356 matches found
Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-191736 Malicious code in fuckyoubitchbro (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fbbf1ade5d81c12afb87a44117b27f76d2e4bfa91b578fc50dfb44a8bb79cabe Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in selenium-stealth-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7721bb039c55a43bd1dc81dfad14494df158912f9dda006a67881ce54be64d3 During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
MAL-2025-191866 Malicious code in selenium-stealth-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b7721bb039c55a43bd1dc81dfad14494df158912f9dda006a67881ce54be64d3 During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
Malicious code in selenium-stealth-helper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7c2cda67d57bc0989cefaaf7d1bf288e32cbff3768347ee959619e88ade1d44c During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
MAL-2025-191865 Malicious code in selenium-stealth-helper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7c2cda67d57bc0989cefaaf7d1bf288e32cbff3768347ee959619e88ade1d44c During importing, a malicious executable is being downloaded and started. According to sandbox report, the executable is an infostealer of rhadamanthys family...
Malicious code in crto5 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3a906f74f9672d68f42311985b67b1076e3b02caf14d8366b703d3331ff5897b Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
Malicious code in cas-base (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69eb341218878aebdec66eb5a44391314921fe3c7fb387021d0684bbb91913b3 The package contains code to install remotely stored malware and ensure its persistence. The code is not triggered automatically; it requires a separate trigge...
MAL-2025-193014 Malicious code in cas-base (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69eb341218878aebdec66eb5a44391314921fe3c7fb387021d0684bbb91913b3 The package contains code to install remotely stored malware and ensure its persistence. The code is not triggered automatically; it requires a separate trigge...
Malicious code in crpt (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 27d11f666afed6152d1e6e4f510ee725397a411a11ca6338fb5583dd21b400cc Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
MAL-2025-191707 Malicious code in crpt (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 27d11f666afed6152d1e6e4f510ee725397a411a11ca6338fb5583dd21b400cc Importing the module starts downloading or decrypting, and then executing an executable being a wide recognized malware/Infostealer Redline family --- Category...
Malicious code in bulktweetbyref (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b6e44fa722cba73a0757878305b8641ff0539e6c32ffff20b9484ce39ce6a1aa Using the function simulates some behavior, but then download and runs an Infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in bulktweetplus (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3f66a670d67e37fec4746d5aaf53be9e2f5267c68b667f1becdb55f8d75ce70a Using the function simulates some behavior, but then download and runs an Infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in pyinite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7ed8f43159750189f4cea17185b5ee087dda83db8574bf258010068c524fc723 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...
MAL-2025-191834 Malicious code in pyinite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7ed8f43159750189f4cea17185b5ee087dda83db8574bf258010068c524fc723 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...
Malicious code in telepycore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c3dcd0a2a8162a703ef9d7b90566e4c55116a7f4f4d3b8759ca0d2640acd4ee4 Package can only be used requires additional triggering to install a remote executable, ensure it starts on logon and name mimic network service. Though...
MAL-2025-191889 Malicious code in telepycore (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c3dcd0a2a8162a703ef9d7b90566e4c55116a7f4f4d3b8759ca0d2640acd4ee4 Package can only be used requires additional triggering to install a remote executable, ensure it starts on logon and name mimic network service. Though...
Malicious code in tensorflowlitex (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c4b20463291f0bcc715ff6daffb6b2cc258096921b2aaf2a0b9bf96947b49b46 Importing the module init.py starts downloading and executing a remote exectuable, which has been identified by any.run and tria.ge as a malicious infostealer...
MAL-2025-191890 Malicious code in tensorflowlitex (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c4b20463291f0bcc715ff6daffb6b2cc258096921b2aaf2a0b9bf96947b49b46 Importing the module init.py starts downloading and executing a remote exectuable, which has been identified by any.run and tria.ge as a malicious infostealer...
Malicious code in singtok (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 20dad294eb5c742d0044f1dde01f51646f0b34a86a7cb86c84547981276f46ce Importing the module starts Obfuscated code that downloads a well-recognized malware. In the further variations, the code that download and starts the maliciou...