Which versions of artifact-lab-3-package-392c6acd are malicious?

The following PyPI versions of artifact-lab-3-package-392c6acd are flagged malicious: 0.1.0, 0.1.1, 0.1.2, 0.1.3, 0.1.4, 0.1.5, 0.1.6, 0.1.7, 0.1.8, 0.1.9, 0.1.10, 0.1.12, 0.1.13, 0.1.14, 0.1.15, 0.1.16, 0.1.17, 0.1.18, 0.1.19, 0.1.20, and 4 more. Treat any of these as compromised.

How do I remediate artifact-lab-3-package-392c6acd if I installed it?

artifact-lab-3-package-392c6acd is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.

I already installed artifact-lab-3-package-392c6acd — how do I know if it already compromised me?

If artifact-lab-3-package-392c6acd was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is artifact-lab-3-package-392c6acd part of a known attack campaign?

Yes — artifact-lab-3-package-392c6acd is associated with the 2024-08-lab-artifacts-revshell campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find artifact-lab-3-package-392c6acd across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for artifact-lab-3-package-392c6acd (24 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging artifact-lab-3-package-392c6acd across your stack and pipelines.

Malicious package

artifact-lab-3-package-392c6acdPyPI

Malicious code in artifact-lab-3-package-392c6acd (PyPI) Remove it immediately and rotate any exposed credentials.

MAL-2024-8017

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

pip uninstall artifact-lab-3-package-392c6acd

What this malware does

Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simple data. Pentest? An artifact from some red team curse?

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2024-08-lab-artifacts-revshell

Reasons (based on the campaign):

The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.
The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk.
The package overrides the install command in setup.py to execute malicious code during installation.

The OpenSSF Package Analysis project identified 'artifact-lab-3-package-392c6acd' @ 0.1.25 (pypi) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.

Malicious versions

24 flagged

0.1.00.1.10.1.20.1.30.1.40.1.50.1.60.1.70.1.80.1.90.1.100.1.120.1.130.1.140.1.150.1.160.1.170.1.180.1.190.1.200.1.220.1.230.1.240.1.25

Indicators of compromise (SHA-256)

b04b33fa38a07736307a011b99bada5213399f1d9a84780fde87d35379149bf1

0b74db471ed1b0a48a9a884583d6398432acf816731f2e144d4598814448b2a4

426c112a7c094fb4b7fc90c461d9f2e023593baa3237816b0a1f44cf8cf8be05

4919fee24d801edd7b2c72355220531b85d866e2b1d3aa1356ecf96d502a8b3e

25b5dcc0a902ccca0364b1adfeb59dd71e5485619dc57c084a7e96b810437693

2784ad06b515b45eadac59000859f00562435e2830a62576618f67b8c3cfa167

69d61cefcc6cf774c6dbc7b22a839b5d1b0570aa5e7638e13a20c74f7d2aabdd

4a230307d3b2d380899a8523fafbc4ac44f759ba75e0a25ca75380bc5be2017e

577ecfad7e5daa16507b265734ce120b88662f80b2d5c8d61169d4f73564beb9

57fceac19044d46af3355e3a5617cc1a56a692f6202abc04a8991c2c5ce43ba2

15d315e29e9bcef5ba63d05f663989c41e4b2570aab3beffd7144d1b0c9c62af

2c1b0c294adf07378d7fed96f68f02323a7c6a3569ec8accafc3f98c6c2adb18

9ee23078df91fd461e771be515afab61a9d6c027513c36a5eb1c51dd07b1765d

0ed97948981b790fe0e402d2aa9e65e5d7c1f290e5824fe7d8aa65c5b0f8d54e

d2659f4ca23410cba7aedd7a8ed26405749e89f8066157925d130073ccfa7058

d4c793b07be2dd53e55879f61090ae0244bd092188ca1a1ba18a58c0de388536

e9aa6102b4528b10b0bf19dbf055b43285bc7861032c14d6a6ef34c7a3f68aaa

ada0f9ebcf3f190d513b34099887d36ad38579e9c5b5d2004a8f0bff5565e100

369fc24b9d34978ce322716f6944fc351e03d1467d2fb530efda872fcbe3f5d9

e1c2aa2a8c3b3601dc8d28c2da1b5d9ff5b2c33790e9707b2e1d99be2381996d

Detection & response playbook

Credential / info stealer

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for artifact-lab-3-package-392c6acd (24 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging artifact-lab-3-package-392c6acd across your stack and pipelines.
If you installed it — respond
artifact-lab-3-package-392c6acd is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.
Did it already run?
If artifact-lab-3-package-392c6acd was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks artifact-lab-3-package-392c6acd before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. artifact-lab-3-package-392c6acd on PyPI has been identified as a malicious package (versions 0.1.0, 0.1.1, 0.1.2, 0.1.3, 0.1.4, 0.1.5, 0.1.6, 0.1.7, and 16 more flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

2024-08-lab-artifacts-revshell

References

bad-packages.kam193.eu

Credits

Kamil Mańkowski (kam193)
OpenSSF: Package Analysis · finder

Detect & block this

O3 blocks artifact-lab-3-package-392c6acd-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the credential exfiltration and severs the channel.

Malware detection Runtime egress monitoring