—

MAL-2026-4861

Malicious code in lib-1779997093-yjeeqn (PyPI)

상세

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (adfe3f8b85f731f407f8da6669a76b821b042e4ea1f2fd8fcfddf3293c2ca697) During installation, the package opens a reverse shell

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-05-my-test-package-2025-xyz

Reasons (based on the campaign):

- The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.

- The package overrides the install command in setup.py to execute malicious code during installation.

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

No fixed version published yet for lib-1779997093-yjeeqn (pip). Pin to a known-safe version or switch to an alternative.