pi-coding-agent-0.79.4-h5585027_0.conda

CONDA

SUSPICIOUS

Mal-ecule

Size 12.8 MB download

First seen 4 days ago

Analyzed 4 days ago

Ecosystem python

Source conda.anaconda.org

Objectives

anti-static/obfuscation/code-metrics One-line script that decodes and executes or writes a payload (hostile)

command-and-control/channel/deaddrop URL dead drop / indirection pattern

anti-analysis/vm-detect Node VM vendor string set

anti-static/obfuscation/encoding Encoded child_process module

anti-static/obfuscation/eval Generic Function constructor usage

anti-static/obfuscation/name-mangling Mathematical Unicode indicator glyphs

anti-static/obfuscation/string Heavy script body hidden in comment

collection/clipboard Accesses system clipboard via xclip

command-and-control/backdoor/tasking JS execSync command call

command-and-control/dropper Spawned Python executes stdin payload

command-and-control/dropper/execution Platform-branched payload dropper

command-and-control/remote-command WebSocket sends host environment context

credential-access/env/secrets Filters process.env for secret values

evasion/hijack-execution-flow Node hidden module inject

evasion/security-bypass checkServerIdentity returns undefined/null

exfiltration/stealer/credential Node AWS credential path

exfiltration/stealer/host-profile TS collects process and env

supply-chain/recon-exfil Collects CI runtime env context

fs/path/sensitive Cloud provider credential file paths

package/fields Package executes preinstall hook script

20 of 152 traits shown

Source	forager
Feed	anaconda.org
Ecosystem	python
Domain	anaconda.org
URL	https://conda.anaconda.org/conda-forge/linux-64/pi-coding-agent-0.79.4-h5585027_0.conda

Not seeing what you expected? Let us know