Skip to content

Malicious package: npm/antsrcsrctest (preinstall cloud-metadata + env stealer)#1364

Open
akyroslabs wants to merge 1 commit into
ossf:mainfrom
codelake-research:mal-antsrcsrctest
Open

Malicious package: npm/antsrcsrctest (preinstall cloud-metadata + env stealer)#1364
akyroslabs wants to merge 1 commit into
ossf:mainfrom
codelake-research:mal-antsrcsrctest

Conversation

@akyroslabs

Copy link
Copy Markdown
Contributor

antsrcsrctest@1.0.0 (npm) is a supply-chain credential/environment stealer disguised as a date utility (index.js exports a benign formatDate()).

A preinstall hook (node preinstall.js) runs automatically on npm install, before import. It fingerprints host/container, runs recon (id, whoami, ps aux) via child_process.execSync, queries the cloud instance-metadata service http://100.100.100.200/latest/meta-data/ram/security-credentials/ (Alibaba Cloud IMDS → temporary RAM/IAM credentials), dumps the entire process.env, and exfiltrates everything via HTTP POST to the hardcoded IP http://101.35.44.248 (paths / and /env). The name targets an internal antsrc* namespace (dependency confusion).

Detected independently by codelake Research from the live npm feed on 2026-07-09; still live on npm and not in OSV/GHSA at time of reporting.

IOCs: 101.35.44.248 · sha256 b4a1a62c75f239d8201c65cdcda5a21e90eff76a41562a2a1902403ccd4c5f9d
Advisory: https://research.codelake.dev/advisories/clr-2026-2999-antsrcsrctest

… stealer, exfil to raw IP)

Signed-off-by: Sascha Klein <akyroslabs@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant