connections-api-hidden-runner

MAL-2025-192658

PyPImalware12/19/2025
Description

Malicious code in connections-api-hidden-runner (PyPI)

Indicators of Compromise
SHA256 Hashes (2)
ae6bedba7c21e763c5a0e27952cf75a13a7705e7681027c87a833417a2035b70
3fabc78b2d6a644c757f87ad701ff48d405bd332425a77b6d9157116e99238cf
Domains (1)
3zoz.duckdns.org
References (2)
https://www.virustotal.com/gui/file/cb04d8f744d3df997cf47ce691d6e6e9ad5f6a0d19de70931b5591f2557ab116/summaryOSVhttps://bad-packages.kam193.eu/pypi/package/connections-api-hidden-runnerOSV
Details
EcosystemPyPI
Attack Typemalware
Published12/19/2025
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001