awscloud-clients-core
MAL-2025-191687
PyPImalware2/25/2025
Description
Malicious code in awscloud-clients-core (PyPI)
Indicators of Compromise
SHA256 Hashes (4)
fd72377bd44ac94d4e846424cd73135390d9f22f8b2ff46ace3366df66b37334
e27bf5713a8bafdbcc34c43b98cc4d5e9c5d03e4952f788b12ff9749081b22d2
431a746ec653df45fd3ffcac72ffcec401fa4cc75d0046b99e3a02bca0da3502
80dfc7acb89d20b896525731f095fbfe0df12881a07b5af4462637d0ae541b63
Domains (2)
checktimeserver.orgaliyun-sdk-requests.xyz
References (4)
https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.pyOSVhttps://x.com/ReversingLabs/status/1900198602242204003OSVhttps://thehackernews.com/2025/03/malicious-pypi-packages-stole-cloud.htmlOSVhttps://bad-packages.kam193.eu/pypi/package/awscloud-clients-coreOSV
Details
EcosystemPyPI
Attack Typemalware
Published2/25/2025
Quick Actions