MAL-2026-610

Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (8e86008d35e5f11e68c465940563127cdc9ba1d4b2963f092914bf8e9ce2587b)

This campaign is built from two parts:

packages named like time-check-server, snapshot-photo contain an innocent-looking code that sends "date" to a remote server,
packages named like alicloud-client are clones of legit aliyun-python-sdk-core package, with a small change in the client.py code, where it imports the time-check-server and calls it, but instead of a date, the credentials to the cloud are exfiltrated. There are also variations with AWS clients

Apparently, the campaign started at least 2 years ago with the snapshot-photo package containing the same functionality as the newer time-check-server (see https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.py).

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2025-02-alicloud-client

Reasons (based on the campaign):

clones-real-package
action-hidden-in-lib-usage
The malicious code is intentionally included in a dependency of the package
exfiltration-cloud-tokens

Affected Packages

snapshot-date

PyPI

Affected versions:

1.0.01.0.11.0.21.0.3

References

WEB

https://bad-packages.kam193.eu/pypi/package/snapshot-date

WEB

https://github.com/pypi-data/pypi-mirror-238/blob/code/packages/snapshot-photo/snapshot_photo-0.0.3-py3-none-any.whl/snapshot_photo/date_format.py

WEB

https://thehackernews.com/2025/03/malicious-pypi-packages-stole-cloud.html

WEB

https://x.com/ReversingLabs/status/1900198602242204003