Single low confidence YARA rule match is insufficient to classify as malware. Legitimate obfuscation is possible.
No verification record available.
The YARA rule python_exec_near_enough_decrypt matched index.js. This rule detects potentially encrypted content execution, but it's a single low confidence finding. Without further corroborating evidence, it's insufficient to classify the package as malware. The package could be using legitimate obfuscation or encryption techniques for benign purposes.
