registry  /  nolimit-agent  /  1.0.320

nolimit-agent@1.0.320

Advanced email sender

AI Security Review

scanned 3d ago · by lpm-firewall-ai

The package is a high-risk bulk email and webmail automation toolkit with contact extraction capability. No confirmed install-time malware or unconsented exfiltration was found, but the runtime feature set is dangerous dual-use.

Static reason
High-risk behavior combination matched malicious policy.; source matched previously finalized malicious package; routed for review; source fingerprint signature matched known malicious package; routed for review
Trigger
User runs nolimit CLI commands or injects src/web-panel/ws.js into webmail.
Impact
Can automate sending campaigns through user mail accounts and extract contacts to local files if configured credentials are supplied.
Mechanism
bulk email automation, OAuth/SMTP credential handling, and contact extraction
Attack narrative
At install, Windows systems may get a nolimit.cmd shim pointing to the packaged CLI. At runtime, the obfuscated CLI supports email campaign operations, OAuth/SMTP account setup, contact extraction from mailboxes, recipient sorting, and DKIM setup. The web panel script can be injected into active webmail sessions to compose and send messages to target lists.
Rationale
Static inspection confirms dangerous bulk-mail and account-contact automation, but the concrete harmful actions are user-invoked and no install-time downloader, persistence, or unconsented credential exfiltration endpoint was established. Treat as a dangerous-capability package rather than confirmed malware.
Evidence
package.jsonscripts/postinstall.js.ad/x0.jssrc/web-panel/ws.jstemplates/functions.txttemplates/smtps.txtphonebook/config.jsonnolimit.cmdsmtps.txtconfig.jsonextracted/sorted/dkim/
Network endpoints10
mail.google.comoutlook.live.comoutlook.office.commail.yahoo.commail.zoho.commail.proton.mesmtp.gmail.comsmtp-mail.outlook.comsmtp.office365.comsmtp.sendgrid.net

Decision evidence

public snapshot
AI called this Suspicious at 86.0% confidence as Dangerous Capability with medium false-positive risk.
Evidence for warning
  • package.json exposes CLI .ad/x0.js and postinstall hook.
  • src/web-panel/ws.js injects a webmail panel that fills Gmail/Outlook/Yahoo compose fields and clicks Send for target lists.
  • .ad/x0.js is heavily obfuscated and implements mass email, OAuth/SMTP auth, contact extraction, sorting, DKIM generation, and local credential/token storage.
  • templates/functions.txt documents send, auth, contacts, validate, sort, and DKIM commands for campaign operation.
  • postinstall writes a Windows nolimit.cmd shim during install.
Evidence against
  • postinstall.js only runs on win32 and exits on other platforms; it writes a CLI shim, not a downloader or credential harvester.
  • Network use appears aligned with email/OAuth/DNS functionality rather than arbitrary exfiltration endpoints.
  • Observed credential/contact handling is user-invoked via CLI commands and local files, not install-time theft.
Behavioral surface
Source
ChildProcessFilesystemShell
Supply chain
HighEntropyStrings
ManifestNo manifest risk signals triggered.
scanned 2 file(s), 19.0 KB of source

Source & flagged code

5 flagged · loading source
package.jsonView file
scripts.postinstall = node scripts/postinstall.js
High
Install Time Lifecycle Scripts

Package defines install-time lifecycle scripts.

package.jsonView on unpkg
scripts.postinstall = node scripts/postinstall.js
Medium
Ambiguous Install Lifecycle Script

Install-time lifecycle script is not statically allowlisted and needs review.

package.jsonView on unpkg
src/web-panel/ws.jsView file
269contains invisible/control Unicode U+202A (left-to-right embedding) const sendBtn = document.querySelector('[data-tooltip="Send <U+202A>(Ctrl-Enter)<U+202C>"]') ||
Critical
Trojan Source Unicode

Source contains bidi control or invisible Unicode characters associated with Trojan Source attacks.

src/web-panel/ws.jsView on unpkg · L269
scripts/postinstall.jsView file
matchType = normalized_sha256 matchedPackage = nolimit-agent@1.0.318 matchedPath = scripts/postinstall.js matchedIdentity = npm:bm9saW1pdC1hZ2VudA:1.0.318 similarity = 1.000 summary = normalized source hash matched finalized malicious source
High
Known Malware Source Similarity

Source file is highly similar to a previously finalized malicious package; route for source-aware review.

scripts/postinstall.jsView on unpkg
matchType = malicious_source_fingerprint_signature signature = cbd26ae1248ea37f signatureType = suspicious_hashes sourceLabel = final_verdict:malicious matchedPackage = nolimit-agent@1.0.318 matchedPath = scripts/postinstall.js matchedIdentity = npm:bm9saW1pdC1hZ2VudA:1.0.318 similarity = 1.000 shingleOverlap = 1 summary = package final verdict is malicious
High
Known Malware Source Fingerprint Signature

Source fingerprint signature matches a known malicious package signature; route for source-aware review.

scripts/postinstall.jsView on unpkg

Findings

1 Critical3 High2 Medium4 Low
CriticalTrojan Source Unicodesrc/web-panel/ws.js
HighInstall Time Lifecycle Scriptspackage.json
HighKnown Malware Source Similarityscripts/postinstall.js
HighKnown Malware Source Fingerprint Signaturescripts/postinstall.js
MediumAmbiguous Install Lifecycle Scriptpackage.json
MediumStructural Risk Force Deep Review
LowNon Install Lifecycle Scripts
LowScripts Present
LowFilesystem
LowHigh Entropy Strings