Which versions of package-uploader are malicious?

The following npm versions of package-uploader are flagged malicious: 1.3.25. Treat any of these as compromised.

How do I remediate package-uploader if I installed it?

Remove package-uploader from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is package-uploader part of a known attack campaign?

Yes — package-uploader is associated with the IN-MAL-2026-006841 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect package-uploader in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking package-uploader and packages like it before any post-install script runs.

Malicious package

package-uploadernpm

Malicious code in package-uploader (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5932

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall package-uploader

What this malware does

[email protected] ships an install-hook.js that runs automatically as the npm postinstall script (package.json declares "postinstall": "node install-hook.js"). The hook embeds a 383KB base64 string (LAUNCHER_BIN_BASE64), XOR-decrypts it with key 0x42, writes the result to %TEMP%/tmp_<timestamp>.exe, and launches it detached via spawn('cmd', ['/c', 'start', '/b', TEMP_EXE], { detached: true }) — a classic obfuscated-binary dropper executed on every npm install. After dropping the payload, a detached cleanup process waits ~90 seconds and then edits the victim's package.json and package-lock.json to remove the dependency entry (the cleanup code references the name mailconfirmer, indicating the campaign re-publishes under rotating names) and recursively deletes the installed module directory; if direct deletion fails, it registers a Windows scheduled task via schtasks /create to remove the directory later. The package's stated purpose is a UI navbar library and the index.js entry point exports only theme colors as a decoy — completely unrelated to executing a Windows binary. The combination of name/description/decoy-main mismatch, embedded XOR-encrypted PE payload, automatic postinstall execution, and anti-forensics manifest tampering is an unambiguous supply-chain dropper.

Malicious versions

1 flagged

1.3.25

Indicators of compromise (SHA-256)

69b86134d9cd019c2d8ad172eed54cd4a48839d69ed2c6af52b79ef5080da765

Frequently asked questions

No. package-uploader on npm has been identified as a malicious package (version 1.3.25 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006841

References

npmjs.com

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection