The package contains an embedded executable and matches the hardcoded_post YARA rule, but lacks sufficient evidence to be classified as malware.
No verification record available.
The package contains an embedded executable workerd and matches the YARA rule hardcoded_post. The embedded executable itself isn't inherently malicious. The hardcoded_post rule match indicates the presence of a hardcoded POST request, which could be part of the intended functionality of the workerd executable. Without further evidence of malicious behavior, it's difficult to classify this as malware. The confidence level of the YARA rule match is low.
