IOC Radar
TLP:WHITE2 IOCs

Malicious npm Packages Use PowerShell and VBS Chain to Drop Windows RAT

CP
Cyber Press
Published June 22, 2026Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREhttp://95.216.92.207:…http://nvidiadriver.n…CAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(2)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise2

TypeIndicatorConfidenceScoreFirst Seen
URLhttp://95.216.92.207:8080
intel-blognetworkurl
High
58
Jun 23, 26
URLhttp://nvidiadriver.net/verv1432/winpatch-xd7d.win
intel-blognetworkurl
High
58
Jun 23, 26

IOC Relationship Graph

IOC Relationship Graph2 total IOCs
URL
URL2REPORTMalicious npm Packages Use
scroll to zoom · drag to pan · click IOC to open