IOC Radar
TLP:WHITE3 IOCs

Malicious binding.gyp Campaign Targets npm Packages Across Maintainer Accounts

CP
Cyber Press
Published June 4, 2026Original Report

Diamond Model

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise3

TypeIndicatorConfidenceScoreFirst Seen
SHA256288f26c2eadcb1a7923fe376d16f5404216cce15d9fc162a4a78574dc7df399a
file-hashindicatorintel-blog
Medium
53
Jun 5, 26
SHA2565926b86b642e00672252953eb30d8f75cfb7797fe3118bd6fa2cfbee92905d61
file-hashindicatorintel-blog
Medium
53
Jun 5, 26
SHA256ef641e956f91d501b748085996303c96a64d67f63bfeef0dda175e5aa19cca90
file-hashindicatorintel-blog
Medium
46
Jun 5, 26

IOC Relationship Graph

IOC Relationship Graph3 total IOCs
SHA256
SHA2563REPORTMalicious binding.gyp Camp
scroll to zoom · drag to pan · click IOC to open