Which versions of dash-grid-normalizer are malicious?

The following PyPI versions of dash-grid-normalizer are flagged malicious: 0.0.1, 0.0.2, 0.0.3, 0.0.4, 0.0.5. Treat any of these as compromised.

How do I remediate dash-grid-normalizer if I installed it?

Remove dash-grid-normalizer from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is dash-grid-normalizer part of a known attack campaign?

Yes — dash-grid-normalizer is associated with the IN-MAL-2026-006265, IN-MAL-2026-006267, IN-MAL-2026-006268, IN-MAL-2026-006270, IN-MAL-2026-006266, IN-MAL-2026-006269, 2026-06-acme-widget-layout-utils campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect dash-grid-normalizer in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking dash-grid-normalizer and packages like it before any post-install script runs.

Malicious package

dash-grid-normalizerPyPI

Malicious code in dash-grid-normalizer (PyPI) Remove it immediately and rotate any exposed credentials.

MAL-2026-5725

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

pip uninstall dash-grid-normalizer

What this malware does

On import, src/dash_grid_normalizer/init.py calls _hydrate_remote_layout_profile(), which reassembles a payload from four string segments, base64-decodes and zlib-decompresses it, and passes the result to builtins.exec(). The decoded Python source imports os/socket/subprocess, connects a TCP socket to 43.69.137.236:80, dup2's stdin/stdout/stderr onto the socket, and execs /bin/sh — a standard reverse shell granting the operator of that IP interactive command execution as the installer's user. The C2 IP literal is itself further obfuscated as bytes([52,51,46,...]). The package's pyproject description ("Responsive grid and gutter helpers for dashboard widget layouts") and name are cover; the README self-identifies the project as a pentest probe with the reverse shell "LIVE CONFIRMED". Any process that does import dash_grid_normalizer (including transitive imports during test or build) opens the shell.

During import, the package starts a reverse shell.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-acme-widget-layout-utils

Reasons (based on the campaign):

The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.

Malicious versions

5 flagged

0.0.10.0.20.0.30.0.40.0.5

Indicators of compromise (SHA-256)

33e2cf264a51ab03d244b5226d2ebdced0eaa0c09c462291f9bbdd75410152f1

362011eafffa765e7f6c24df4ec2c7bb8f9fb6b6414570a5d193e6ea90e1250a

56fb3ee9db44cb577a1f92a596d4da7dce1fba88cc4d710c4f920bc364f3004f

c4a2ff66920eded5c1f2382ac0edb486e56ee0ce9a9ecc019a4e3dc74a6d3f55

f1367e40c183e27f5273b136155f08a27f5f8c90991560d24c4ef4d44f14d3a2

faf62dd8a16c6f5112e302a14e484cd3261532d2c1c6cc1cf53c73eee4f9e6ad

b27c5f3eaf2e7f704830efee579b0a413695540736da93bc3219bfda4afecc79

Frequently asked questions

No. dash-grid-normalizer on PyPI has been identified as a malicious package (versions 0.0.1, 0.0.2, 0.0.3, 0.0.4, 0.0.5 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006265IN-MAL-2026-006267IN-MAL-2026-006268IN-MAL-2026-006270IN-MAL-2026-006266IN-MAL-2026-0062692026-06-acme-widget-layout-utils

References

Credits

Amazon Inspector · finder
Kamil Mańkowski (kam193) · reporter

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection