Name of the Vulnerable Software and Affected Versions antd-cloud versions (affected versions not specified)

Description The issue concerns malicious code in the antd-cloud package, which uploads system information to a remote server, downloads a file, and executes it. This indicates a severe compromise of system security. Any computer with this package installed should be considered fully compromised, and all secrets and keys stored on it should be rotated immediately from a different computer.

Recommendations Remove the antd-cloud package, however, be aware that this may not remove all malicious software resulting from its installation. As a precaution, consider the computer fully compromised and take necessary steps to secure it, such as rotating all secrets and keys stored on it from a different computer.