Malware

TITAN

For your environment

Hunt this family in your stack

Mallory pivots from this family to the IOCs, detections, and named campaigns that touch your stack, and pages you when something new lands.

Start free trial

MITRE ATT&CK

Techniques & procedures

8 distinct techniques documented for this family, organized by ATT&CK tactic.

Initial Access

1 technique

T1195Supply Chain CompromiseEvidence1

A malicious PyPI package masquerading as an AI assistant, myra-ai-assistant, was found to contain TITAN, a Python-based infostealer

Stealth

1 technique

T1036MasqueradingEvidence1

A malicious PyPI package masquerading as an AI assistant, myra-ai-assistant

Credential Access

1 technique

T1056Input CaptureEvidence1

Its use of trusted cloud services and social engineering prompts enables stealthy data theft

Collection

3 techniques

T1005Data from Local SystemEvidence1

capture sensitive information such as login pages, emails, IDE sessions, and financial transactions

T1056Input CaptureEvidence1

Its use of trusted cloud services and social engineering prompts enables stealthy data theft

T1113Screen CaptureEvidence1

uses OCR-driven screen monitoring to capture sensitive information such as login pages, emails, IDE sessions, and financial transactions

Command and Control

2 techniques

T1071Application Layer ProtocolEvidence1

while blending its traffic with legitimate Google Gemini API communications

T1102Web ServiceEvidence1

Its use of trusted cloud services ... enables stealthy data theft without relying on traditional command-and-control infrastructure.

Exfiltration

1 technique

T1567.002Exfiltration to Cloud StorageEvidence1

The malware exfiltrates screenshots, user conversations, and biometric enrollment images to attacker-controlled Firebase infrastructure

INDICATORS OF COMPROMISE

IOCs tracked for this family

37 indicators attributed across vendor reports, sandbox runs, and researcher write-ups. Full values are available in Mallory.

View more in app

Network

1 tracked

IPs, domains, and DNS infrastructure linked to this family.

Hashes

23 tracked

File hashes (MD5, SHA-1, SHA-256) from samples and reports.

Other

13 tracked

Other indicator types observed in public reporting.

TypeValueLatest sighting

hash.sha256●●●●●●●●●●●●View more in apptoday

ACTIVITY FEED

Recent activity

1 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

1 SOURCESView more in app

gurucul threat researchNews

Jun 18, 2026

Titan Infostealer Embedded in AI Assistant PyPI Package | Community Portal | Gurucul

Python-based infostealer embedded in a malicious PyPI package. It uses OCR-driven screen monitoring to capture sensitive information, including login pages, emails, IDE sessions, financial transactions, user conversations, and biometric enrollment images, then exfiltrates the data to attacker-controlled Firebase infrastructure while blending traffic with legitimate Google Gemini API communications.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets match these IOCs, which detections are missing, which campaigns to expect next, and what to do in the next 30 minutes.

Start free trial

IOC matching37

Match every observed IP, domain, and hash against your live telemetry.

Threat actor attribution

Named campaigns wielding this family, with evidence pinned to each claim.

Exploited vulnerabilities

CVEs this family uses for access and lateral movement.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

MITRE ATT&CK mapping8

Every documented technique, ranked by evidence weight.

Researcher chatter

Reddit, Mastodon, and CTI community discussion around this family.