{"id":"MAL-2026-5333","summary":"Malicious code in nerfstudio-gs (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (523b928ceb73227e96f02eb85783222da17d0e716c9c7012b4cbcafd1e787f58)\nDuring installation or Python setup (via PTH file), the code exfiltrated all kinds of sensitive data, including env variables, browser's data, SSH keys, data from cryptocurrency extensions, shell history files, etc.\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2026-06-nerfstudio-gs\n\n\nReasons (based on the campaign):\n\n\n - dependency-confusion\n\n\n - exfiltration-credentials\n\n\n - exfiltration-browser-data\n\n\n - exfiltration-crypto\n\n\n - exfiltration-env-variables\n\n\n - files-exfiltration\n\n\n - exfiltration-ssh-keys\n\n\n - The package overrides the install command in setup.py to execute malicious code during installation.\n\n\n - abuses-pth\n","modified":"2026-06-08T21:31:25.682631987Z","published":"2026-06-08T19:20:50Z","database_specific":{"iocs":{"urls":["https://discord.com/api/webhooks/1513619364555919634/5JK4RBrOvQ1GTFDIMZ66pPbYTGwlkA69p0-rwWK8eLHUSznjm9HoAIePcj006MLnx2Te"]},"malicious-packages-origins":[{"modified_time":"2026-06-08T19:53:43.085902Z","versions":["99.0.0","99.0.1","99.0.2","99.0.3"],"import_time":"2026-06-08T20:18:23.050863703Z","source":"kam193","sha256":"523b928ceb73227e96f02eb85783222da17d0e716c9c7012b4cbcafd1e787f58","id":"pypi/2026-06-nerfstudio-gs/nerfstudio-gs"},{"sha256":"42534f036c9f6bfba22f4712a4c2bd08fd66656db742bb2ce60daaad0d38fcca","versions":["99.0.0","99.0.1","99.0.2","99.0.3"],"import_time":"2026-06-08T21:15:24.069617592Z","source":"kam193","modified_time":"2026-06-08T20:02:05.322342Z","id":"pypi/2026-06-nerfstudio-gs/nerfstudio-gs"}]},"references":[{"type":"WEB","url":"https://bad-packages.kam193.eu/pypi/package/nerfstudio-gs"}],"affected":[{"package":{"name":"nerfstudio-gs","ecosystem":"PyPI","purl":"pkg:pypi/nerfstudio-gs"},"versions":["99.0.0","99.0.1","99.0.2","99.0.3"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/nerfstudio-gs/MAL-2026-5333.json"}}],"schema_version":"1.7.5","credits":[{"name":"Kamil Mańkowski (kam193)","contact":["https://github.com/kam193","https://bad-packages.kam193.eu/"],"type":"REPORTER"}]}