This analysis was performed using vet and SafeDep Cloud Malicious Package Analysis. Integrate with GitHub using vet-action GitHub Action.
Package exhibits multiple malicious behaviors: Office doc access/encryption, DB interaction, local storage clearing, arbitrary code execution, /dev/shm ref.
The package exhibits multiple indicators of malicious behavior. It accesses and potentially encrypts/archives office documents, interacts with databases based on environment variables, clears local storage without justification, and uses eval and Function constructor which allows arbitrary code execution. The presence of /dev/shm reference is also suspicious.