spellcheckpy

MAL-2026-441

PyPImalware1/21/2026
Description

Malicious code in spellcheckpy (PyPI)

Indicators of Compromise
SHA256 Hashes (4)
063d67bbc510966bb83b63d1ba79a8279cf212b9028005800d6f2f99534eec46
cfd5a033715b89d667fb2b3d63b55b7cfbe0476dd277d6fbffe53e1a18415d50
623cdd159f33f5102e70fd0b181c201c98ded82ac4f58f4dac059ecabd2a37a8
d8e8295735de44b251965d6a6f2bc4658bddb0f849a5da14020da6069aa6827d
Domains (3)
dothebest.storesearchbox.infoupdatenet.work
References (3)
https://helixguard.ai/blog/malicious-spellcheckers-2025-11-19OSVhttps://bad-packages.kam193.eu/pypi/package/spellcheckpyOSVhttps://www.aikido.dev/blog/malicious-pypi-packages-spellcheckpy-and-spellcheckerpy-deliver-python-ratOSV
Details
EcosystemPyPI
Attack Typemalware
Published1/21/2026
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001