apachelicense
MAL-2026-2119
PyPImalware3/23/2026
Description
Malicious code in apachelicense (PyPI)
Indicators of Compromise
SHA256 Hashes (4)
9d96d45a87e117e72107d6d6dfbe8c4e94323323bc28ce9accd8ccba39a0a46c
8cb3d989a52bed71e3c0c981edf8cf82632c1fc6e3a0ea9c39f812e7967848a7
031eef30ab036b21c588c2057db7591f222501d19364223cc502b09d63811c6f
9860722a2a2aed103df780cb27b4c599301607ba92d3827a8e7fd1aabcd4fe55
Domains (1)
apachelicense.vercel.app
IP Addresses (1)
66.45.225.94
References (4)
https://bad-packages.kam193.eu/pypi/package/apachelicenseOSVhttps://www.virustotal.com/gui/file/9a541dffb7fc18dc71dbc8523ec6c3a71c224ffeb518ae3a8d7d16377aebee58/detectionOSVhttps://www.virustotal.com/gui/file/bb2a89001410fa5a11dea6477d4f5573130261badc67fe952cfad1174c2f0eddOSVhttps://socket.dev/blog/contagious-interview-campaign-spreads-across-5-ecosystemsOSV
Details
EcosystemPyPI
Attack Typemalware
Published3/23/2026
Quick Actions