clawdist

MAL-2026-909

PyPItyposquat2/15/2026

Description

Malicious code in clawdist (PyPI)

Indicators of Compromise

SHA256 Hashes (3)

3008887b6c2929530cd48dc996c91d70eb92432465d02f4ff28e6d5927350097

ef45176edb8589120e0ba300ff393f51164c40edf8bbeb28df72e42f1e443b87

5df726437dd64e4f72cfff1c3d6176874a2e06fb4a69ffae480dbc3447467308

Domains (2)

doc-sendapplication.comupdatedappython.com

IP Addresses (1)

45.150.34.209

References (6)

https://tria.ge/260212-z9ndmabs3bOSV https://www.virustotal.com/gui/file/703439f496bded646bb01b62d2cec96f713346a5e38249cdcab4b4840ea56aa9/detectionOSV https://app.any.run/tasks/6c406e3e-5a9b-4019-8427-8be8b30e284aOSV https://tria.ge/260213-22j3cah18b/behavioral1OSV https://bad-packages.kam193.eu/pypi/package/clawdistOSV https://www.getsafety.com/blog-posts/magicwolfOSV

Details

EcosystemPyPI

Attack Typetyposquat

Published2/15/2026

Quick Actions

All Incidents PyPI Incidents

Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives

PoC for every finding

30+ tools orchestrated

Book a Demo Learn More

Setup in 5 minutesSOC 2 & ISO 27001