MAL-2025-934

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/huggingleg2/MAL-2025-934.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2025-934

Published

2024-12-04T06:28:49Z

Modified

2026-03-19T12:53:50.457114Z

Summary

Malicious code in huggingleg2 (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Source: kam193 (19ba00b8fab08e8016af3bfb4ba9fbb18510b2aa823dfb82a46a5b3ecd477655)

Installing the package starts a revshell

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2024-12-huggingleg2

Reasons (based on the campaign):

The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.
The package overrides the install command in setup.py to execute malicious code during installation.

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "RLMA-2025-00474",
            "modified_time": "2025-02-03T17:07:27Z",
            "source": "reversing-labs",
            "versions": [
                "0.1"
            ],
            "import_time": "2025-02-03T18:38:06.804154563Z",
            "sha256": "c3d2d113b69ab7c811fd32de5f831f98c73976e678425f05c61747b81078f1a9"
        },
        {
            "id": "pypi/2024-12-huggingleg2/huggingleg2",
            "modified_time": "2024-12-04T06:28:49Z",
            "source": "kam193",
            "import_time": "2025-12-02T22:30:55.262326202Z",
            "ranges": [
                {
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ],
                    "type": "ECOSYSTEM"
                }
            ],
            "sha256": "b5db7f765f02adaa83c6f464ec54339279b949420281dfa726e684715f5fe232"
        },
        {
            "id": "pypi/2024-12-huggingleg2/huggingleg2",
            "modified_time": "2024-12-04T06:28:49Z",
            "source": "kam193",
            "import_time": "2025-12-02T23:07:18.28670537Z",
            "ranges": [
                {
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ],
                    "type": "ECOSYSTEM"
                }
            ],
            "sha256": "19ba00b8fab08e8016af3bfb4ba9fbb18510b2aa823dfb82a46a5b3ecd477655"
        },
        {
            "id": "pypi/2024-12-huggingleg2/huggingleg2",
            "modified_time": "2024-12-04T06:28:49Z",
            "source": "kam193",
            "versions": [
                "0.1"
            ],
            "import_time": "2025-12-10T21:38:57.538068611Z",
            "sha256": "6ba90df2440613af1727c5b46a669b1bc6f196fc46667d87c39157d5e96a05e3"
        },
        {
            "id": "RLUA-2026-00406",
            "modified_time": "2026-03-18T12:14:49Z",
            "source": "reversing-labs",
            "import_time": "2026-03-19T12:19:53.250949085Z",
            "sha256": "b66ac6e1c28ec210cb2a33b33021d65fa2a25fe2c7f8a64039bd109d1b3f1854"
        }
    ]
}

References

https://bad-packages.kam193.eu/pypi/package/huggingleg2

Credits

- Kamil Mańkowski (kam193)
- - https://github.com/kam193
  - https://bad-packages.kam193.eu/
- Kamil Mańkowski (kam193) - ANALYST
- - https://github.com/kam193
  - https://bad-packages.kam193.eu/
- ReversingLabs - FINDER
- - https://www.reversinglabs.com

Affected packages

PyPI / huggingleg2

Package

Name: huggingleg2; View open source insights on deps.dev
Purl: pkg:pypi/huggingleg2

Affected ranges

Affected versions

0.*

0.1

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/huggingleg2/MAL-2025-934.json"