THREATPKG
SYNC STALE

Supply-chain threat intelligence

Incident detail

criticalpypi·obfuscation·osv

Malicious code in binproto (PyPI)

binproto

Risk score

92

AI summary

Indexed incident for binproto (pypi).

Description

When using the provided functionality, the code silently downloads and executes a malicious executable.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-05-binproto

Reasons (based on the campaign):

  • obfuscation

  • Downloads and executes a remote executable.

  • action-hidden-in-lib-usage

  • malware

Technical details

Indicators

  • affected version<function fixed() { [native code] }75%

Timeline

  1. Advisory published
  2. Indexed by ThreatPkg

Related incidents