Back to skill
Skillv0.5.2
VirusTotal security
WeixinClawBot Send · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
BenignMar 27, 2026, 7:46 AM
- Hash
- 320f4818f21673d8785c9ad094381dd98b3d370fd99db031c3f9f0f52f9552ec
- Source
- palm
- Verdict
- benign
- Code Insight
- Type: OpenClaw Skill Name: wxclawbot-send Version: 0.5.2 The skill bundle provides a legitimate CLI tool and library (@claw-lab/wxclawbot-cli) designed to allow OpenClaw agents to proactively send WeChat messages. It handles account discovery from the standard `~/.openclaw` directory, implements AES-128-ECB encryption for media uploads as required by the WeChat iLink protocol, and communicates with official endpoints (ilinkai.weixin.qq.com and novac2c.cdn.weixin.qq.com). While the tool has the capability to read local files and environment variables (WXCLAW_TOKEN), these actions are transparently documented and essential for its stated purpose of WeChat integration, with no evidence of malicious intent, obfuscation, or unauthorized data exfiltration.
- External report
- View on VirusTotal