Which versions of mailconfirmer are malicious?

The following npm versions of mailconfirmer are flagged malicious: 3.2.34, 3.2.35, 3.2.36, 3.2.38, 3.3.11, 3.3.12, 3.3.13. Treat any of these as compromised.

How do I remediate mailconfirmer if I installed it?

Remove mailconfirmer from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is mailconfirmer part of a known attack campaign?

Yes — mailconfirmer is associated with the IN-MAL-2026-006411, IN-MAL-2026-006407, IN-MAL-2026-006405, IN-MAL-2026-006410, IN-MAL-2026-006406, IN-MAL-2026-006408, IN-MAL-2026-006409, IN-MAL-2026-006404 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect mailconfirmer in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking mailconfirmer and packages like it before any post-install script runs.

Malicious package

mailconfirmernpm

Malicious code in mailconfirmer (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5750

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall mailconfirmer

What this malware does

The package advertises itself as an email confirmation/verification utility, but the shipped code contains no such functionality — index.js exports only a single getThemeColor function returning a color string. The real behavior is in install-hook.js, executed via the postinstall lifecycle script. It writes a.git/hooks/post-checkout hook into the installer's local repository whose contents are powershell -NoP -NonI -W Hidden -Enc <base64>. The base64 blob decodes to UTF-16LE PowerShell that downloads https://github.com/Dimitrijenco/Sticky_note/releases/download/v2/launcher.bin, XOR-decrypts the response with key 0x42, writes the result to %TEMP%\tmp.exe, executes it hidden via Start-Process -WindowStyle Hidden, sleeps, and deletes it. The dropper URL is hosted on an unrelated third-party GitHub account whose repository name (Sticky_note) is unrelated to the package's stated purpose. Two layers of obfuscation (base64-encoded UTF-16LE PowerShell + XOR-encrypted payload) are used to hide both the destination and the executed bytes. The persistence mechanism — a git post-checkout hook — re-triggers the download-and-execute path on every future git checkout in any repository where the package was installed, surviving package uninstall.

Malicious versions

7 flagged

3.2.343.2.353.2.363.2.383.3.113.3.123.3.13

Indicators of compromise (SHA-256)

ab3cad84eca57c86cc11c7bdd3e072acac609d4f034da4f5c72b38461167ee78

de9ef8c8cab85ca4e823488834021667649cf2de0712bf45f5e8018160b4263f

e52f457c75436cfdff28cbf77522b7fd1e8c4470cee05d2058b6dbb3ad3c9adb

eede6f1c9fae38c807231ada52a36f68c02665da89e136a5067c7b2fbd2e278d

fa2d157af30e6767ee02f791a0371ca0be7f3f9d4e8b3ebb949ef7f7c0b3a1aa

fbadb3bfdda7f6b7d425f83f9d5007a59d92c19c75fee43181a471a5627fac7f

b407412bea355d5ff296e45c1b9fc4afdcd20624f98a8bf3f32cb37ef64b2f41

d66737fba6d2c0034f50352ebfa965356b9f75500f2adc19833be3628b7b9430

Frequently asked questions

No. mailconfirmer on npm has been identified as a malicious package (versions 3.2.34, 3.2.35, 3.2.36, 3.2.38, 3.3.11, 3.3.12, 3.3.13 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006411IN-MAL-2026-006407IN-MAL-2026-006405IN-MAL-2026-006410IN-MAL-2026-006406IN-MAL-2026-006408IN-MAL-2026-006409IN-MAL-2026-006404

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection