ziphash

MAL-2026-6

PyPImalware1/1/2026

Description

Malicious code in ziphash (PyPI)

Indicators of Compromise

SHA256 Hashes (3)

e9a36a54bad10e0f086740a84fd0a837dd4bf1cc9c3c0707648af4bb3855a03e

de06ccd70fe8b69002b46d408c03d54b67573964d444478357e6a7226b418abf

21f7874e4477f3097058af5714eb0bfa79c452d931fa4fd918faf11b1e10e5a8

IP Addresses (2)

77.105.161.16487.120.107.132

References (4)

https://www.virustotal.com/gui/file-analysis/MGEwNWE0MzhlMTU3NTUxZTU1OGI4NTRkYTA2MWMxM2M6MTc2MzgzMDEyNA==OSV https://www.virustotal.com/gui/file/8808a0a09c0180afe742f0265f8b42bf671bc2083dcecd47c1515f52554200d9/detectionOSV https://bad-packages.kam193.eu/pypi/package/ziphashOSV https://www.getsafety.com/blog-posts/extrazip-malware-campaignOSV

Details

EcosystemPyPI

Attack Typemalware

Published1/1/2026

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001