225917 matches found
Malicious code in bttr-devs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 52b927b1575e1d1a15c46b42849ca52f689d12f63d4f4c2e43cdebe6cb5a2fd8 The package bttr-devs was found to contain malicious code...
Malicious code in public-site-cms-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3ab3fee105c88cb2417b79efd376d25e9f23afaaef354d5f154635820c702079 The package public-site-cms-ui was found to contain malicious code...
Malicious code in @acqui-calm-library/acqui-hero-carousel-section (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f704f47a1967aa0078611eb8d426733e5bc5d4a5146a61261b55b823d9357e The package @acqui-calm-library/acqui-hero-carousel-section was found to contain malicious code...
Malicious code in oasis-os-provider-messaging (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cca1eb9a5a42a34b2db68e6d23c9c2cd2cbe7098f742e647c9c6867b342e95ab The package oasis-os-provider-messaging was found to contain malicious code...
Malicious code in @transaction-list/transaction-list-lg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e58eb6c67a7a0d136bcfc1976caeb8271d491e519e75b15c87994e130147df99 The package @transaction-list/transaction-list-lg was found to contain malicious code...
Malicious code in translation-note (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e07633850d68301541c30e7f731a444071e400f71083928dca6418a9a59c769a The package translation-note was found to contain malicious code. Source: ghsa-malware 95cfe5df95e94bc56327c2241fd1d850ee8bae580cdecfae84ee6f81f09150...
Malicious code in kwp-shared-components-production-system (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2b2bf82ab1e7b02c2c3398dc73b6c1635e7f3e8da7f0a3aa11123d5db5a19b56 The package kwp-shared-components-production-system was found to contain malicious code. Source: ghsa-malware...
Malicious code in domino-elements (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7d29d322166d012b639664f1711c5c9ca4353508a8ffa2e48eb5b7b14bbda296 The package domino-elements was found to contain malicious code...
Malicious code in public-site-boostmoney-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c7643372e3a22915c9385625b458ae16e2bb250b4b55e281371dc61644125e00 The package public-site-boostmoney-ui was found to contain malicious code...
Malicious code in @transaction-list/transaction-list-xs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6a746b479fa4f5cf9daa56d99d4e405c183bae19f055d207078d1c166d76173 The package @transaction-list/transaction-list-xs was found to contain malicious code...
Malicious code in @landing-platform/data-bridge (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07b3a3c805b32428bdfb8aa77fb85675df6eaa3b1aa6ec9a36749cb64c0eb269 The package @landing-platform/data-bridge was found to contain malicious code...
Malicious code in @transaction-list/transaction-list-md (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b5e5850b5f3f231ca816e6f9c5ae2f7dac1b33092f12407be92abe5f1e26d4a The package @transaction-list/transaction-list-md was found to contain malicious code...
Malicious code in urlsssser (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 242b446cd6cce908f668bfc1b199aa8f54a9ee1138b399ea6012f3b2bd2624e8 Package does not contain malicious code, but was published as a part of the malicious campaign and is used during further infection stages --- Category:...
Malicious code in cflashfiles (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d8c5174968b7dedf000076201fe6446018aa61048b6a77fc8bc42e16bb796fd9 Malicious clone of legitimate fsspec package. The code was modified to exfiltrate specific files on import. --- Category: MALICIOUS - The campaign has clearly...
Malicious code in urlsser (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c4f6d5a2656d3741fd7a1a4c50a9d3332a09874ef7c46713d0ad5e36478a063e This package does not directly contain malicious code, but was uploaded as part of the malicious campaign and is used as a helper in further infection stages...
Malicious code in uuu8lgd (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1048ec8371fbc694883c71f227674b6b7ba3dcf534b1ed096ce4342a6e129920 The package uuu8lgd was found to contain malicious code. Source: ossf-package-analysis 07f7eda587433e48aed22a16c8f76973b55a61815311f38620239874795203...
Malicious code in icloud-recovery (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3639028f2f9d36c20b55c655b1d71bc053827f4703e7954b12a4ec3da8edd8d2 On importing the module, the code exfiltrates text files, with the focus on configuration files --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in @ikeacn/utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b61cac48e6bd5a0c800a2b821dafa52f34ae61a0592089305f0f308b264390b0 The package @ikeacn/utils was found to contain malicious code. Source: ghsa-malware 25e3e51050a140b96f55be4f132f695cd77cf380a7a0dea9e48bde3b5064df7c...
Malicious code in @ikeacn/icons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6ddd87692493182b2706890d61f428455b6686768925e979c7ad73ed8aed0b8 The package @ikeacn/icons was found to contain malicious code. Source: ghsa-malware 1fd9107408adaea60e793eab4b396b70fa0ec9b4dff087a3f16e52eb21be6450...
Malicious code in @corp-front/corporate-filter-company-select (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3aaa588b7207d5174a115bb4b75335970dd288419043e978ffc3dc455f8608c5 The package @corp-front/corporate-filter-company-select was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in @ikeacn/ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d77c56bdcd5f8b143de093a7fadd0d3c1c3cb5f06320a636c13438b58ebd68b2 The package @ikeacn/ui was found to contain malicious code. Source: ghsa-malware 36d82d92933643ae45e15ad2306059f66a4c3c1bfb998555c0356bc7eca5aa33 Any...
Malicious code in corporate-blocking (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a096b32dfa76f7e64480d72862c34ec7e644ac03db51ad09af0eb1f929d637a1 The package corporate-blocking was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in pay-by-bank-dashboard-server (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20c58f9aa900a5052fd440dd0a9a3e3ecb345fb4fee2be527b5af385485ee224 The package pay-by-bank-dashboard-server was found to contain malicious code. Source: ghsa-malware...
Malicious code in un112 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1521874d670863316d54ec7213c067617cac71476025f1e398ca9ea01fe1f71 The package un112 was found to contain malicious code. Source: ossf-package-analysis cdd54832c7f264a3a18301f19d464ca271573a29173fe997e49e6c55b0ae1f87...
Malicious code in @mailpoet/components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4ec1e0266ccd0888d11f208447e31b521c1d6a2d7e622b0b78d7572b5f6e8b3e The package @mailpoet/components was found to contain malicious code. Source: ghsa-malware...
Malicious code in @mailpoet/eslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6c16934b5188a78db664e2c22b5fbfd7b089e580072216391bbf8925261484d0 The package @mailpoet/eslint-config was found to contain malicious code. Source: ghsa-malware...
Malicious code in @mailpoet/component (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d48b40574c65ef747944583fa5a49ac40b673d6932a02247c2cdbd5331a79179 The package @mailpoet/component was found to contain malicious code. Source: ghsa-malware...
Malicious code in @fortinet/fortigate-autoscale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6100c8f444b32630601fbeee65c6af9df19979345ea5dc04740f40356c188e06 The package @fortinet/fortigate-autoscale was found to contain malicious code. Source: ghsa-malware...
Malicious code in @alluxio/common-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4f082b7a72d74e881f10d6e0f01c1aef7a0a07b0f446d5a9d31a4763ffed2ed8 The package @alluxio/common-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in @brl-laiwb/ng-laiwb-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e0a2d2559068acafc26534b55d4bf70fc9abcb26da8ff214a2357dee2596265 The package @brl-laiwb/ng-laiwb-api was found to contain malicious code. Source: ghsa-malware...
Malicious code in csv-parsing-xz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fbd0bb44a5de8aaaa9d2397fe8ff5fa7e9a7274bb5d6efe9ef6af97ba8747692 The package csv-parsing-xz was found to contain malicious code. Source: ghsa-malware 40d41fc1adde6793bd8a6626e41da04bcb68b4934a4760eeb34c278ed6165adf...
Malicious code in csv-parsing-xx (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe9a306ce309515a134b6348aff27991f8725d7925ee31b1c51281c9d4a5bc8 The package csv-parsing-xx was found to contain malicious code. Source: ghsa-malware 3e16868b929858d45e76857e9157eae0e3631ca0e2e5988e69c6f537d0ad1a04...
Malicious code in sympy-dev (PyPI)
Package downloads and executes code from remote servers, indicating malicious behavior. Multiple files and IPs involved. Package impersonates popular sympy package...
Malicious code in rank253222 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5018dad195b0f107123f1ab9240ebe4944cd08688982be0c2e9c6203ba9cff1 The package rank253222 was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in icloudprocessor (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 67b215e1995682b83e1afa8c297ecbdfe93d12db8cc11341b6bda84116d95814 During importing, the package starts a thread that exfiltrates user's files --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in ttam-ploy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 48447bed9470950f80afc68786c557605185768ddc394b2032973dc1b6bde276 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in code-transfering-3 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 949a505895a5dcb808074bcddc1a084d12cfadb4b999712b48e012ad455ce817 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in code-transfering-4 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f49b12f95d153280889b4da45b5de3017f21159ad06622092779705ad22e855c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in terminalbrush (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 35e06fb41f9c1a4f082cf49a72dec89fc5b4d2f6580b97e527d291d50807b801 Package downloads an executable, places it distinguished as a Python binary and starts it. At the time of analysis, the URL was no longer active, so it was not...
Malicious code in 1q847 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fe398aee3ca61989d1610e4b2edae183ef70d5fabc08709875ca9ef8725d82c5 Package contains two DLL libraries, one of them packed. Both are widely recognized as malware. The exact behavior is not known --- Category: MALICIOUS - The...
Malicious code in xadauiom (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 64051fbf2528075ff707f512002bce043db1a535723bd677e6fcde0f53f7cafa Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in anduril-lattice-sdk-grpc-python (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1baa043d99a594c81f1a153d2da1d69bc4a2e67181cdf491c2f06f65120089aa Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in spellcheckpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 063d67bbc510966bb83b63d1ba79a8279cf212b9028005800d6f2f99534eec46 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in tv-admin-commons (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23c0b8199883c9cf5ea055f98b5f90f8cfb349eceba1b6c4026ef3b94c96872b The package tv-admin-commons was found to contain malicious code. Source: ghsa-malware 0b766afca3bfb069abd800cf6cb59759fc8555cdeb01e8d8e0576d5adaf720...
Malicious code in ts-tweetnacl-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8035e1fe9ea296c85e726e0afad93eacff3199c25542e19153f914cc63251c12 The package ts-tweetnacl-utils was found to contain malicious code. Source: ghsa-malware...
Malicious code in lumo-api-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab5d24591ceb311425ae395bd2b1bf7f82818bd6c7946d669a19c619462fd755 The package lumo-api-client was found to contain malicious code. Source: ghsa-malware da916419989a0707bcaa3fc59ba24e3ef90e2ec5df35aa6cc1e81f8d3cb82c6...
Malicious code in jquery-ajaxchimp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a460673be9b990e588584788a155a2341ce31fabf8d07d3d0e1b9dda16bb299 The package jquery-ajaxchimp was found to contain malicious code. Source: ghsa-malware 4075366a7f1f1cb9f88b4b4c300e0e79757fea87b01c85fbab708f9be098cf...
Malicious code in aligntype (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 00d265590e58665b4942474738b7d5beca8f636eb79e8761f736088d603f9277 The package aligntype was found to contain malicious code. Source: ghsa-malware b0d41c223d47ebc018df2b4ee07cde5c197d028c7b973a32f34bcb4e19e9a7fd Any...
Malicious code in chai-async-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d513c8edc24de9b9993282b15030364ac655c161954965840f5a8d630470cef1 The package chai-async-test was found to contain malicious code. Source: ghsa-malware 44653d8509702f49ad07480d256afe34186fa1f3920fca7b95d57ef1f7ed855...
Malicious code in dotenv-expanded (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9e36cd005779e12b645b7ec5f6e65df1edae7c6d86736507cd1feacec1ef7cf The package dotenv-expanded was found to contain malicious code. Source: ghsa-malware 8c545865cdbec4a05b0f51103dd3560d60c3f43b818465e4a935a47bf84078d...