Which versions of httpfluent are malicious?

The following PyPI versions of httpfluent are flagged malicious: 0.1. Treat any of these as compromised.

How do I remediate httpfluent if I installed it?

httpfluent is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.

I already installed httpfluent — how do I know if it already compromised me?

If httpfluent was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is httpfluent part of a known attack campaign?

Yes — httpfluent is associated with the RLMA-2025-00473, 2024-12-httpfluent, RLUA-2026-00397 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find httpfluent across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for httpfluent (version 0.1). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging httpfluent across your stack and pipelines.

Malicious package

httpfluentPyPI

Malicious code in httpfluent (PyPI) Remove it immediately and rotate any exposed credentials.

MAL-2025-933

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

pip uninstall httpfluent

What this malware does

The package contains highly obfuscated content, that install another, downloaded from a remote location obfuscated script in the installation path of the 'requests' package, and marks it as a hidden system file. In addition, another file contains a code that imitates doing some meaningful activity.

Later attempts hide the malicious code in a separated package, downloaded from Test PyPI.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2024-12-httpfluent

Reasons (based on the campaign):

obfuscation
modify-system-without-consent
Downloads and executes a remote malicious script.

Malicious versions

1 flagged

0.1

Indicators of compromise (SHA-256)

4e73b5f66facaaa11e1daa9c06e23aa0178e8b099e72a069330c0e8dd4deea2a

940d605085fe152f746a007c5562894c592b62c594ef90484a9a8b4ecf98e9f3

ad45caa6ad5e9c6f356193dc378e801a9fd3846f04443ad9d6c841b0b2e80c62

1c881f912c7c5f72b17522315b5a987903debb8761bb10e3aa5ca935181fc71e

53d979e2a65cc9975ca9c23de2e71163e1549b7df6d8cf1a01f6661711e6c34a

Detection & response playbook

Credential / info stealer

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for httpfluent (version 0.1). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging httpfluent across your stack and pipelines.
If you installed it — respond
httpfluent is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.
Did it already run?
If httpfluent was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks httpfluent before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. httpfluent on PyPI has been identified as a malicious package (version 0.1 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

RLMA-2025-004732024-12-httpfluentRLUA-2026-00397

References

bad-packages.kam193.eu

Credits

Kamil Mańkowski (kam193)
ReversingLabs · finder

Detect & block this

O3 blocks httpfluent-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the credential exfiltration and severs the channel.

Malware detection Runtime egress monitoring