Which versions of @zimmo/last_search are malicious?

The following npm versions of @zimmo/last_search are flagged malicious: 99.0.0, 99.0.1. Treat any of these as compromised.

How do I remediate @zimmo/last_search if I installed it?

Remove @zimmo/last_search from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is @zimmo/last_search part of a known attack campaign?

Yes — @zimmo/last_search is associated with the IN-MAL-2026-005091, IN-MAL-2026-005092, IN-MAL-2026-005145, IN-MAL-2026-005144 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect @zimmo/last_search in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking @zimmo/last_search and packages like it before any post-install script runs.

Malicious package

@zimmo/last_searchnpm

Malicious code in @zimmo/last_search (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5328

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall @zimmo/last_search

What this malware does

The package's preinstall hook runs index.js on every npm install. The script collects host identity data — os.hostname(), os.userInfo().username, __dirname, process.cwd(), and the package name — and ships it two ways: (1) hex-encoded into a DNS subdomain resolved against *.d8jbmnsqcfu78dfs8vdg34ohqhirb4pbg.oast.live (an interactsh out-of-band canary), and (2) POSTed as JSON to the hardcoded bare IP http://172.201.213.59:9090/c. The package has no legitimate functionality — index.js is an exfiltration-only payload. The inflated 99.0.0 version under the @zimmo scope, combined with the "security research" description and recon-only payload, is the canonical dependency-confusion shape: if a build pipeline at Zimmo (or a misconfigured installer) resolves the @zimmo/last_search name from the public npm registry instead of an internal one, the attacker receives internal hostnames, usernames, and install paths as reconnaissance for a follow-on attack.

The OpenSSF Package Analysis project identified '@zimmo/last_search' @ 99.0.1 (npm) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.

Malicious versions

2 flagged

99.0.099.0.1

Indicators of compromise (SHA-256)

daa94c8fc8cb74e07464808cfbe936d15c1f9814981aaa7c41264d6246edfae4

b0e62dfc62acaf0f69f0018d2bee0f4527101e48f40f5ada130c121c63ab3eb4

784a754db3832d4780cf81f16822bee7ae74ad6a179ea9ad15bc6b1242c21b76

214ca80a464f10ce622ce1308b40f070a5e86690c8450e3b18da1379693891fc

dbddb0ebcd12d13ef5eb1f2cb4e0e41f49b00808e4d23a15b5c22b7ecb23da4d

Frequently asked questions

No. @zimmo/last_search on npm has been identified as a malicious package (versions 99.0.0, 99.0.1 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-005091IN-MAL-2026-005092IN-MAL-2026-005145IN-MAL-2026-005144

References

Credits

Amazon Inspector · finder
OpenSSF: Package Analysis · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection