Skip to content

MALICIOUS (1) package from Python Package Index.

  1. The campaign has clearly malicious intent, like infostealers.

urlssser

Affected versions: (1) 0.1, 0.2

  1. Version numbers are usually added automatically. In most cases, the packages listed here were created only to distribute malicious code.

This package does not directly contain malicious code, but was uploaded as part of the malicious campaign and is used as a helper in further infection stages.

Campaign data

Campaign information may not always be 100% accurate for every related package.

Campaign description

The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer

See more details on the campaign page.

RAT

Malicious activity is typical for Remote Access Trojans (RATs).

remote_script

Downloads and executes a remote malicious script.

typosquatting

The package name is an typosquatting variant of a popular package.

Look up in other services

  1. May not be available. See more in pypi-json-data repository.
  2. Open Source Insights project, provided by Google.
  3. Service from Socket.dev, a cybersecurity company.
  4. Spectra Assure Community, a service from ReversingLabs, a cybersecurity company.
  5. Service from Snyk, a cybersecurity company.