A developer analyzed a crypto job scam in which an impersonated recruiter pushed a technical assessment that required downloading and running a code repository. Review of the dependencies found a suspicious Go package, github.com/TedCollin/uniroute/v2, containing base64-encoded infrastructure that resolved to a download URL on download.datatabletemplate.xyz. The package included platform-specific code designed to fetch a binary into a temporary path and execute it with OS-specific behavior, including a Linux path that ran the downloaded file through nohup and bash. The source does not attribute the activity to a named actor, but it provides a practical example of recruiter impersonation and malicious dependency abuse in cryptocurrency-themed job lures.