Supply-chain threat intelligence

Incident detail

criticalpypi·obfuscation·osv

Malicious code in sankislayer (PyPI)

sankislayer

Risk score

92

AI summary

Indexed incident for sankislayer (pypi).

Description

Obfuscated code provides a Telegram bot to join a spamming botnet. Centrally controlled bots can be used to spam other Telegram channels (via looped posting, changing photos, or titles).


Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-07-sankislayer

Reasons (based on the campaign):

  • obfuscation

  • abusing-3rd-api

  • target:telegram

Technical details

Affected versions

=1.0.0

Indicators

  • affected version=1.0.075%

Timeline

  1. Advisory published
  2. Indexed by ThreatPkg

Related incidents