Supply-chain threat intelligence

Incident detail

criticalpypi·obfuscation·osv

Malicious code in ezllmgen (PyPI)

ezllmgen

Risk score

92

AI summary

Indexed incident for ezllmgen (pypi).

Description

During installation, the code attempts to download and start a malicious executable.

Likely related to 2025-08-raknet-testing-package.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-easyaillm

Reasons (based on the campaign):

  • Downloads and executes a remote executable.

  • obfuscation

  • malware

Technical details

Affected versions

=2.21

Indicators

  • affected version=2.2175%

Timeline

  1. Advisory published
  2. Indexed by ThreatPkg

Related incidents