databaserotacos

MAL-2026-2490

PyPImalware4/4/2026

Description

Malicious code in databaserotacos (PyPI)

Indicators of Compromise

SHA256 Hashes (7)

d50833ec383a82f726fdf4acd90e8206e4ca5881e05769b72eb5a7484fae40a3

6c4930bbf42475b62cfc2e5d80ac13a4f54c4061102527fb78d1527ea38acacc

c984d982a49ccf0cae98e40eccd781f1a08b242dbca9c570ab6774d32d3c20d3

a7a512c8401744cd700d018d71d92b1b0303230caee0140ad370c5ca07f1eec2

9510d1ce4b68182fe0f028bdf10fe844a64b3e86e8b59ca28716846a191253cb

04d640be20e9d2ff55f7682d535f6fd56b67b50008307c2e41986d6b31d4bfa4

acb6832c76b97dee95d51142aa8cd0555721af75764396832fe436cc3a341f5d

Domains (2)

jolly-violet-def9.staraledreamer.workers.devholy-sun-41ff.staraledreamer.workers.dev

References (9)

https://www.virustotal.com/gui/file/9f14d239ab8f1289bc7aedeb67d3d72b467ee6c11b201890ab14c5c4f7c175d2/detectionOSV https://www.virustotal.com/gui/file/48b108261d5de97a42eff81cf1a60a32286f72bf8b5f130959e0daa86b783608OSV https://www.virustotal.com/gui/file/ef20289b52ab23ec23c5ff885a2293523ce8456fb00e3d67f1b084c28f7d282a/detectionOSV https://bad-packages.kam193.eu/pypi/package/databaserotacosOSV https://github.com/Addi9000/roboat/blob/331166c8ea3bd080f08fe6d571202e3b47017ed7/README.md#L31OSV https://github.com/Addi9000/roboat/commit/331166c8ea3bd080f08fe6d571202e3b47017ed7OSV https://github.com/Addi9000OSV https://github.com/RoCruiseOSV https://www.roboat.pro/OSV

Details

EcosystemPyPI

Attack Typemalware

Published4/4/2026

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001