FortiGuard AI Detects Continued OSS Supply Chain Attacks Hidden in the Python Package Index | FortiGuard Labs
Tags
attack-pattern: Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID 9fef813f-b167-48eb-8a75-53f8696ba89e
Fingerprint c130185f886fe53f
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 14, 2023, 8 a.m.
Added to db Aug. 15, 2023, 3:02 a.m.
Last updated Nov. 17, 2024, 7:44 p.m.
Headline FortiGuard AI Detects Continued OSS Supply Chain Hidden in Python Package Index
Title FortiGuard AI Detects Continued OSS Supply Chain Attacks Hidden in the Python Package Index | FortiGuard Labs
Detected Hints/Tags/Attributes 13/1/16
Source URLs
Redirection Url
Details Redirection https://feeds.fortinet.com/~/778303010/0/fortinet/blog/threat-research~FortiGuard-AI-Detects-Continued-OSS-Supply-Chain-Hidden-in-Python-Package-Index
URL Provider
Details Provider Source level domain
Details fortinet.com feeds.fortinet.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 122 Fortinet Threat Research Blog https://feeds.fortinet.com/fortinet/blog/threat-research 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 287 
yahoo.com
Details Domain 138 
setup.py
Details Domain 4127 
github.com
Details Domain 34 
file.io
Details Email 1 
johannes.mayer@yahoo.com
Details File 61 
__init__.py
Details File 127 
setup.py
Details md5 1 
475e15da18cd785eb079981585a6519b
Details md5 1 
188a8e8f9afb0423276cbe92f8846c47
Details md5 1 
f658a9d876041b6434d073d883c72865
Details md5 1 
d643d5f2e8631bcb831e3e79d198a061
Details md5 1 
9286d9ad57a21c49a06dac2fb7f463ba
Details md5 1 
9c8cbdc00c745407198863372d5ca06c
Details Url 1 
https://github.com/killskids/test/raw/main/calc.exe
Details Url 1 
https://github.com/killskids/test/raw/main/auth-server.exe
Details Url 1 
https://file.io/iwbo1kybw4bn