pypi · Malicious package advisory
Malwaregunicorm
MAL-2026-6383
Malicious code in gunicorm (PyPI)
Details
--- _-= Per source details. Do not edit below this line.=-_ ## Source: amazon-inspector (c97ab7b686dad57c3e1ffd4b86d6a75470164ed15ceedc2b26a4847fb2a331ab) Package name `gunicorm` is a single-character edit of the widely-used `gunicorn` WSGI server and ships no functional code beyond setup.py. setup.py registers custom `install` and `egg_info` cmdclasses so that, on `pip install` or `pip download`, the package captures the full `os.environ` and the output of `ps -elf`, then POSTs the combined data via `curl` to `http://gjampdwmdjmppwedtkpbbdkq05f6iiz6r.oast.fun` (an interactsh OAST collector). Environment variables on developer and CI machines routinely contain AWS keys, registry tokens, and other credentials, all of which are exfiltrated unconditionally to an attacker-controlled endpoint over plain HTTP. The README self-describes the package as a proof-of-concept that runs a command on pip download/install. There is no legitimate functionality. ## Source: kam193 (91d6bdf640b4cf2b87b464dda65ce3242f4c5c1840f568f0c6b953857c56df57) During installation, the package exfiltrates env variables --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-06-ip-rotat Reasons (based on the campaign): - The package overrides the install command in setup.py to execute malicious code during installation. - exfiltration-env-variables - typosquatting
Compromised versions (1)
- 0.0.1
Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.