tronlast

MAL-2025-48907

PyPImalware9/26/2025
Description

Malicious code in tronlast (PyPI)

Indicators of Compromise
SHA256 Hashes (4)
0893eab34a5bbd91d19cda34fc98a088d732d47c8b40a2e73ccc32b8fc881dd2
b898c4b9a7275aec64643e5f65e44b17e4a911a903c927bda02a1346f8a61697
8b8fb3ac2b3c204497c05a7ac21606b47fea8209c79762e816f4016602aafe8b
01151bd06dcdcd9464da198becdb2b31cac4829e9f60bb2b4b4d2fe950465e51
Domains (4)
68076f26e81df7060eba3e58.mockapi.io66c0dc0bba6f27ca9a57c4bf.mockapi.io67b9f37c51192bd378dee810.mockapi.ioreda-sequestered-justine.ngrok-free.dev
References (2)
https://en.wikipedia.org/wiki/Tron_(blockchain)OSVhttps://bad-packages.kam193.eu/pypi/package/tronlastOSV
Details
EcosystemPyPI
Attack Typemalware
Published9/26/2025
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001