9169 matches found
Malicious code in artifact-lab-3-package-3eef6c2c (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2325acb67ca59e847fd003a5449350d2b0b12620ed80cb82cc6189f091bdacc7 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in artifact-lab-3-package-b55680cd (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 be4896eebe0a6b7185d165cec1e593faea8a14a8b2386711ef9c08657273bb31 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in artifact-lab-3-package-ccd28738 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5da429dcc2bd3c0de786f149b4b510b2aebb23e894f5eaea3f80812b8241dd6a Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in artifact-lab-3-package-b1ec2b9f (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3fe49cb6b5b199c213d54391901382790a3d9663bd90bf78361f07c594160fa6 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in artifact-lab-3-package-24ddbc49 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 74150a24eb8c9d6a2c36b221818de2b3564a62629444438ef666be89914c4c3b Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in artifact-lab-3-package-89883da3 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 dc3109f451995d11f0f2e99d58397d06ac2bb036df5ceb90425befb54ea10f14 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-11527 Malicious code in artifact-lab-3-package-b1ec2b9f (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3fe49cb6b5b199c213d54391901382790a3d9663bd90bf78361f07c594160fa6 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12192 Malicious code in artifact-lab-3-package (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0c18a16c7c21d93a8819aed298f6691835b1a31546ca573eb94ce4265d4fb291 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
Malicious code in jupiterhelper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5a8e36ac6c995bb1a6fa9de762d459e8a108754dba767f6f3d19c385eb005b5e Once run, downloads and install from sleipnirbrowser.org a suspicious executable pretending to be a webbrowser. This website appears to be a scam using some ki...
Malicious code in jupsolhelp (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1bc1615518392665ccc36d8c24a0e8e57ffce1147dfc8604c723513c28061743 Once run, downloads and install from sleipnirbrowser.org a suspicious executable pretending to be a webbrowser. This website appears to be a scam using some ki...
Malicious code in aiohttp-libscss (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d5cb2d30b1084d16cbffd08a377d8723d794f112d1d33e666a4d4154653015e0 Imitate legit package, when used, sends out the URL of web application using the package --- Category: MALICIOUS - The campaign has clearly malicious intent,...
MAL-2024-12264 Malicious code in ethercheck (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c202b40df14e5a6ba231853aefc190984e981a5f22ef90d3d2e3da641643e8dd During importing, the code attempts to decrypt data embeded in READMEs. The decrypted code is then used to download further remote scripts --- Category:...
Malicious code in pyfetcher (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4a689a2d20313b4d2681d50def7abed6ad72462be076e35056a6098556b1a246 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2024-07-vaaai-netflixchecker Reasons based on the campaign: -...
Malicious code in netfetcher (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 dd65e46cc7d6457bd5a631526d3e5ffcb10a70befdf2d03c005c1e5acd235a34 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2024-07-vaaai-netflixchecker Reasons based on the campaign: -...
Malicious code in s3ffs (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bcbd170ded254c386778d86dbd56a4d2fc5e7dfdeb37bd17fa2198e85e5c93c7 Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...
Malicious code in mecit1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 84c154fb79729b15ec93f3c1f10fd3e06c1c312fae05df59a32c13172536e36a Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...
Malicious code in whel (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 556e14c71baa5758239b80d9333f83a0369b1169e63b027c50d633b97475136c Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...
Malicious code in crypt0graphyy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ec94110581ca3363bda748a7d59e0e82110dda02ec61092f85e7ef2d513f059e Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...
Malicious code in fsspecc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 90f4ad6035c504be5b282397b9a981d39fe71dcb0165be3b5d0571ac6274b51c Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...
Malicious code in mecit2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c9131eebc14bbebfb234f0f0c49ca47882df2140d1061d201735c360b866a867 Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...