lfx-1.11.0.dev9-py3-none-any.whl

WHL

BENIGN

AI Legitimate Langflow package with standard components

Mal-ecule

Size 2.4 MB download

First seen 5 days ago

Analyzed 4 days ago

Ecosystem python

Source files.pythonhosted.org

Python stealer context with dropper: lfx-1.11.0.dev9-py3-none-any.whl:0x56e

Dynamic module import followed by

Python raw socket stream

lfx-1.11.0.dev9-py3-none-any.whl whl

0	PK��BP��lfx/__init__.py�PK��BPt��Regex for database secrets

Well-known

lib Contains the string "urllib3"

anti-static/obfuscation/reflection Dynamic module import followed by

command-and-control/backdoor/rat Python C2 upload endpoint

credential-access/cloud/token AWS credential directory reference

execution/interpreter Python runtime compile call

exfiltration/http Python raw socket stream

supply-chain/credential-theft Composer auth.json reference

credential-access/cloud Python reads AWS shared credentials

execution/autoinstall pip install using sys.executable

data/archive/extract Python ZIP archive extraction

fs/path/sensitive AWS config file path

build site-packages directory reference

20 of 86 traits shown

SHA-256	267205206a290d0749680ced2b0ee8ec82505ee3cad84e580d9069dae816d721
Canonical SHA-256	0033538cc8d3825bdd0b7e181203185a2a69ceb5d6887de4bbfdd1bd141c3a5c
Filename	lfx-1.11.0.dev9-py3-none-any.whl
Package	lfx
Version	1.11.0.dev9

Source	forager
Feed	pypi.org
Ecosystem	python
Domain	pythonhosted.org
URL	https://files.pythonhosted.org/packages/56/45/b01b64822ca9a48be37fe131f20bbb417f07fe35bd3309491e22b445158b/lfx-1.11.0.dev9-py3-none-any.whl

Not seeing what you expected? Let us know