Spectra Assure
Community
Docs
failIncident: Malware
Scanned: 8 days ago

soopsocks

Artifact:
latest
malicious
SOCKS5 server with Discord egress + Windows auto-start (service or scheduled task)
License: Permissive (MIT)
Published: 2 months ago
See on PyPI

SAFE Assessment

Compliance

Licenses
No license compliance issues
Secrets
No sensitive information found

Security

Vulnerabilities
1 severe vulnerabilities exploited
Hardening
1 modern mitigations missing

Threats

Tampering
2 malware-like behaviors found
Malware
3 supply chain attack artifacts

INCIDENTS FOR THIS VERSION:

malware
2 months agoReported By: Community (JFrog)
More info
malware
2 months agoReported By: ReversingLabs (Researcher)
Learn more about malware detection
List of software behaviors discovered with static code analysis.
Info
Count
Category

Prevalence in PyPI community

Behavior commonly used by malicious software (Important)
Behavior uncommon for this community (Uncommon)
1 packages
found in
Top 100
2 packages
found in
Top 1k
9 packages
found in
Top 10k
5667 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
13 packages
found in
Top 100
99 packages
found in
Top 1k
566 packages
found in
Top 10k
19246 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
9 packages
found in
Top 100
94 packages
found in
Top 1k
476 packages
found in
Top 10k
16117 packages
in community

Prevalence in PyPI community

Behavior often found in this community (Common)
9 packages
found in
Top 100
75 packages
found in
Top 1k
309 packages
found in
Top 10k
9292 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
1 packages
found in
Top 100
14 packages
found in
Top 1k
102 packages
found in
Top 10k
2098 packages
in community

Prevalence in PyPI community

Behavior commonly used by malicious software (Important)
Behavior uncommon for this community (Uncommon)
1 packages
found in
Top 100
3 packages
found in
Top 1k
37 packages
found in
Top 10k
1745 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
8 packages
found in
Top 1k
60 packages
found in
Top 10k
2010 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
7 packages
found in
Top 1k
40 packages
found in
Top 10k
856 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
10 packages
found in
Top 1k
52 packages
found in
Top 10k
1182 packages
in community

Prevalence in PyPI community

Behavior uncommon for this community (Uncommon)
0 packages
found in
Top 100
15 packages
found in
Top 1k
145 packages
found in
Top 10k
4801 packages
in community

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.