Malicious code in artifact-lab-3-package-6e10193e (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 be1776005a138f3a3c26df212fd9407dda2bb99a246703710810d30e6118ed79 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2025-954 Malicious code in private-test-2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 852253e5499f5bc57ad98b5dbb123053c688b5618b3b538277a75ac14641731c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-5101 Malicious code in c8tks94kspjyhtb (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 55ea5b13a1064ea6ada9f0d6ac879a6b269b476871734f578f6c097a5baa73f3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-12187 Malicious code in adafruit-display-text (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e23c09627673ad313852ef48f846b3ddd5a27a8eb53f0be5ce034a88f45c1a93 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-11729 Malicious code in tomli-dzw (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 83d4c8f45a091092f6ceb10a4cb2934e805ac096f6f1c983c49245b5f4d47ee1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-12304 Malicious code in manoj3121pip (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ca36f3207b39f83d096054f521bd3dbbedf899c5f9d9e0fa494b6c216b56d481 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in layoutspecs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8e98f53933a358e241d85c8222bb5093b52de69083969fc55de49b5ecc023050 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-6428 Malicious code in 0x000testqwe (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4c1f4407cfafbdc3391f55d6b0c6c7344e0e87cfc42f7eb6dfdd9239a82433b7 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in pinloggertest (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d5f6beadd08c32e5fd2f899428285a58ab3d696ef0fc06d2eff10e2d8630fa9a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-11665 Malicious code in puffionerlolpo2131 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 80a02e95092a88f93b35471d27c9b913bd00100f9d34aa5b97983a717f4ce740 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-1973 Malicious code in example-vizsla-tutorial (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d5047acdff9541b0968719265aafdedb63d94f9adb9889f60c8705ada8c58966 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-6512 Malicious code in google-appengine-ext (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 142a8fbc789954291f2b01aab5ac1d139eaaf4f9f490fd6dcf30da438f7d8e51 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in tomli-dzw (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 83d4c8f45a091092f6ceb10a4cb2934e805ac096f6f1c983c49245b5f4d47ee1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in cmdb-worker-pckg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f0039cc4672b957b253c70bf7a3d084574f8a10d21d6bc42d0fac2f2a3fd8400 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in comfyui-node-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d14c72a2c0a980d7106ed7e451501074521e6282c64d87f689b4b758f877d2ea Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-11722 Malicious code in test-test-asd-1 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f6284e15edda08ed04fabd1d9f958e5455bc0a60f3127b35f9f49ea8ee36a49c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2025-1968 Malicious code in d5e54nc32y1337 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 13cd8ff22129444670c5269677ecf7d1321f469f42b693571b5726537e1ffcec Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in fasdghjkhjafsd (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2384ead182322f38776720b4406ef7589305cdd61f49fa6ae98ae31288b447b2 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2024-07-prices-txt-exfiltration Reasons based on the campaign...

MAL-2024-12349 Malicious code in spl-types (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 62ae4c4e03f2865a43a463427c66b7131a5c981b645d24d246d93435347e5819 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: spl-types-rentry-2024-07 Reasons based on the campaign: -...

Malicious code in bussardweg4av3 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ce407c0de96eb20cc6cb45203675e913575a71f8c1b64604964e9a43d9d5809e --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: funcaptcha-ru Reasons based on the campaign: - infostealer...