MALICIOUS (1) campaign cataloged at 2026-03-01(2).
- The campaign has clearly malicious intent, like infostealers.
- This is just the date of creating the catalog entry. It may not reflect the date of creation of the campaign itself.
2026-02-pyclogger¶
Package contains an infostealer exfiltrating Discord tokens and saved browser credentials to a hardcoded location.
Abuse categories¶
exfiltration_browser_data
Campaign uses exfiltration_browser_data.
exfiltration_credentials
The package attempts to steal credentials, like passwords or API keys.
infostealer
Activity is typical for information stealers, i.e. by exfiltrate various sensitive data from the victim's environment.