MAL-2025-191647

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/mcp-runcommand-server/MAL-2025-191647.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2025-191647
Published
2025-10-10T10:05:00Z
Modified
2026-03-19T12:54:37.043722Z
Summary
Malicious code in mcp-runcommand-server (PyPI)
Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (17f8adb9e7e30e13f8656300881d4e04975f499c03c2f1dbea2e00fd86c357a5)

Package starts a reverse shell to a hardcoded location

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2025-10-mcp-runcommand-server

Reasons (based on the campaign):

  • The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.
Database specific 
{
    "iocs": {
        "ips": [
            "45.115.38.27"
        ]
    },
    "malicious-packages-origins": [
        {
            "versions": [
                "1.0.7",
                "1.0.9",
                "1.0.10",
                "1.0.11",
                "1.0.12",
                "1.0.13"
            ],
            "modified_time": "2025-12-01T12:54:39Z",
            "import_time": "2025-12-02T09:09:38.377565734Z",
            "id": "RLMA-2025-05619",
            "source": "reversing-labs",
            "sha256": "47adfa8ad8aaeda60898c3ee3f94d214c39a6cbbf5849b129803b33445711dac"
        },
        {
            "versions": [
                "1.0.12",
                "1.0.11",
                "1.0.10",
                "1.0.9",
                "1.0.8",
                "1.0.7",
                "1.0.5",
                "1.0.13"
            ],
            "modified_time": "2025-10-10T11:22:49.809879Z",
            "import_time": "2025-12-02T22:30:55.328386564Z",
            "id": "pypi/2025-10-mcp-runcommand-server/mcp-runcommand-server",
            "source": "kam193",
            "sha256": "133374a34eb4699b428be2676d5e2595aec20f89e6e9efd9bab5d189aab718a7"
        },
        {
            "versions": [
                "1.0.12",
                "1.0.11",
                "1.0.10",
                "1.0.9",
                "1.0.8",
                "1.0.7",
                "1.0.5",
                "1.0.13"
            ],
            "modified_time": "2025-10-10T11:22:49.809879Z",
            "import_time": "2025-12-02T23:07:18.35642974Z",
            "id": "pypi/2025-10-mcp-runcommand-server/mcp-runcommand-server",
            "source": "kam193",
            "sha256": "17f8adb9e7e30e13f8656300881d4e04975f499c03c2f1dbea2e00fd86c357a5"
        },
        {
            "versions": [
                "1.0.5",
                "1.0.7",
                "1.0.8",
                "1.0.9",
                "1.0.10",
                "1.0.11",
                "1.0.12",
                "1.0.13"
            ],
            "modified_time": "2025-10-10T11:22:49.809879Z",
            "import_time": "2025-12-30T22:39:04.129026036Z",
            "id": "pypi/2025-10-mcp-runcommand-server/mcp-runcommand-server",
            "source": "kam193",
            "sha256": "a0e816fae11239ebbb35bbbf5c96247018cef59df505c7ee4b5a79abd890126e"
        },
        {
            "versions": [
                "1.0.8",
                "1.0.5"
            ],
            "modified_time": "2026-03-18T12:15:55Z",
            "import_time": "2026-03-19T12:20:02.541396801Z",
            "id": "RLUA-2026-00502",
            "source": "reversing-labs",
            "sha256": "c1c16f47009ac9683f5a092041d6bad2f1dc7b7e3c158817575def3f4ca24c84"
        }
    ]
}
References
Credits

Affected packages

PyPI / mcp-runcommand-server

Package

Name
mcp-runcommand-server
View open source insights on deps.dev
Purl
pkg:pypi/mcp-runcommand-server

Affected ranges

Affected versions

1.*
1.0.5
1.0.7
1.0.8
1.0.9
1.0.10
1.0.11
1.0.12
1.0.13

Database specific

source 
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/mcp-runcommand-server/MAL-2025-191647.json"