MAL-2024-10089

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/openwse/MAL-2024-10089.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-10089
Published
2024-06-28T20:16:20Z
Modified
2025-12-12T20:40:59.434176Z
Summary
Malicious code in openwse (PyPI)
Details

-= Per source details. Do not edit below this line.=-

## Source: kam193 (b36449f918a760921ee5f584422fe9be9e9a02860ff04ee87fa181f39187f905)

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: funcaptcha-ru

Reasons (based on the campaign):

  • infostealer
Database specific
{
    "malicious-packages-origins": [
        {
            "import_time": "2024-10-24T00:57:03.583143705Z",
            "modified_time": "2024-10-16T14:44:52Z",
            "id": "RLMA-2024-08631",
            "sha256": "cd4218b21ffc3fd791557c64e21c6d3ae02cbc6de364c3d0661546b401fe21e2",
            "source": "reversing-labs",
            "versions": [
                "1.0.0"
            ]
        },
        {
            "import_time": "2025-12-02T22:30:55.405298299Z",
            "modified_time": "2024-06-28T20:16:20Z",
            "id": "pypi/funcaptcha-ru/openwse",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "sha256": "7ac8749f79f064c58dabbf4e6437ec869a8bd4ab2352804905422e302f7fd51b",
            "source": "kam193"
        },
        {
            "import_time": "2025-12-02T23:07:18.432816695Z",
            "modified_time": "2024-06-28T20:16:20Z",
            "id": "pypi/funcaptcha-ru/openwse",
            "ranges": [
                {
                    "type": "ECOSYSTEM",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "sha256": "b36449f918a760921ee5f584422fe9be9e9a02860ff04ee87fa181f39187f905",
            "source": "kam193"
        },
        {
            "import_time": "2025-12-10T21:38:57.650903714Z",
            "modified_time": "2024-06-28T20:16:20Z",
            "id": "pypi/funcaptcha-ru/openwse",
            "sha256": "e4ab95cf996c958d85368e0e388b9484587f3128e58764226bb958775729aa77",
            "source": "kam193",
            "versions": [
                "1.0.0"
            ]
        }
    ]
}
References
Credits

Affected packages

PyPI / openwse

Package

Affected ranges

Affected versions

1.*
1.0.0

Database specific

source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/openwse/MAL-2024-10089.json"