timekeeper-verifier
MAL-2025-3475
PyPImalware2/25/2025
Description
Malicious code in timekeeper-verifier (PyPI)
Indicators of Compromise
SHA256 Hashes (5)
87005aaa82cdcdac0a0d4c6d36e67ac25608db01d8ed2d87dcb8c62b7137fde1
226cb0f9a178aab0334014940359365a2cb5a328b5762c735095bbec28847942
3a20fe9fed2445d097ddfd628d59e1b8149913aec4915c112cacfa9fb7cdfc6e
82c37c5db80adcf285cdf43663d4e49d0d77ea76f9d07372bbffcca5d8333fd7
7202ba614b062cc8065fe0396dc190e0ccd48da5ae30ef844357bbee4bba382b
Domains (2)
checktimeserver.orgaliyun-sdk-requests.xyz
References (4)
https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.pyOSVhttps://x.com/ReversingLabs/status/1900198602242204003OSVhttps://thehackernews.com/2025/03/malicious-pypi-packages-stole-cloud.htmlOSVhttps://bad-packages.kam193.eu/pypi/package/timekeeper-verifierOSV
Details
EcosystemPyPI
Attack Typemalware
Published2/25/2025
Quick Actions