AI Security Review
scanned 4d ago · by lpm-firewall-aiThe package is a phishing/spam automation toolkit rather than a silent install-time stealer. It provides bulk email/SMS sending, webmail automation, contact extraction, proxy/direct-MX routing, spoof-like sender generation, and attachment/link obfuscation features.
Decision evidence
public snapshot- package.json main/bin points to heavily obfuscated .ad/x0.js and includes many obfuscated .ad modules
- templates/functions.txt documents bulk campaign commands: send, auth, contacts extraction, sort, validate, dkim
- templates/functions.txt and .ad/from-generator.js implement spoof-like sender generation, thread prefixes, QR links, direct_mx, proxy, DKIM, and attachment transformations
- src/web-panel/ws.js injects a panel into Gmail/Outlook/Yahoo tabs and clicks compose/send for target lists
- .ad/web-command.js creates a Chrome extension under the user's home directory and injects panel code into webmail tabs via localhost WebSocket
- package code references contact extraction/output, SMTP credentials, OAuth tokens, SOCKS proxies, direct MX sending, and DKIM key files
- scripts/postinstall.js only runs on win32 to create nolimit.cmd shim for .ad/x0.js; no install-time credential or network exfiltration found
- No hardcoded exfiltration webhook or attacker-controlled collection endpoint confirmed in inspected source
- Network activity is mostly user-invoked email/DNS/favicon/OAuth/webmail automation consistent with the tool's advertised sender function
- Chrome extension creation and browser injection are activated by the web command rather than npm install/import
Source & flagged code
5 flagged · loading sourcePackage defines install-time lifecycle scripts.
package.jsonView on unpkgInstall-time lifecycle script is not statically allowlisted and needs review.
package.jsonView on unpkgSource contains bidi control or invisible Unicode characters associated with Trojan Source attacks.
src/web-panel/ws.jsView on unpkg · L269Source file is highly similar to a previously finalized malicious package; route for source-aware review.
scripts/postinstall.jsView on unpkgSource fingerprint signature matches a known malicious package signature; route for source-aware review.
scripts/postinstall.jsView on unpkg