solana-token

MAL-2024-10163

PyPImalware10/16/2024
Description

Malicious code in solana-token (PyPI)

Indicators of Compromise
SHA256 Hashes (8)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 Addresses (3)
84.54.44.10089.110.96.25189.110.93.132
References (4)
https://thehackernews.com/2025/05/malicious-pypi-package-posing-as-solana.htmlOSVhttps://bad-packages.kam193.eu/pypi/package/solana-tokenOSVhttps://www.reversinglabs.com/blog/same-name-different-hack-pypi-package-targets-solana-developersOSVhttps://thehackernews.com/2025/05/malicious-pypi-package-posing-as-solana.htmlOSV
Details
EcosystemPyPI
Attack Typemalware
Published10/16/2024
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001