MAL-2024-6148
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/tiktokthon/MAL-2024-6148.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2024-6148
- Aliases
-
- SNYK-PYTHON-TIKTOKTHON-5508581
- Published
- 2024-06-25T13:43:40Z
- Modified
- 2024-10-24T01:01:59Z
- Summary
- Malicious code in tiktokthon (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
- Database specific
{ "malicious-packages-origins": [ { "versions": [ "0.1" ], "modified_time": "2024-06-25T13:43:40Z", "source": "reversing-labs", "sha256": "2bde3c9c7d24ecdf58362cdef45f4e4878616e44833ccd374f768bf5299bf454", "id": "RLMA-2024-04952", "import_time": "2024-06-28T02:51:01.866872756Z" }, { "modified_time": "2024-10-16T14:52:58Z", "source": "reversing-labs", "sha256": "9bf9c2b07a7138eb79821e739a750973f937a79bf1adb2d732fffa780246b091", "id": "RLUA-2024-09425", "import_time": "2024-10-24T01:00:21.124360058Z" } ] }- References
-
- https://github.com/DataDog/malicious-software-packages-dataset
- https://medium.com/checkmarx-security/ml-engine-detects-pypi-packages-containing-whitesnake-malware-designed-to-steal-your-personal-7a275496f442
- https://research.jfrog.com/malicious-packages/
- https://security.snyk.io/vuln/SNYK-PYTHON-TIKTOKTHON-5508581
- Credits
-
-
- ReversingLabs - FINDER
-
Affected packages
PyPI / tiktokthon
Package
- Name
- tiktokthon
- View open source insights on deps.dev
- Purl
- pkg:pypi/tiktokthon