registry  /  omglucidesotuff  /  2.0.0

omglucidesotuff@2.0.0

AI Security Review

scanned 4h ago · by lpm-firewall-ai

Opening the package HTML executes a third-party remote script and local browser-proxy components. The bundled proxy stack can intercept routed browser requests and pass request/cookie state over a WebSocket transport.

Static reason
One or more suspicious static signals were detected.; source matched previously finalized malicious package; routed for review; source fingerprint signature matched known malicious package; routed for review
Trigger
A user opens `index.html` in a browser.
Impact
A remote host can execute code in the page context; proxy infrastructure can observe or relay routed browser traffic.
Mechanism
Remote script execution plus browser service-worker proxying.
Rationale
There is no install-time compromise, but the package ships a runtime remote-code loader and browser traffic-interception infrastructure whose purpose is not aligned with a republished npm package. This is a concrete unresolved staged-payload risk, not enough source evidence to assert confirmed malicious exfiltration.
Evidence
package.jsonindex.htmlassets/boot-CVPGRFHh.jsj6k3y8.jsct1tl/pap3do.jsassets/ChatPage-zoA8Z6RX.jsbfjdx/757lr8.jsct1tl/csbzam.js
Network endpoints2
c.vipersfutbol.com/script.jswss://21baseballacademy.com/fairs/

OSV Corroboration

OpenSSF/OSV
Advisory
MAL-2026-10361
Source
OpenSSF Malicious Packages via OSV
Summary
Malicious code in omglucidesotuff (npm)
Details
The package was found to contain malicious code or consuming dependency that contains malicious code ## Source: ghsa-malware (471e4b0cb8b17f0677863d3d3b665b4e54cec5b194e58f699fcbbf9435888888) Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

Decision evidence

public snapshot
AI called this Suspicious at 91.0% confidence as Dangerous Capability with low false-positive risk.
Evidence for block
  • `index.html` loads remote executable script from `c.vipersfutbol.com`.
  • `index.html` runs bundled proxy-related scripts on page load.
  • `assets/boot-CVPGRFHh.js` registers `j6k3y8.js` as a service worker.
  • `j6k3y8.js` intercepts routed fetches; `ct1tl/*` forwards requests and cookies through a transport.
  • `assets/boot-CVPGRFHh.js` embeds `wss://21baseballacademy.com/fairs/`.
  • `assets/ChatPage-zoA8Z6RX.js` is heavily obfuscated and contains credential-bearing API calls.
Evidence against
  • `package.json` has no `preinstall`, `install`, `postinstall`, or other lifecycle script.
  • No Node entrypoint, shell execution, local file harvesting, or AI-agent configuration mutation was found.
  • The service-worker bootstrap is not referenced by `index.html` directly.
Behavioral surface
Source
ChildProcessDynamicRequireFilesystemNetworkWebSocket
Supply chain
HighEntropyStringsMinifiedObfuscatedProtestwareUrlStrings
Manifest
NoLicense
scanned 24 file(s), 7.27 MB of source, external domains: 127.0.0.1, aomediacodec.github.io, cdn.jsdelivr.net, cloud-api.livekit.io, curl.se, emscripten.org, fingerprint.com, github.com, m1.openfpcdn.io, react.dev, sj-cache.invalid, twemoji.maxcdn.com, www.w3.org, www.zlib.net

Source & flagged code

9 flagged · loading source
assets/proxy-runtime-1NyFshf9.jsView file
1patternName = aws_access_key severity = critical line = 1 matchedText = var OQ=O...B+=`
Critical
Critical Secret

Package contains a critical-looking secret pattern.

assets/proxy-runtime-1NyFshf9.jsView on unpkg · L1
1patternName = aws_access_key severity = critical line = 1 matchedText = var OQ=O...B+=`
Critical
Secret Pattern

AWS access key ID in assets/proxy-runtime-1NyFshf9.js

assets/proxy-runtime-1NyFshf9.jsView on unpkg · L1
bfjdx/757lr8.jsView file
17L18: //# sourceURL=${A}`)();n=c,o=l}else n=g.z$,o=g.Mt;r.construct&&(l.construct=function(e,t,i){let n,s=!1,a={fn:e,this:null,args:t,newTarget:i,return:e=>{s=!0,n=e},call:()=>(s=!0,n=o(... L19: //# sourceURL=${r.url.href}`),n}return o.body;case"style":return(0,i.sM)(await o.text(),e.context,r.meta);case"sharedworker":case"worker":return(0,i.iP)(new Uint8Array(await o.arra...
Medium
Dynamic Require

Package source references dynamic require/import behavior.

bfjdx/757lr8.jsView on unpkg · L17
assets/ChatPage-zoA8Z6RX.jsView file
1(function(_0x31bba3,_0x379132){const _0x159e7b={_0x26fc34:0x358,_0x56fc24:0x70c,_0x216b69:0x578,_0x22d6fc:0x60b,_0x33af41:0x2a6,_0x514b56:0x7f9,_0x4ccc4c:0x9d1,_0x35dd24:0xfdf,_0x1...
High
Obfuscated Payload Loader

Source contains an obfuscator-style string-array loader that reconstructs and executes hidden code.

assets/ChatPage-zoA8Z6RX.jsView on unpkg · L1
matchType = malicious_source_fingerprint_signature signature = 2d82bc066e3c546d signatureType = suspicious_hashes sourceLabel = final_verdict:malicious matchedPackage = captainindia@2.0.0 matchedPath = assets/ChatPage-zoA8Z6RX.js matchedIdentity = npm:Y2FwdGFpbmluZGlh:2.0.0 similarity = 1.000 shingleOverlap = 14 summary = package final verdict is malicious
High
Known Malware Source Fingerprint Signature

Source fingerprint signature matches a known malicious package signature; route for source-aware review.

assets/ChatPage-zoA8Z6RX.jsView on unpkg
bfjdx/w7m632.wasmView file
path = bfjdx/w7m632.wasm kind = wasm_module sizeBytes = 586279 magicHex = [redacted]
Medium
Ships Wasm Module

Package ships WebAssembly modules.

bfjdx/w7m632.wasmView on unpkg
assets/KaTeX_Script-Regular-D3wIWfF6.woff2View file
path = assets/KaTeX_Script-Regular-D3wIWfF6.woff2 kind = high_entropy_blob sizeBytes = 9644 magicHex = [redacted]
High
Ships High Entropy Blob

Package ships high-entropy non-source blobs.

assets/KaTeX_Script-Regular-D3wIWfF6.woff2View on unpkg
assets/fingerprint-Y5nV5FVa.jsView file
matchType = normalized_sha256 matchedPackage = captainindia@2.0.0 matchedPath = assets/fingerprint-Y5nV5FVa.js matchedIdentity = npm:Y2FwdGFpbmluZGlh:2.0.0 similarity = 1.000 summary = normalized source hash matched finalized malicious source
High
Known Malware Source Similarity

Source file is highly similar to a previously finalized malicious package; route for source-aware review.

assets/fingerprint-Y5nV5FVa.jsView on unpkg
assets/livekit-C0E_jLSz.jsView file
13patternName = generic_password severity = medium line = 13 matchedText = `},e.par...+`\r
Medium
Secret Pattern

Hardcoded password in assets/livekit-C0E_jLSz.js

assets/livekit-C0E_jLSz.jsView on unpkg · L13

Findings

2 Critical5 High6 Medium4 Low
CriticalCritical Secretassets/proxy-runtime-1NyFshf9.js
CriticalSecret Patternassets/proxy-runtime-1NyFshf9.js
HighObfuscated Payload Loaderassets/ChatPage-zoA8Z6RX.js
HighObfuscated
HighShips High Entropy Blobassets/KaTeX_Script-Regular-D3wIWfF6.woff2
HighKnown Malware Source Similarityassets/fingerprint-Y5nV5FVa.js
HighKnown Malware Source Fingerprint Signatureassets/ChatPage-zoA8Z6RX.js
MediumDynamic Requirebfjdx/757lr8.js
MediumNetwork
MediumProtestware
MediumShips Wasm Modulebfjdx/w7m632.wasm
MediumStructural Risk Force Deep Review
MediumSecret Patternassets/livekit-C0E_jLSz.js
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings
LowNo License