lium-4-96

MAL-2026-54

PyPItyposquat1/5/2026
Description

Malicious code in lium-4-96 (PyPI)

Indicators of Compromise
SHA256 Hashes (1)
f30524e8a9ff2b7c5b43b57ea582beeba9d8f94da4097ecd572d26b4177e6626
Domains (2)
bitensor.xyzcameradriver.pro
IP Addresses (1)
23.227.203.99
References (4)
https://dmpdump.github.io/posts/NorthKorea_Backdoor_Stealer/OSVhttps://www.virustotal.com/gui/file-analysis/NTk2Y2FiNTBmM2QxODI2NDRlZGM0OTA2OGVjYzUxOTk6MTc2NzYzMzkzMA==OSVhttps://www.virustotal.com/gui/file/d02d6a5da3cff57d78e260961526420c172a46f4a07d18a3865fecbf5dfebc1d/detectionOSVhttps://bad-packages.kam193.eu/pypi/package/lium-4-96OSV
Details
EcosystemPyPI
Attack Typetyposquat
Published1/5/2026
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001