—

MAL-2026-6262

Malicious code in inversiones-common (PyPI)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (db7e12d838a02b689989300eb5fc231e541d2f4af8fd6d92d23baf697d9754f9) Generic campaign for all (likely) research / pentests, where the amount or art of collected data raises questions about the privacy, security and ethical side.

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: GENERIC-questionable-pentest

Reasons (based on the campaign):

- exfiltration-env-variables

- exfiltration-generic

- The package overrides the install command in setup.py to execute malicious code during installation.

- typosquatting

## Source: ossf-package-analysis (84c429f2131d4d031e80894355e2d5ef70eefa3eccb712653fdd6adeca1fe0c8) The OpenSSF Package Analysis project identified 'inversiones-common' @ 99.0.1 (pypi) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / inversiones-common

No fixed version published yet for inversiones-common (pip). Pin to a known-safe version or switch to an alternative.

References

https://bad-packages.kam193.eu/pypi/package/inversiones-common [WEB]