Pulse Detail — Threat Intelligence

PULSE NAME

Telnyx PyPI Supply-Chain Campaign Targets Developers with WAV-Based Malware

WHITE cryptocti 2026-03-28 Modified: 2026-03-28

IOCs

LOW VOLUME

A malicious Python package hosted on PyPI was discovered to contain a hidden backdoor that delivers malware concealed within WAV audio files.

Indicators of Compromise (3 / 6 total)

All FileHash-SHA256 IPv4 URL

TYPE	INDICATOR	DESCRIPTION	CREATED
URL	http://83.142.209.203:8080/	—	2026-03-28
URL	http://83.142.209.203:8080/hangup.wav	—	2026-03-28
URL	http://83.142.209.203:8080/ringtone.wa	—	2026-03-28