PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero
Tags
attack-pattern: Data Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID f4a1d856-31e9-475b-9e01-ccda9ff1634e
Fingerprint 856c8d0d295747ab
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 11, 2022, noon
Added to db Sept. 26, 2022, 9:34 a.m.
Last updated Oct. 22, 2024, 11:52 a.m.
Headline Sonatype Blog
Title PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero
Detected Hints/Tags/Attributes 43/1/6
Source URLs
Redirection Url
Details Source https://blog.sonatype.com/pypi-package-secretslib-drops-fileless-linux-malware-to-mine-monero
URL Provider
Details Provider Source level domain
Details sonatype.com blog.sonatype.com
Attributes
Details Type #Events CTI Value
Details Domain 138 
setup.py
Details Domain 1 
anl.gov
Details Domain 5 
pepy.tech
Details File 4 
'setup.py
Details IPv4 1 
5.161.57.250
Details Url 1 
http://5.161.57.250/tox