MAL-2025-4232 Malicious code in pyinitialyze (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 17fb73bd9014366b80018d085cf68a67535ca979bd2ddd14c82ef27ec1309a61 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...

Malicious code in testveriftest1asdlaaaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b241cae62c005e3cd31a8251941ab101ebcca75aa4c8cb988905e87529339cd During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-4253 Malicious code in veriftest1asdlaaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8ca63296b7d7f9b656944bcaf65cc918b709a2071d1ea5f16d1a7422a9df931e During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-4254 Malicious code in veriftest1asdlaaaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 18d30d48c72a61cda2e8b0ecd3a27b958e8964b4c65833cb780186382285101d During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-4251 Malicious code in veriftest1asdla (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e04795c3a8f7fae13a125bde307aa64db04ae9f4ff76bd1d11fb32b4d3f57a36 During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-3602 Malicious code in testveriftest1asdlaaaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b241cae62c005e3cd31a8251941ab101ebcca75aa4c8cb988905e87529339cd During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-4252 Malicious code in veriftest1asdlaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 84fe70a8f5e34c8334d7284bcc9b71826210f029708a53a6ec4b9bb90a33054b During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

MAL-2025-4224 Malicious code in meowsapi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f59e6347816a732ab5ddebfd141e113bb5cca799fa8b8466f194dbff1a1e428b Importing the module starts delayed downloading and starting a remote executable identified as BlankGrabber infostealer. --- Category: MALICIOUS - The campaign...

MAL-2025-6605 Malicious code in tronapinet (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ebb37f42f335b4a5f11e5e9bdb43390d3ba72478ee5c0ffa12c39f0e5226dd3b Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-6619 Malicious code in wallettron (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 daa2901c8248d9a4e63be69c1595134618d563065c67a466b006d53bd92d5ce5 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-5141 Malicious code in wallettronpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6232d6f8e03368abc5a38f906502206757571193ce7daf078c26f2e0cd159882 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-6606 Malicious code in tronapipy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f708be2fc70e3c2c9dc79ee1706944cb73f9604b496c4171a5971f5c6e0091fe Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-4246 Malicious code in tronlibpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3830f2a3daeaf5ef1da928f6700860805f4fb3b0f955ab814f4742b334ca7868 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-5140 Malicious code in trongridlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 810f3d44ffd0654acef07cf5bc57e4c1c8daa207332751a60c14f29f64832560 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-6609 Malicious code in tronlid (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 387ea56c726485890b55cce5a96c6381e248be3c8eba22c22ead08e4b30db3b1 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-4245 Malicious code in tronlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7b299597be11bab32fd63419a38161e9f3d21a6ab3ee73d1f8cb6b00e397625f Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...

MAL-2025-4272 Malicious code in web3yrpcs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 171ec4f4bbfb34688348ecdda292249487574c8fb28caf8467c0bbafb1563cb7 Package contains just a function to send out data. It or a package sharing the same IoCs is used in a malicious GitHub project to exfiltrate crypto currency...

MAL-2025-4259 Malicious code in walletrpcs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4b93b9b49f17c924bbca7ba78750257a7be53f8d48ad200a16dc5eb4e369a734 Package contains just a function to send out data. It or a package sharing the same IoCs is used in a malicious GitHub project to exfiltrate crypto currency...

MAL-2025-4227 Malicious code in ora3 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9d9ff95457d63990b263b77b0f3468dcd63e0d1837c81843b2d4249706db48c7 Package contains just a function to send out data. It or a package sharing the same IoCs is used in a malicious GitHub project to exfiltrate crypto currency...

MAL-2025-4205 Malicious code in alchemyrpcs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c3de5cb8ee8e308aa3b7dbfcb71e5c3d5becf9c41b1bdfee75a00b4a29c3663a Package contains just a function to send out data. It or a package sharing the same IoCs is used in a malicious GitHub project to exfiltrate crypto currency...