614e878c08780502a7412882cd7f606ff27f"}]},"cwes":[{"name":"Embedded Malicious Code","cweId":"CWE-506","description":"The product contains code that appears to be malicious in nature."}]}}],"schema_version":"1.7.5","credits":[{"name":"Amazon Inspector","contact":["inspector-research@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}