Malware Package
Package Type
Rubygem
Name
gunther
Versions
1.1.0
Identified At
1693717200000
Description
Phylum has been extremely busy in the past few weeks, reporting on multiple malware campaigns, including malicious updates to npm packages, malware masquerading as a GCC binary, and a package containing a complicated command-and-control setup for data exfiltration. We monitor open-source ecosystems and analyze every package's source code and metadata
Identified Reports (1)
This malware package was identified on the following reports.
| Report | URL | Published At | Author | Description |
|---|---|---|---|---|
| Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers | https://blog.phylum.io/malware-campaign-targets-npm-pypi-and-rubygems-developers/ | 1693803600000 | Phylum Research Team | Phylum has been extremely busy in the past few weeks, reporting on multiple malware campaigns, including malicious updates to npm packages, malware masquerading as a GCC binary, and a package containing a complicated command-and-control setup for data exfiltration. We monitor open-source ecosystems and analyze every package's source code and metadata |
| Report | External URL | Published At | Author | Description |
Related Malware Packages (10)
The following malware packages were identified in the same report as this one.
| Package Type | Name | Attack Strategy | Package Author | Versions |
|---|---|---|---|---|
| NPM Module | @ks-radar/radar | 9.1.10 | ||
| NPM Module | @ks-radar/radar-chrome-metrics-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-core | 9.1.10 | ||
| NPM Module | @ks-radar/radar-event-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-navigation-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-resource-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-util | 9.1.10 | ||
| Pypi Package | dsc-auth | 1.1.1 | ||
| Pypi Package | kwxiaodian | 9.1.10 | ||
| Pypi Package | openapi-ba | 9.1.10 |