HIGH_RISK_HACKING_TOOLS (1) campaign cataloged at 2024-12-04(2).

1. Packages that are very likely to be used to build or as part of a malware, in most cases. They are not malicious on their own, but are quite a good indicator of something suspicious
2. This is just the date of creating the catalog entry. It may not reflect the date of creation of the campaign itself.

2024-12-tool-pyinfosfinder

Apparently, a tool to build infostealers. Their description is highly discouraging unethical usage, but the tool looks still suspicious.

Abuse categories

exfiltration_browser_data

Campaign uses exfiltration_browser_data.

infostealer

Activity is typical for information stealers, i.e. by exfiltrate various sensitive data from the victim's environment.

References

Referenced resources may include blog posts about the campaign, malware analysis, sandbox reports, or other relevant information.

• https://github.com/EuroMH/PyMalWare

Packages in the campaign

campaign:2024-12-tool-pyinfosfinder

• pyinfosfinder