Supply-chain threat intelligence
Risk score
92
Indexed incident for sankislayer (pypi).
Obfuscated code provides a Telegram bot to join a spamming botnet. Centrally controlled bots can be used to spam other Telegram channels (via looped posting, changing photos, or titles).
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-07-sankislayer
Reasons (based on the campaign):
obfuscation
abusing-3rd-api
target:telegram
Affected versions
Indicators
Timeline