hexcon

MAL-2025-191755

PyPImalware11/25/2025
Description

Malicious code in hexcon (PyPI)

Indicators of Compromise
SHA256 Hashes (2)
31b94a740de707fbeeacbc0cc963608282c0858459fcfbf5c514d4b888d83895
191af8110082a90345db609c8f23d2313a5be68ec121742172f32cf3a1d5d905
Domains (4)
68076f26e81df7060eba3e58.mockapi.io66c0dc0bba6f27ca9a57c4bf.mockapi.io67b9f37c51192bd378dee810.mockapi.ioreda-sequestered-justine.ngrok-free.dev
References (2)
https://en.wikipedia.org/wiki/Tron_(blockchain)OSVhttps://bad-packages.kam193.eu/pypi/package/hexconOSV
Details
EcosystemPyPI
Attack Typemalware
Published11/25/2025
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001