soopsocks

Artifact:

latest

malicious

SOCKS5 server with Discord egress + Windows auto-start (service or scheduled task)

License: Permissive (MIT)

Published:

See on PyPI

SAFE Assessment

Compliance

Licenses

No license compliance issues

Secrets

No sensitive information found

Security

Vulnerabilities

2 severe vulnerabilities exploited

Hardening

1 modern mitigations missing

Threats

Tampering

2 malware-like behaviors found

Malware

3 supply chain attack artifacts

INCIDENTS FOR THIS VERSION:

malware

Reported By: Community (JFrog)

More info

malware

Reported By: ReversingLabs (Researcher)

Learn more about malware detection

malware

Reported By: Community (OpenSSF)

More info

Spectra Assure analysis detects 6 more components

Learn more about Spectra Assure

Below is the list of direct dependencies declared by the software package through its manifest.

Name

Version

No dependencies found.

Did you know...

... that you can use ReversingLabs’ Spectra Assure platform to perform regular risk assessments of packages you develop in-house?

We recommend continuous software safeness monitoring through CI/CD integrations and pre-release/deployment checks. In addition to basic package information found on this page our platform offers rich reports for developers and DevSecOps that help them remediate all reported issues.

soopsocks

SAFE Assessment

Compliance

Security

Threats

IMPORTANT: All versions of this package have been maliciousLatest version with malware incident detected: 5 months agoVersion: 0.2.7

INCIDENTS FOR THIS VERSION:

Did you know...