—

MAL-2026-6516

Malicious code in inlifegram (PyPI)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (9e2d3483845391abac4b854096ffc1c7767818f9e2b02486d969ee2be0638dc9) The modified version of a Telegram bot library. The obfuscated code, launched when the user starts their own bot application, attaches malicious backdoor commands to the Telegram bot. They allow hardcoded users to execute any commands in the bot's environment.

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-inlifegram

Reasons (based on the campaign):

- clones-real-package

- obfuscation

- The package contains code to execute remote commands (probably limited to a specific set) on the victim's machine.

- rat

- target:telegram

- action-hidden-in-lib-usage

- backdoor

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / inlifegram

No fixed version published yet for inlifegram (pip). Pin to a known-safe version or switch to an alternative.

References

https://bad-packages.kam193.eu/pypi/package/inlifegram [WEB]