MAL-2026-5334
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/spaysrbx/MAL-2026-5334.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2026-5334
- Published
- 2026-06-08T20:47:35Z
- Modified
- 2026-06-09T10:46:30.198049771Z
- Summary
- Malicious code in spaysrbx (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: kam193 (21c6a7c2bf656df8e570edbe60daa7af52e1e0df0eae906de41f47dcf6eb0ede)
The package exfiltrates Roblox cookies from the victim machine.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-06-spaysrbdata
Reasons (based on the campaign):
- infostealer
- Database specific
{ "malicious-packages-origins": [ { "modified_time": "2026-06-08T20:47:35.604257Z", "versions": [ "0.3.0" ], "sha256": "21c6a7c2bf656df8e570edbe60daa7af52e1e0df0eae906de41f47dcf6eb0ede", "id": "pypi/2026-06-spaysrbdata/spaysrbx", "source": "kam193", "import_time": "2026-06-08T21:15:24.070787965Z" }, { "import_time": "2026-06-09T10:41:59.935096659Z", "versions": [ "0.3.0" ], "sha256": "e8ed2b72d0419496418ee74f0479cca2dc8027c6a290c7022d590fb6a57d5780", "id": "pypi/2026-06-spaysrbdata/spaysrbx", "source": "kam193", "modified_time": "2026-06-08T20:47:35.604257Z" } ], "iocs": { "urls": [ "https://script.google.com/macros/s/AKfycbwa8sLEdsG_leFVecuc_dFrZ_h5JnZKrWxXWazK1T6DoKGAGG5OJ9rznwYXg2PS-h1d/exec", "https://discord.com/api/webhooks/1513807955340820602/-UbLOjMGWIop17hrvQ7XsrZkJBJaNlMTueX7xnsJ9hz6DKaBgSe_Ur2FIgSJMHlusBwx" ] } }- References
- Credits
-
-
- Kamil MaĆkowski (kam193) - REPORTER
-
Affected packages
PyPI / spaysrbx
Package
- Name
- spaysrbx
- View open source insights on deps.dev
- Purl
- pkg:pypi/spaysrbx