aclient-sdk

MAL-2025-191671

PyPImalware2/25/2025

Description

Malicious code in aclient-sdk (PyPI)

Indicators of Compromise

SHA256 Hashes (4)

04609a8c12d5be0a3a5e41d7ee406665c15a7ef72c9b4eb4c32c15866d385d02

aa9e5d91a1f45bce354edc5b12fcacf603db5e00dc4a48628d3fe5fff37d0eb2

92d246f2a2898deb2ef3c99bc4f930e8c9eac1e3e9cf0c38e4b28ba8b846d080

9e9274a66276e910453197f26749fcc17431d8e905ce8bc5cb0ac8691520c510

Domains (2)

checktimeserver.orgaliyun-sdk-requests.xyz

References (4)

https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.pyOSV https://x.com/ReversingLabs/status/1900198602242204003OSV https://thehackernews.com/2025/03/malicious-pypi-packages-stole-cloud.htmlOSV https://bad-packages.kam193.eu/pypi/package/aclient-sdkOSV

Details

EcosystemPyPI

Attack Typemalware

Published2/25/2025

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001