VYPR

pypi · Malicious package advisory

Malware

improvado-layout-panel-metrics

MAL-2026-6231

Malicious code in improvado-layout-panel-metrics (PyPI)

Details


---
_-= Per source details. Do not edit below this line.=-_

## Source: amazon-inspector (61cc6b0b5d5efe4675f4159e8bc8f6380970614c1dc36b553207fa73fa66104e)
The package's top-level fluent_panel_metrics/__init__.py defines _bootstrap_runtime_profile() and unconditionally invokes it at import. The function opens a TCP socket to 34.69.137.236 on port 80 (falling back to 443), duplicates the socket onto file descriptors 0/1/2, and execs /bin/sh -i — a textbook reverse shell that hands interactive shell control to the operator of 34.69.137.236 on any machine that imports the package (directly or transitively). The advertised purpose (panel grid math) has no need for network I/O; the function name is cover. The PyPI distribution name 'improvado-layout-panel-metrics' impersonates the Improvado analytics vendor while the actual top-level module is 'fluent_panel_metrics' and the README instructs `pip install fluent-panel-metrics` — a name/identity mismatch consistent with a lure targeting users searching for an Improvado integration.

## Source: kam193 (5aeeeb45ef8a0d58b7679829291f01f8455c466a416fe3706e9d2042666a40de)
During import, the package starts a reverse shell.


---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.


Campaign: 2026-06-acme-widget-layout-utils


Reasons (based on the campaign):


 - The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.

## Source: ossf-package-analysis (45281220c3d37f2fbfa7f18d1d963443a5521d4d5c37614b0843202c32e8d528)
The OpenSSF Package Analysis project identified 'improvado-layout-panel-metrics' @ 0.1.1 (pypi) as malicious.

It is considered malicious because:

- The package executes one or more commands associated with malicious behavior.

Compromised versions (2)

  • 0.1.0
  • 0.1.1

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.