registry  /  nolimit-agent  /  1.0.312

nolimit-agent@1.0.312

Advanced email sender

AI Security Review

scanned 4d ago · by lpm-firewall-ai

The package is a heavily obfuscated bulk email/SMS and webmail automation toolkit with phishing-adjacent capabilities. Risk is user-invoked dangerous capability rather than confirmed covert malware behavior.

Static reason
High-risk behavior combination matched malicious policy.; source matched previously finalized malicious package; routed for review; source fingerprint signature matched known malicious package; routed for review
Trigger
npm install postinstall on Windows; user runs nolimit CLI or nolimit web/setup commands
Impact
Can automate high-volume email/SMS sending and browser-based webmail sends using user-supplied accounts and target lists.
Mechanism
bulk messaging, browser-extension webmail injection, SMTP/SMS automation, redirect crawling
Attack narrative
On explicit CLI use, nolimit-agent can read user-provided SMTP/webmail/SMS configuration and target lists, generate email/SMS content, and automate sending through SMTP providers or injected webmail tabs. The Windows postinstall shim is narrow and not itself malicious, but the packaged tool is obfuscated and purpose-built for mass messaging and webmail automation.
Rationale
Static inspection confirms dangerous spam/phishing-enabling functionality, but not unconsented credential theft, covert exfiltration, destructive behavior, or install-time payload execution beyond a Windows bin shim. Treat as suspicious/dangerous capability rather than publish-block malware.
Evidence
package.jsonscripts/postinstall.js.ad/x0.js.ad/x4.js.ad/web-command.jssrc/web-panel/ws.jstemplates/config.jsonphonebook/config.jsonscripts/postinstall.js writes Windows nolimit.cmd shim.ad/web-command.js writes ~/.nolimit-ext/manifest.json, background.js, icon.png.ad/x0.js reads/writes workspace config.json, emails.txt, smtp-related outputs
Network endpoints4
dns.google/resolveweb.archive.org/cdx/search/cdxindex.commoncrawl.org/otx.alienvault.com/

Decision evidence

public snapshot
AI called this Suspicious at 86.0% confidence as Dangerous Capability with medium false-positive risk.
Evidence for warning
  • package.json exposes obfuscated CLI main/bin .ad/x0.js and includes install-time postinstall
  • src/web-panel/ws.js injects a panel into Gmail/Outlook/Yahoo and auto-fills/sends messages to target lists
  • .ad/web-command.js builds a Chrome extension with <all_urls>, scripting/tabs permissions and injects panelCode into webmail tabs
  • templates/config.json supports SMTP credentials, sender/subject rotation, direct MX, QR/link and attachment generation
  • Obfuscated .ad code includes open-redirect crawling and bulk email/contact workflows
Evidence against
  • scripts/postinstall.js only runs on Windows to create a nolimit.cmd shim and does not fetch payloads or harvest data
  • Network use appears aligned to license checks, DNS/OSINT lookups, SMTP/SMS/webmail functions rather than covert exfiltration
  • No evidence found of import-time execution outside CLI/lifecycle shim
  • No credential harvesting from arbitrary local files or environment variables observed
Behavioral surface
Source
ChildProcessFilesystemShell
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 19.0 KB of source

Source & flagged code

5 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/postinstall.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node scripts/postinstall.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
src/web-panel/ws.jsView file
269contains invisible/control Unicode U+202A (left-to-right embedding) const sendBtn = document.querySelector('[data-tooltip="Send <U+202A>(Ctrl-Enter)<U+202C>"]') ||
Critical
Trojan Source Unicode

Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.

src/web-panel/ws.jsView on unpkg · L269
scripts/postinstall.jsView file
matchType = normalized_sha256 matchedPackage = nolimit-agent@1.0.308 matchedPath = scripts/postinstall.js matchedIdentity = npm:bm9saW1pdC1hZ2VudA:1.0.308 similarity = 1.000 summary = normalized source hash matched finalized malicious source
High
Known Malware Source Similarity

Source file is highly similar to a previously finalized malicious package; route for source-aware review.

scripts/postinstall.jsView on unpkg
matchType = malicious_source_fingerprint_signature signature = cbd26ae1248ea37f signatureType = suspicious_hashes sourceLabel = final_verdict:malicious matchedPackage = nolimit-agent@1.0.308 matchedPath = scripts/postinstall.js matchedIdentity = npm:bm9saW1pdC1hZ2VudA:1.0.308 similarity = 1.000 shingleOverlap = 1 summary = package final verdict is malicious
High
Known Malware Source Fingerprint Signature

Source fingerprint signature matches a known malicious package signature; route for source-aware review.

scripts/postinstall.jsView on unpkg

Findings

1 Critical3 High2 Medium4 Low
CriticalTrojan Source Unicodesrc/web-panel/ws.js
HighInstall Time Lifecycle Scriptspackage.json
HighKnown Malware Source Similarityscripts/postinstall.js
HighKnown Malware Source Fingerprint Signaturescripts/postinstall.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings