time-server-test

MAL-2025-191904

PyPImalware2/25/2025

Description

Malicious code in time-server-test (PyPI)

Indicators of Compromise

SHA256 Hashes (4)

af2bd6db7bd154666173d78ffc063a3bf9b4405cc6b183970b0eeae6c7fa9b07

8a160dff2a937ad50482cc2b8c8bcd1b7e7c37aefb584bd26515edfecdd4052f

a6694a42b7e239345427ec759c21b4e1103e101ae22a711671df0f0800d1a8f1

214760e22eaa956d6b3210d5a50480842c33f5df42a64e85df7a115413e7777f

Domains (2)

checktimeserver.orgaliyun-sdk-requests.xyz

References (4)

https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.pyOSV https://x.com/ReversingLabs/status/1900198602242204003OSV https://thehackernews.com/2025/03/malicious-pypi-packages-stole-cloud.htmlOSV https://bad-packages.kam193.eu/pypi/package/time-server-testOSV

Details

EcosystemPyPI

Attack Typemalware

Published2/25/2025

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001