solanakit

MAL-2026-2837

PyPImalware4/17/2026

Description

Malicious code in solanakit (PyPI)

Indicators of Compromise

SHA256 Hashes (1)

3e8770458eab636335241e359b6cee149cc00640fb2418b4462c89ec88accc93

IP Addresses (1)

161.97.81.147

References (6)

https://github.com/genoshide/polymarket-arbitrage-trading-bot/blob/adfcde4ac6da19084e0714af3acd3e93cd46b5bc/requirements.txt#L20OSV https://github.com/genoshide/wallet-mcp/blob/0fad37d8d1bd6520be576128ebc9009a6b5903f0/pyproject.toml#L23OSV https://github.com/genoshide/opensea-auto-mint-bot/blob/27bc619b4d3beffa214f3e034b1b00b0487cf947/requirements.txt#L3OSV https://github.com/genoshide/infinity-router/commit/34f30285acafe21b17777587cf38dc6553a23e66OSV https://github.com/genoshide/solana-account-closer-bot/commit/73750693ec625298be478ce820ef82c844e47c89OSV https://bad-packages.kam193.eu/pypi/package/solanakitOSV

Details

EcosystemPyPI

Attack Typemalware

Published4/17/2026

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001