Affected script: "install-scripts:preinstall"
The code provided performs a series of actions that configure a persistent and stealthy method for collecting clipboard data and sending it to a remote server. It first creates a VBScript file that will run on system startup. This VBScript is configured to execute a batch file in the background. The batch file then executes a PowerShell script, bypassing the execution policy. This PowerShell script monitors the clipboard content, posting it every second to a remote server. Such behavior is characteristic of keyloggers or information-stealing malware and poses a significant security threat due to the potential disclosure of sensitive information copied to the clipboard.
querystring-chain
's direct dependencies. Data on all dependencies, including transitive ones, is available via CSV download.Name | Version | Size | License | Type | Vulnerabilities |
---|