Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers
Tags
attack-pattern: Credentials - T1589.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Visual Basic - T1059.005 Web Services - T1583.006 Web Services - T1584.006
Show in Graph
Common Information
Type Value
UUID 469e98f0-dcd9-40b7-b40d-d8d4d7724f42
Fingerprint acb909118d37f304
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 7, 2024, 2:37 p.m.
Added to db Nov. 7, 2024, 11:57 a.m.
Last updated Nov. 14, 2024, 12:01 p.m.
Headline Malicious PyPI Package 'Fabrice' Found Stealing AWS Keys from Thousands of Developers
Title Malicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of Developers
Detected Hints/Tags/Attributes 23/1/4
Source URLs
Redirection Url
Details Source https://thehackernews.com/2024/11/malicious-pypi-package-fabrice-found.html
URL Provider
Details Provider Source level domain
Details thehackernews.com thehackernews.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 118 The Hacker News https://feeds.feedburner.com/TheHackersNews 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 6 
p.vbs
Details File 12 
d.py
Details File 271 
chrome.exe
Details IPv4 5 
89.44.9.227