As of March 20, 2022, node-ipc does not contain dao/ssl-geospec.js but instead depend on peacenotwar.

Snapshot: https://github.com/RIAEvangelist/node-ipc/tree/847047cf7f81ab08352038b2204f0e7633449580

Payload has been modified to be fed a with JSON that returns russia for country_code. The original provider for geo-detection has banned the API key used in the payload.

I didn't get it to replace the content of the files with a heart emoji, however the files are being overwritten with nothing at all. My Fedora VM still managed to survive even though I ran the script as root (SELinux?), bash config is corrupted and ended up running in sh mode though.