Malicious code in example-pypi-package-loler1 (PyPI)

MAL-2024-12267

Published Aug 23, 2024 · Modified Dec 12, 2025

Description

Source: kam193 (bb19218b6d780973bde55d613a16a9a637728a4d01e79d570bb3406633f0f639)

Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm.

Category: PROBABLY_PENTEST - Packages looking like typical pentest packages, but also anything that looks like testing, exploring pre-prepared kits, research & co, with clearly low-harm possibilities.

Campaign: GENERIC-simple-tests

Reasons (based on the campaign):

The package overrides the install command in setup.py to execute malicious code during installation.

References

WEB https://bad-packages.kam193.eu/pypi/package/example-pypi-package-loler1

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes