Malware Package
Package Type
Pypi Package
Name
kwxiaodian
Versions
9.1.10
Identified At
1693803600000
Description
Phylum has been extremely busy in the past few weeks, reporting on multiple malware campaigns, including malicious updates to npm packages, malware masquerading as a GCC binary, and a package containing a complicated command-and-control setup for data exfiltration. We monitor open-source ecosystems and analyze every package's source code and metadata
Identified Reports (1)
This malware package was identified on the following reports.
| Report | URL | Published At | Author | Description |
|---|---|---|---|---|
| Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers | https://blog.phylum.io/malware-campaign-targets-npm-pypi-and-rubygems-developers/ | 1693803600000 | Phylum Research Team | Phylum has been extremely busy in the past few weeks, reporting on multiple malware campaigns, including malicious updates to npm packages, malware masquerading as a GCC binary, and a package containing a complicated command-and-control setup for data exfiltration. We monitor open-source ecosystems and analyze every package's source code and metadata |
| Report | External URL | Published At | Author | Description |
Related Malware Packages (10)
The following malware packages were identified in the same report as this one.
| Package Type | Name | Attack Strategy | Package Author | Versions |
|---|---|---|---|---|
| NPM Module | @ks-radar/radar | 9.1.10 | ||
| NPM Module | @ks-radar/radar-chrome-metrics-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-core | 9.1.10 | ||
| NPM Module | @ks-radar/radar-event-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-navigation-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-resource-collect | 9.1.10 | ||
| NPM Module | @ks-radar/radar-util | 9.1.10 | ||
| Pypi Package | dsc-auth | 1.1.1 | ||
| Rubygem | gunther | 1.1.0 | ||
| Pypi Package | openapi-ba | 9.1.10 |