The package is not classified as malware due to single low confidence YARA rule match without further evidence.
No verification record available.
The YARA rule multi_decode_3 matched in index.js indicates multiple levels of decoding, which can be a sign of obfuscation. However, this is only one piece of evidence with low confidence. Without further evidence of malicious behavior, it is not possible to classify this package as malware.
