Spectra Assure
Community
Docs

ua-parser-jsv0.8.0

malicious
Top 10k
License: unknown
npm
Published: about 3 years ago
Fail
Incident: Malware
6 supply chain attack artifacts
Incidents
Type: malwareReported By: Community Reported: about 2 years ago
Type: malwareReported By: Community (PortSwigger)Reported: almost 3 years ago
Type: malwareReported By: Community (GitHub Advisory)Reported: about 3 years ago
Type: malwareReported By: Community (Bleeping Computer)Reported: almost 3 years ago
Type: malwareReported By: ReversingLabs (Researcher) Reported: 6 months ago
Learn more about malware detection

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
No known vulnerabilities detected
Hardening
No application hardening issues

Threats

Tampering
1 malware-like behaviors found
Malware
6 supply chain attack artifacts

Issues

See all issues
high
Detected presence of files containing URLs that link to raw files on GitHub.
hunting
high
Detected presence of files with behaviors exclusively used by malicious software.
hunting
high
Detected presence of malicious files through analyst-vetted file reputation.
threats
high
Detected presence of known software supply chain attack artifacts.
threats
low
Detected presence of files containing URLs that use non-standard ports.
hunting

Behaviors

See all behaviors
Modifies file/directory permissions.
permissions
Downloads a file using certutil.
network
Starts an application without opening a new Command Prompt window.
stealth
Contains URLs that link to interesting file formats.
network
Contains URLs that link to raw files on GitHub.
network

Vulnerabilities

critical0
high0
medium0
low0

Downloads

1.76B
Recorded Downloads Since 2021

Maintenance

25
Maintainers

Dependencies

0
Declared Dependencies

Dependents

2.47K
Dependents

Issues per Version Graph

Scanned 1 day ago