MAL-2024-10139
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/pytoh/MAL-2024-10139.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2024-10139
- Published
- 2024-06-28T20:16:20Z
- Modified
- 2025-12-12T20:40:13.446358Z
- Summary
- Malicious code in pytoh (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
## Source: kam193 (432fe7421d089148bcff4fba39b4508deef5be4af8e733393e90ccb752ed343b)
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: funcaptcha-ru
Reasons (based on the campaign):
- infostealer
- Database specific
{ "malicious-packages-origins": [ { "modified_time": "2024-10-16T14:49:24Z", "source": "reversing-labs", "sha256": "df852e04e592e5612b1f6b189e32ce0e44bac07d9ec768b5431d72eda44f6cfe", "id": "RLMA-2024-09076", "versions": [ "1.0.0" ], "import_time": "2024-10-24T00:57:07.009292202Z" }, { "modified_time": "2024-06-28T20:16:20Z", "source": "kam193", "ranges": [ { "events": [ { "introduced": "0" } ], "type": "ECOSYSTEM" } ], "id": "pypi/funcaptcha-ru/pytoh", "sha256": "835d31fd59c62c814742ac21d2ecde0e04a2e73fd4477edcb8dadcf8a307a22a", "import_time": "2025-12-02T22:30:55.502963184Z" }, { "modified_time": "2024-06-28T20:16:20Z", "source": "kam193", "ranges": [ { "events": [ { "introduced": "0" } ], "type": "ECOSYSTEM" } ], "id": "pypi/funcaptcha-ru/pytoh", "sha256": "432fe7421d089148bcff4fba39b4508deef5be4af8e733393e90ccb752ed343b", "import_time": "2025-12-02T23:07:18.52806045Z" }, { "modified_time": "2024-06-28T20:16:20Z", "source": "kam193", "sha256": "23dc7f982b6f5ef161518cfbd9d45037c3fbe783b46f1ef0519d26847304c6ea", "id": "pypi/funcaptcha-ru/pytoh", "versions": [ "1.0.0" ], "import_time": "2025-12-10T21:38:57.74685844Z" } ] }- References
- Credits
-
-
- Kamil Mańkowski (kam193)
-
- Kamil Mańkowski (kam193) - REPORTER
-
- ReversingLabs - FINDER
-
Affected packages
PyPI / pytoh
Package
- Name
- pytoh
- View open source insights on deps.dev
- Purl
- pkg:pypi/pytoh