Back to skill
Skillv1.0.0
VirusTotal security
windows-healing-gateway · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 8:15 AM
- Hash
- faa57861ba91e3874ac48d61f9a6f728fce3143395d6f592835b0adb07000d94
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: windows-healing-gateway Version: 1.0.0 The skill implements a persistence mechanism using Windows Task Scheduler (OpenClaw-Monitor-Service.xml) and executes PowerShell scripts with 'ExecutionPolicy Bypass' and hidden windows. It manages sensitive credentials, including API keys and Telegram tokens, within environment files. While the stated intent is 'self-healing' and monitoring, the core logic scripts (e.g., openclaw-monitor.ps1, openclaw-fix.ps1) are missing from the provided bundle, making the high-privilege background operations and potential for data exfiltration unverifiable.
- External report
- View on VirusTotal