359 matches found
MAL-2025-191735 Malicious code in fromwherebitch (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 afc6e5261aea72f5412acfb599af497963496a824bdd8a9b943b2873cbd4c743 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in xwormclient (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4a6c0b4ce2747e70d2e9f46f624188d4da6a70af3182e6e94b22de7446dc180c Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-191938 Malicious code in xwormclient (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4a6c0b4ce2747e70d2e9f46f624188d4da6a70af3182e6e94b22de7446dc180c Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-191736 Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in selenium-stealth-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7721bb039c55a43bd1dc81dfad14494df158912f9dda006a67881ce54be64d3 During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
MAL-2025-191866 Malicious code in selenium-stealth-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7721bb039c55a43bd1dc81dfad14494df158912f9dda006a67881ce54be64d3 During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
Malicious code in selenium-stealth-helper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7c2cda67d57bc0989cefaaf7d1bf288e32cbff3768347ee959619e88ade1d44c During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
MAL-2025-191865 Malicious code in selenium-stealth-helper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7c2cda67d57bc0989cefaaf7d1bf288e32cbff3768347ee959619e88ade1d44c During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
Malicious code in crto5 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3a906f74f9672d68f42311985b67b1076e3b02caf14d8366b703d3331ff5897b Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
Malicious code in cas-base (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69eb341218878aebdec66eb5a44391314921fe3c7fb387021d0684bbb91913b3 The package contains code to install remotely stored malware and ensure its persistence. The code is not triggered automatically; it requires a separate trigge...
MAL-2025-193014 Malicious code in cas-base (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69eb341218878aebdec66eb5a44391314921fe3c7fb387021d0684bbb91913b3 The package contains code to install remotely stored malware and ensure its persistence. The code is not triggered automatically; it requires a separate trigge...
Malicious code in crpt (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 27d11f666afed6152d1e6e4f510ee725397a411a11ca6338fb5583dd21b400cc Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
MAL-2025-191707 Malicious code in crpt (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 27d11f666afed6152d1e6e4f510ee725397a411a11ca6338fb5583dd21b400cc Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
Malicious code in bulktweetbyref (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b6e44fa722cba73a0757878305b8641ff0539e6c32ffff20b9484ce39ce6a1aa Using the function simulates some behavior, but then download and runs an Infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in bulktweetplus (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3f66a670d67e37fec4746d5aaf53be9e2f5267c68b667f1becdb55f8d75ce70a Using the function simulates some behavior, but then download and runs an Infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in pyinite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7ed8f43159750189f4cea17185b5ee087dda83db8574bf258010068c524fc723 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...
MAL-2025-191834 Malicious code in pyinite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7ed8f43159750189f4cea17185b5ee087dda83db8574bf258010068c524fc723 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...
Malicious code in telepycore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c3dcd0a2a8162a703ef9d7b90566e4c55116a7f4f4d3b8759ca0d2640acd4ee4 Package can only be used requires additional triggering to install a remote executable, ensure it starts on logon and name mimic network service. Though...
MAL-2025-191889 Malicious code in telepycore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c3dcd0a2a8162a703ef9d7b90566e4c55116a7f4f4d3b8759ca0d2640acd4ee4 Package can only be used requires additional triggering to install a remote executable, ensure it starts on logon and name mimic network service. Though...