What does the bioql malware do?

The OpenSSF Package Analysis project identified 'bioql' @ 3.0.2 (pypi) as malicious. It is considered malicious because: - The package communicates with a domain associated with malicious activity.

How do I remediate bioql if I installed it?

Remove bioql from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound activity or persistence.

I already installed bioql — how do I know if it already compromised me?

If bioql was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

How do I find bioql across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for bioql (26 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging bioql across your stack and pipelines.

Malicious package

bioqlPyPI

Malicious code in bioql (PyPI) Remove it immediately and rotate any exposed credentials.

MAL-2025-47868

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

pip uninstall bioql

What this malware does

The OpenSSF Package Analysis project identified 'bioql' @ 3.0.2 (pypi) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.

Malicious versions

26 flagged

3.0.13.0.23.1.03.1.14.0.05.0.45.0.55.0.65.0.75.0.85.1.05.1.15.2.05.2.15.3.05.3.15.3.45.3.65.4.05.5.05.5.55.5.75.5.85.6.05.6.15.6.2

Indicators of compromise (SHA-256)

2c883d47bd0d35130e4d53d9fc0f96211a30f4a62ad8a4490431ae9a1adaed8f

ff0ec93043fb5fd616ecdcaef4f3c8dde5919649bf9d78bbe8fc3caeba760e3c

a81b1cdae13ddc3ffdef5d722c246d35ee7ed57b39abfee46cf0a6baad3d892e

23ea70ecd58af2aa6707e25238ba7fbd08909d6cb2d391e2bf50d9b9987894da

0a81b7d000b4c7b925388ec2a1ceebdea5589a624f37a2b591fa07720af8d546

27bd603247be55c123acb5fa17b0b64ec7b760ca82b4fab0b3269dbdf47dad33

2b208c9e401537a042a7692c6eee752774f1996c957ef770ce9c4236ddf0b3b2

345b9a265c74edb69cc07e611783561a5b83cd21b642948161706d6f4f56bab4

3eb72be2399b6815e78938713da17f171bc72b50686c5932fca306cc23ab40d1

8693aa142bee92806c15c24ebccfe5226c0587baf01ceb6d2a0967b70cae6a41

b3bdc46e78aec0b5392d985ef6306876770f50a2c75481e22f7fca0c32f6a698

60623b7d85279fb2c0b8d7f534a6bf3ed6d39b32aa407faa67a1da9f97e15d1c

ff3286a363b7348ff2428b87a0175a6a234b247349fb78d27ce953e52f93e82f

29410e92f9ea0ae5e64f56652e5e1a60d65002c2f70d9071f11ec821b07fb3a5

50e024767f82108ed298a4755017f39cb99aa6753fbe66eb4db26d9372b930db

29a54e7b6bde624c0fe84024c9c73ffb0fd10e982de3b2c10f486eb14f7ae109

f564ac669a4f1d2dad03b1591dc983b8d56188402b5c48f45a3a043726657276

93edac1412729b67e0dc5f93ed9a8295331b00196f74d1495e0b5125e018bce8

993f1a5389f448d35d9b20a993eb67e810b7b3be303dbf10cc73460cfe14edeb

1029cd0330809638a339561f2fd723340961441937b89da5e618e57ecc37f9e4

8a5648c310a062b7f6695cc36f4b500145d1eddf1bef4fc2e2470425c5005e2e

c0c299617986962f3570daa8919c860e5c4c2562edef7f2cec5d526ec59898ad

2a1811687bb598be3bdcf67bb13e4ef225fc1067015e4f681487e4129b80a882

295d7c5870b7496c82db53318962714f93138f9146def1d012584b202d25bcab

4766aeae56293f0f7a0bea0bb1a81dc46a2f43e7fa501a8c6f7271fb230074a0

09739749453ddaedda6e966993bb362daba936383612029fc61a7900f1127b93

Detection & response playbook

Malicious package

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for bioql (26 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging bioql across your stack and pipelines.
If you installed it — respond
Remove bioql from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound activity or persistence.
Did it already run?
If bioql was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks bioql before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. bioql on PyPI has been identified as a malicious package (versions 3.0.1, 3.0.2, 3.1.0, 3.1.1, 4.0.0, 5.0.4, 5.0.5, 5.0.6, and 18 more flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Credits

OpenSSF: Package Analysis · finder

Detect & block this

O3 blocks bioql-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the malicious outbound activity and severs the channel.

Malware detection Runtime egress monitoring

bioqlPyPI

What this malware does

Malicious versions

Indicators of compromise (SHA-256)

Detection & response playbook

Find it

If you installed it — respond

Did it already run?

How O3 protects you

Frequently asked questions

Credits

Detect & block this