Malicious package flood on PyPI might be sign of new attacks to come
Tags
attack-pattern: Dns - T1071.004 Dns - T1590.002 Email Addresses - T1589.002 Ip Addresses - T1590.005 Javascript - T1059.007 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 9aeb17e6-75db-4188-a422-0da3cb4642d6
Fingerprint a7b1014ba075b708
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 28, 2023, midnight
Added to db Feb. 28, 2023, 8:53 p.m.
Last updated Nov. 8, 2024, 11:29 a.m.
Headline Malicious package flood on PyPI might be sign of new attacks to come
Title Malicious package flood on PyPI might be sign of new attacks to come
Detected Hints/Tags/Attributes 37/1/6
Source URLs
Redirection Url
Details Source https://www.csoonline.com/article/3688956/malicious-package-flood-on-pypi-might-be-sign-of-new-attacks-to-come.html#tk.rss_applicationsecurity
Details Source https://www.csoonline.com/article/3688956/malicious-package-flood-on-pypi-might-be-sign-of-new-attacks-to-come.html?&web_view=true
URL Provider
Details Provider Source level domain
Details csoonline.com www.csoonline.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 138 
setup.py
Details Domain 9 
tomcat.apache.org
Details File 127 
setup.py
Details File 4 
esquele.exe
Details File 4 
windowscache.exe
Details File 175 
update.exe