MAL-2025-5094
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/ai-labs-snippets-sdk/MAL-2025-5094.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2025-5094
- Published
- 2025-05-19T15:43:26Z
- Modified
- 2026-03-19T12:49:56.277374Z
- Summary
- Malicious code in ai-labs-snippets-sdk (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: kam193 (2d5d4e1e66d1a84969c7af5822efb6e894abc0d263c87f583bf45591d216b85a)
During the importing, it loads a file pretending to an AI model. This file contains pickle-serialized code that exfiltrates data (basic IP/username info, as well as .gitconfig) to a remote target.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2025-05-ai-labs-snippets-sdk
Reasons (based on the campaign):
The package contains code to exfiltrate basic data from the system, like IP or username. It has a limited risk.
exfiltration-generic
impersonation
- Database specific
{ "iocs": { "domains": [ "aksjdbajkb2jeblad.oss-cn-hongkong.aliyuncs.com" ] }, "malicious-packages-origins": [ { "id": "RLMA-2025-02991", "import_time": "2025-06-18T15:05:59.034013625Z", "sha256": "8ea33940044bd0ea7c104ddca0cf9d141453b409c051b03eb8ad9a32f3f893d9", "source": "reversing-labs", "modified_time": "2025-06-18T10:15:00Z", "versions": [ "0.1.0", "1.1.0", "1.2.0", "2.0.0", "2.2.0", "3.0.0", "3.2.0", "3.3.0", "3.4.0", "3.5.0", "4.0.0", "4.4.0" ] }, { "id": "pypi/2025-05-ai-labs-snippets-sdk/ai-labs-snippets-sdk", "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" } ] } ], "import_time": "2025-12-02T22:30:54.88686434Z", "sha256": "e43dae089e7faf080a6aacd1b4770b9aa60ff422ca3a891c06e0af9b6a293831", "source": "kam193", "modified_time": "2025-05-19T15:43:26Z" }, { "id": "pypi/2025-05-ai-labs-snippets-sdk/ai-labs-snippets-sdk", "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" } ] } ], "import_time": "2025-12-02T23:07:17.930066807Z", "sha256": "2d5d4e1e66d1a84969c7af5822efb6e894abc0d263c87f583bf45591d216b85a", "source": "kam193", "modified_time": "2025-05-19T15:43:26Z" }, { "id": "pypi/2025-05-ai-labs-snippets-sdk/ai-labs-snippets-sdk", "import_time": "2025-12-10T21:38:57.240665786Z", "sha256": "03a5ee72cf6685542de120996a482a30c2a78bc2f178d51de4e76069f46ec910", "source": "kam193", "modified_time": "2025-05-19T15:43:26Z", "versions": [ "2.0.0", "0.1.0", "1.1.0", "1.2.0", "2.2.0", "3.0.0", "3.2.0", "4.4.0", "4.0.0", "3.3.0", "3.4.0", "3.5.0" ] }, { "id": "RLUA-2025-06547", "import_time": "2025-12-24T10:07:36.333848713Z", "sha256": "52ac50c031e1105e44eaef571a2a22b59f721e0df4e1e5b630886f762b3c39e6", "source": "reversing-labs", "modified_time": "2025-12-23T08:37:48Z" }, { "id": "pypi/2025-05-ai-labs-snippets-sdk/ai-labs-snippets-sdk", "import_time": "2025-12-30T22:39:04.021889797Z", "sha256": "d46da8220bf219150b40135efceb741c955d6c3ab901be78660ed820ee47a38e", "source": "kam193", "modified_time": "2025-05-19T15:43:26Z", "versions": [ "0.1.0", "1.1.0", "1.2.0", "2.0.0", "2.2.0", "3.0.0", "3.2.0", "3.3.0", "3.4.0", "3.5.0", "4.0.0", "4.4.0" ] }, { "id": "pypi/2025-05-ai-labs-snippets-sdk/ai-labs-snippets-sdk", "import_time": "2026-02-16T14:22:21.494399949Z", "sha256": "9e6e18dff520b7cff8b326f9e5ff80a1d5a0eb7dae6a5bb852bee8384560c482", "source": "kam193", "modified_time": "2025-05-19T15:43:26Z", "versions": [ "0.1.0", "1.1.0", "1.2.0", "2.0.0", "2.2.0", "3.0.0", "3.2.0", "3.3.0", "3.4.0", "3.5.0", "4.0.0", "4.4.0" ] }, { "id": "RLUA-2026-00038", "import_time": "2026-03-19T12:19:20.158239741Z", "sha256": "89e28f4f46e4e98a4ee019728c9319570e2bfc8f7b55b7645ca2ad3f9907d2c5", "source": "reversing-labs", "modified_time": "2026-03-18T12:10:45Z" } ] }- References
- Credits
-
-
- Kamil Mańkowski (kam193)
-
- Kamil Mańkowski (kam193) - REPORTER
-
- ReversingLabs - FINDER
-
Affected packages
PyPI / ai-labs-snippets-sdk
Package
- Name
- ai-labs-snippets-sdk
- View open source insights on deps.dev
- Purl
- pkg:pypi/ai-labs-snippets-sdk