Spectra Assure
Community
Docs

noblox.js-sshv4.2.5

malicious
Research
Copy SHA256
License: Permissive (MIT)
npm
Homepage
Published: over 1 year ago
A Node.js API wrapper for Roblox.
Fail
Incident: Malware
4 supply chain attack artifacts
Incidents
Type: malwareReported By: Community Reported: over 1 year ago
Type: malwareReported By: Community (Snyk)Reported: about 1 year ago
Type: malwareReported By: Community (GitHub Advisory)Reported: over 1 year ago
Type: malwareReported By: Community (OpenSSF)Reported: over 1 year ago
Type: malwareReported By: ReversingLabs (Researcher) Reported: over 1 year ago
Learn more about malware detection

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 medium severity vulnerabilities
Hardening
No application hardening issues

Threats

Tampering
1 suspicious application behaviors
Malware
4 supply chain attack artifacts

Issues

See all issues
high
Detected presence of files containing URLs that reside in regions with export restrictions by the European Union.
hunting
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of files with behaviors similar to malicious packages published on NPM.
hunting
high
Detected presence of malicious files through analyst-vetted file reputation.
threats
high
Detected presence of known software supply chain attack artifacts.
threats

Behaviors

See all behaviors
Contains potentially obfuscated code or data.
packer
Contains URLs that link to raw files on GitHub.
network
Contains URLs that reside in regions sanctioned by the European Union.
network
Calculates the MD5 hash of data.
file
Enumerates files in a given directory.
search

Vulnerabilities

critical0
high0
medium1
low0

Downloads

334
Recorded Downloads Since 2021

Maintenance

1
Maintainer

Dependencies

9
Declared Dependencies

Dependents

1
Dependents

Issues per Version Graph

Scanned 10 days ago