Spectra Assure
Community
Docs

noblox.js-sshv4.2.3

malicious
Research
Copy SHA256
License: Permissive (MIT)
npm
Homepage
Published: almost 2 years ago
A Node.js API wrapper for Roblox.
Fail
Incident: Malware
4 supply chain attack artifacts
Incidents
Type: malwareReported By: ReversingLabs (Researcher) Reported: almost 2 years ago
Learn more about malware detection
Type: malwareReported By: Community Reported: over 1 year ago
Type: malwareReported By: Community (OpenSSF)Reported: over 1 year ago
Type: malwareReported By: Community (GitHub Advisory)Reported: over 1 year ago
Type: malwareReported By: Community (Snyk)Reported: over 1 year ago

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 medium severity vulnerabilities
Hardening
No application hardening issues

Threats

Tampering
No evidence of software tampering
Malware
4 supply chain attack artifacts

Issues

See all issues
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of malicious files through analyst-vetted file reputation.
threats
high
Detected presence of known software supply chain attack artifacts.
threats
medium
Detected presence of files containing URLs that reside in regions with EU export restrictions.
hunting
medium
Detected presence of obfuscated software components.
hunting

Behaviors

See all behaviors
Contains potentially obfuscated code or data.
packer
Contains URLs that link to raw files on GitHub.
network
Contains URLs that reside in regions sanctioned by the European Union.
network
Calculates the MD5 hash of data.
file
Queries the value of an environment variable.
search

Vulnerabilities

critical0
high0
medium1
low0

Downloads

353
Recorded Downloads Since 2021

Maintenance

1
Contributor

Dependencies

9
Declared Dependencies

Dependents

1
Dependents

Issues per Version Graph

Scanned 6 days ago