MAL-2025-192364
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/blank-lib/MAL-2025-192364.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2025-192364
- Published
- 2025-12-07T00:40:43Z
- Modified
- 2025-12-07T03:04:31.488678Z
- Summary
- Malicious code in blank-lib (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: kam193 (96f1bcd77950a6cd42af11d0d4fb4ba3d58349cfde6236027341c044e152bfeb)
This is an infostealer, based on Blank Grabber. It's used as dependency in other malicious packages
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2025-12-blank-lib
Reasons (based on the campaign):
infostealer
infostealer:blankgrabber
clones-real-package
The malicious code is intentionally included in a dependency of the package
exfiltration-credentials
- Database specific
{ "malicious-packages-origins": [ { "modified_time": "2025-12-07T01:03:47.110526Z", "sha256": "96f1bcd77950a6cd42af11d0d4fb4ba3d58349cfde6236027341c044e152bfeb", "source": "kam193", "versions": [ "0.0.8", "0.0.9" ], "id": "pypi/2025-12-blank-lib/blank-lib", "import_time": "2025-12-07T01:35:44.731111152Z" }, { "modified_time": "2025-12-07T01:17:48.66619Z", "sha256": "b0f1560379fabce56cf4ff03d12317400dd419a744927ff319fa4275f9e25367", "source": "kam193", "versions": [ "0.0.8", "0.0.9", "0.1.0" ], "id": "pypi/2025-12-blank-lib/blank-lib", "import_time": "2025-12-07T02:44:26.100863193Z" } ] }- References
- Credits
-
-
- Kamil Mańkowski (kam193) - REPORTER
-
Affected packages
PyPI / blank-lib
Package
- Name
- blank-lib
- View open source insights on deps.dev
- Purl
- pkg:pypi/blank-lib