Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Mondoo Vulnerability Intelligence
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
Search vulnerabilities and malicious packages across npm, PyPI, Go, GitHub Actions, VS Code, and more.
-= Per source details. Do not edit below this line.=-
Importing the module, downloads and starts a malicious executable identified as infostealer.
Based on Telegram links, this is related to the 2025-12-synium campaign, but uses slightly different techniques.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2025-12-runtimeutils
Reasons (based on the campaign):
malware
Downloads and executes a remote executable.
infostealer
1.0.01.0.11.0.21.0.2Exploitability
AV:NAC:L10.0/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H