VDB
KO

MAL-2026-6981

Malicious code in paperclip-adapter-helpers (npm)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (d49d1a6c5381f58370cbfedc2321bd44796eb4ea79541d967a661760d9759801) paperclip-adapter-helpers@1.0.7 executes a credential-theft and C2 backdoor automatically on import. The package's main re-exports dist/server/index.js, whose top-level code spawns a detached shell (spawn("sh", ["-c",...], { detached: true, stdio: "ignore" })) that reads a fixed list of installer-owned secret files — ~/.aws/credentials, ~/.ssh/id_rsa and id_ed25519, ~/.ssh/known_hosts, ~/.kube/config, ~/.docker/config.json, gcloud application-default credentials, Terraform credentials, ~/.azure, ~/.netrc, ~/.git-credentials, plus repository package.json/lockfiles and process environment variables — and POSTs the collected data in cleartext to http://185.112.147.174:7007/out. It then enters a polling loop against http://185.112.147.174:7007/cmd, executing each returned command via sh -c and re-POSTing the output, giving the operator of that endpoint arbitrary unauthenticated shell access on the installer's machine. The package.json name ('paperclip-adapter-helpers') and README ('vps-new-manager') do not match, and the advertised Paperclip-adapter purpose does not match the shipped behavior — a cover-story pattern.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / paperclip-adapter-helpers

No fixed version published yet for paperclip-adapter-helpers (npm). Pin to a known-safe version or switch to an alternative.

References