Sonatype Security Research team has identified a series of counterfeit components in the npm ecosystem. These intentionally malicious packages seem to be doing similar, shady things to the malicious fallguys package discovered in September (those were stealing web browser files and Discord gaming IMs). The new packages in question were published by the same npm author whose npm account also contains what look like legitimate packages with genuine use cases. The discord.dll is an npm component which conducts sinister activities that are hard to spot upfront.”]
Source: https://blog.sonatype.com/discord.dll-successor-to-npm-fallguys-