Xygeni Malicious Code Digest 79

Xygeni Malicious Code Digest 79

Every week, our malware detection systems scan thousands of new and updated packages across public registries like npm and PyPI. This week was no exception. We confirmed over 145 malicious packages between July 10 and July 17, 2026, across npm and PyPI, led by one standout campaign and several continuing threats.

The biggest single event was bingo-ai on PyPI: nearly 80 versions confirmed within about 30 minutes on July 13, a clear signature of automated, templated publishing rather than a manual campaign.

We also confirmed PhantomSync, an eight-package npm cluster (base58-utils, abi-encode, eth-dev, arb-kit, layer2-sdk, solana-key-utils, eth-wallet-helpers, crypto-validate-lib) published July 13–14 under a single account. Each package works exactly as advertised, but hides a self-invoking dropper that fires ~37 seconds after import, decodes a payload staged as a fake test fixture, installs cross-platform persistence, and launches a crypto-wallet and secrets stealer that exfiltrates RSA-4096-encrypted findings to public IPFS storage. 

The @wagni_bot crypto/DeFi impersonation scope, which we’ve tracked in previous weeks, kept expanding, adding new SDK names for Binance, Jupiter, Orca, Pump.fun, Solana, and Meteora on top of its existing Polymarket, Hyperliquid, MetaMask (typosquatted as metemask-sdk), and OpenSea packages.

The moon-uv FauxUV campaign continued with six more versions on PyPI, and google-caja-bower used inflated version numbers (up to 1000.800.20) on npm in an apparent dependency-confusion attempt. We also confirmed axios-test-one, a typosquat targeting one of the most widely used npm packages.

This weekly snapshot is part of our ongoing Malicious Code Digest, where we validate new threats and provide actionable intelligence to help DevSecOps teams protect their pipelines before damage occurs. Let’s break down what we found this week and why it matters.

EcosystemPackageConfirmed
npmes6-codify:1.0.1Jul 10, 2026
npmes6-codify:1.3.0Jul 10, 2026
npmes6-codify:1.2.0Jul 10, 2026
npmes6-codify:1.1.0Jul 10, 2026
npmes6-codify:1.4.0Jul 10, 2026
npmes6-codify:2.0.0Jul 10, 2026
npmes6-codify:2.1.0Jul 10, 2026
npmes6-codify:2.2.0Jul 10, 2026
npmenv-fast:1.0.0Jul 11, 2026
npmclient-cookies-agent:99.9.7Jul 11, 2026
pypimoon-uv:0.0.20Jul 11, 2026
pypimoon-uv:0.0.21Jul 11, 2026
pypimoon-uv:0.0.22Jul 11, 2026
pypimoon-uv:0.0.23Jul 11, 2026
pypimoon-uv:0.0.24Jul 12, 2026
pypimoon-uv:0.0.25Jul 12, 2026
npmkuaishou:99.9.10Jul 13, 2026
npmgoogle-caja-bower:20.20.20Jul 13, 2026
npmgoogle-caja-bower:999.99.20Jul 13, 2026
npmgoogle-caja-bower:999.999.20Jul 13, 2026
npmgoogle-caja-bower:1000.80.20Jul 13, 2026
npmgoogle-caja-bower:1000.800.20Jul 13, 2026
npmvuln-package:99.9.9Jul 13, 2026
npmvuln-package:99.9.10Jul 13, 2026
npmvuln-package:99.9.11Jul 13, 2026
pypibingo-ai:6.2.105Jul 13, 2026
pypibingo-ai:6.2.13Jul 13, 2026
pypibingo-ai:6.2.11Jul 13, 2026
pypibingo-ai:6.2.104Jul 13, 2026
pypibingo-ai:6.2.103Jul 13, 2026
pypibingo-ai:6.2.102Jul 13, 2026
pypibingo-ai:6.2.101Jul 13, 2026
pypibingo-ai:6.2.100Jul 13, 2026
pypibingo-ai:6.2.99Jul 13, 2026
pypibingo-ai:6.2.98Jul 13, 2026
pypibingo-ai:6.2.96Jul 13, 2026
pypibingo-ai:6.2.94Jul 13, 2026
pypibingo-ai:6.2.93Jul 13, 2026
pypibingo-ai:6.2.92Jul 13, 2026
pypibingo-ai:6.2.91Jul 13, 2026
pypibingo-ai:6.2.90Jul 13, 2026
pypibingo-ai:6.2.89Jul 13, 2026
pypibingo-ai:6.2.88Jul 13, 2026
pypibingo-ai:6.2.86Jul 13, 2026
pypibingo-ai:6.2.85Jul 13, 2026
pypibingo-ai:6.2.84Jul 13, 2026
pypibingo-ai:6.2.83Jul 13, 2026
pypibingo-ai:6.2.82Jul 13, 2026
pypibingo-ai:6.2.80Jul 13, 2026
pypibingo-ai:6.2.79Jul 13, 2026
pypibingo-ai:6.2.78Jul 13, 2026
pypibingo-ai:6.2.77Jul 13, 2026
pypibingo-ai:6.2.75Jul 13, 2026
pypibingo-ai:6.2.74Jul 13, 2026
pypibingo-ai:6.2.73Jul 13, 2026
pypibingo-ai:6.2.106Jul 13, 2026
pypibingo-ai:6.2.71Jul 13, 2026
pypibingo-ai:6.2.107Jul 13, 2026
pypibingo-ai:6.2.70Jul 13, 2026
pypibingo-ai:6.2.69Jul 13, 2026
pypibingo-ai:6.2.66Jul 13, 2026
pypibingo-ai:6.2.65Jul 13, 2026
pypibingo-ai:6.2.64Jul 13, 2026
pypibingo-ai:6.2.63Jul 13, 2026
pypibingo-ai:6.2.61Jul 13, 2026
pypibingo-ai:6.2.60Jul 13, 2026
pypibingo-ai:6.2.58Jul 13, 2026
pypibingo-ai:6.2.109Jul 13, 2026
pypibingo-ai:6.2.57Jul 13, 2026
pypibingo-ai:6.2.56Jul 13, 2026
pypibingo-ai:6.2.55Jul 13, 2026
pypibingo-ai:6.2.54Jul 13, 2026
pypibingo-ai:6.2.53Jul 13, 2026
pypibingo-ai:6.2.52Jul 13, 2026
pypibingo-ai:6.2.51Jul 13, 2026
pypibingo-ai:6.2.50Jul 13, 2026
pypibingo-ai:6.2.49Jul 13, 2026
pypibingo-ai:6.2.48Jul 13, 2026
pypibingo-ai:6.2.47Jul 13, 2026
pypibingo-ai:6.2.45Jul 13, 2026
pypibingo-ai:6.2.44Jul 13, 2026
pypibingo-ai:6.2.43Jul 13, 2026
pypibingo-ai:6.2.42Jul 13, 2026
pypibingo-ai:6.2.41Jul 13, 2026
pypibingo-ai:6.2.40Jul 13, 2026
pypibingo-ai:6.2.39Jul 13, 2026
pypibingo-ai:6.2.38Jul 13, 2026
pypibingo-ai:6.2.35Jul 13, 2026
pypibingo-ai:6.2.34Jul 13, 2026
pypibingo-ai:6.2.33Jul 13, 2026
pypibingo-ai:6.2.32Jul 13, 2026
pypibingo-ai:6.2.29Jul 13, 2026
pypibingo-ai:6.2.26Jul 13, 2026
pypibingo-ai:6.2.25Jul 13, 2026
pypibingo-ai:6.2.24Jul 13, 2026
pypibingo-ai:6.2.22Jul 13, 2026
pypibingo-ai:6.2.20Jul 13, 2026
pypibingo-ai:6.2.19Jul 13, 2026
pypibingo-ai:6.2.18Jul 13, 2026
pypibingo-ai:6.2.17Jul 13, 2026
pypibingo-ai:6.2.16Jul 13, 2026
pypibingo-ai:6.2.15Jul 13, 2026
npmvuln-package:99.9.14Jul 13, 2026
pypibingo-ai:6.2.29Jul 13, 2026
npmbugexploit:99.9.9Jul 13, 2026
pypihwatlib:0.3.0Jul 14, 2026
npmamdocs-core-package:11.11.11Jul 14, 2026
npmnode-fsagent:1.0.8Jul 14, 2026
npmnode-fsagent:1.0.7Jul 14, 2026
npmnode-fsagent:1.0.9Jul 14, 2026
npmtest_adminet:99.9.9Jul 14, 2026
npmarb-kit:1.0.0Jul 14, 2026
npmeth-dev:1.0.0Jul 14, 2026
npmlayer2-sdk:1.0.0Jul 14, 2026
npmcrypto-validate-lib:1.0.0Jul 14, 2026
npmeth-wallet-helpers:1.0.0Jul 14, 2026
npmsolana-key-utils:1.0.0Jul 14, 2026
npmbase58-utils:1.0.0Jul 14, 2026
npmabi-encode:1.0.0Jul 14, 2026
npmlayer2-sdk:1.0.1Jul 14, 2026
npmbase58-utils:1.0.1Jul 14, 2026
npmeth-dev:1.0.1Jul 14, 2026
npmabi-encode:1.0.1Jul 14, 2026
npmarb-kit:1.0.1Jul 14, 2026
npmeth-dev:1.0.2Jul 14, 2026
npmabi-encode:1.0.2Jul 14, 2026
npmbase58-utils:1.0.3Jul 14, 2026
npmabi-encode:1.0.3Jul 15, 2026
npmbase58-utils:1.0.4Jul 15, 2026
npmcrypto-validate-lib:1.0.1Jul 15, 2026
npmeth-wallet-helpers:1.0.1Jul 15, 2026
npmsolana-key-utils:1.0.1Jul 15, 2026
npm@web3-helpers/core:1.0.3Jul 15, 2026
npmaxios-test-one:1.18.9Jul 15, 2026
npmestore-client:5.0.0Jul 15, 2026
pypiplungerhacker:2.0.1Jul 15, 2026
npmhehehe:2.0.1Jul 16, 2026
pypilog-guru:0.7.8Jul 16, 2026
pypipylogora:0.7.8Jul 16, 2026
npmhehehe:2.0.2Jul 16, 2026
npmmy-tailwind-gutenberg-block:0.1.5Jul 16, 2026
npmaxios-test-one:1.19.0Jul 17, 2026
npm@across-toolkit/eslint-config:99.0.1Jul 17, 2026
npm@across-toolkit/typescript-config:99.0.0Jul 17, 2026
npm@across-toolkit/eslint-config:99.0.0Jul 17, 2026
npm@across-toolkit/typescript-config:99.0.1Jul 17, 2026
npmvalidpilot-mcp:1.4.0Jul 17, 2026
npmnyxora:26.7.17Jul 17, 2026

145+ Packages. One Week. The Scale Keeps Climbing.

This week’s digest reflects the same trajectory: attackers publish faster than registries remove, and faster than a weekly scan can catch. A single PyPI package, bingo-ai, went from first version to nearly 80 confirmed versions in about 30 minutes, automated publishing at a speed no manual review process can match. Meanwhile, PhantomSync shows that volume isn’t the only risk: eight quiet, well-crafted npm packages sat with a delayed dropper for a day before detonating, and the @wagni_bot crypto SDK impersonation scope kept adding new targets on top of an already-wide net.

Xygeni Early Malware Warning monitors npm, PyPI, and other registries in real time, flagging threats at the moment of publication, before they reach a build, before an AI agent installs them autonomously, and before a delayed dropper or a rebranded infostealer has a chance to execute. When bingo-ai ships dozens of versions in half an hour, or a PhantomSync package waits 37 seconds after import before firing, detection that runs after the fact is already too late.

Xygeni’s Open Source Security platform gives DevSecOps teams the real-time detection and prioritization needed to stay ahead of coordinated supply chain pressure, so your pipelines stay clean without slowing your teams down.

sca-tools-software-composition-analysis-tools
Prioritize, remediate, and secure your software risks
Get your Free Account.
No credit card required.

Secure your Software Development and Delivery

with Xygeni Product Suite