coloramapkgsw

MAL-2025-5105

PyPImalware5/18/2025
Description

Malicious code in coloramapkgsw (PyPI)

Indicators of Compromise
SHA256 Hashes (6)
a5a1bce3d73a33b35cc22c3adb85d426b54c206f902db75ecb68569c314447e4
9c0012ed93dcccfd3ba55fc7e501d37c4f5b16c34204bfa5f784a7d009ad2d96
5435abe63645276c4ddc7940bb2a075cf2ca85803a47c2727402f9376c2f3421
d3b0703e237935a2a53d99b6e3ad717e1e604c218e5e21c97773615373adea16
7f9951b8768f4c35b07ebe35b0483757c3ff198140c55ca19b94bed3e0f8a3ac
933e907223a79d56dd099b18d882f2832c09791b516b96a389640b5e92723846
References (3)
https://checkmarx.com/zero-post/python-pypi-supply-chain-attack-coloramaOSVhttps://security.snyk.io/vuln/SNYK-PYTHON-COLORAMAPKGSW-10305009OSVhttps://bad-packages.kam193.eu/pypi/package/coloramapkgswOSV
Details
EcosystemPyPI
Attack Typemalware
Published5/18/2025
Aliases
SNYK-PYTHON-COLORAMAPKGSW-10305009
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001