MAL-2024-7784

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/jqtools-toolbox-expose/MAL-2024-7784.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2024-7784
Published
2024-07-22T14:11:20Z
Modified
2024-07-24T13:07:51Z
Summary
Malicious code in jqtools-toolbox-expose (npm)
Details

The package contains code to exfiltrate user and host information to an oastify domain.


-= Per source details. Do not edit below this line.=-

Source: ossf-package-analysis (cf8ecc5384976555e101e147d0456707c86467e52647ed0bdbc91bc47639356a)

The OpenSSF Package Analysis project identified 'jqtools-toolbox-expose' @ 69.69.69 (npm) as malicious.

It is considered malicious because:

  • The package communicates with a domain associated with malicious activity.
Database specific
{
    "malicious-packages-origins": [
        {
            "import_time": "2024-07-22T14:34:36.963056287Z",
            "source": "ossf-package-analysis",
            "modified_time": "2024-07-22T14:11:20Z",
            "versions": [
                "69.69.69"
            ],
            "sha256": "cf8ecc5384976555e101e147d0456707c86467e52647ed0bdbc91bc47639356a"
        },
        {
            "import_time": "2024-07-24T13:07:24.093520824Z",
            "source": "ossf-package-analysis",
            "modified_time": "2024-07-24T12:51:02Z",
            "versions": [
                "70.69.69"
            ],
            "sha256": "cef84c4fc127d96b90177e4ac442505ddc24484dec5537004743f0ccca43208f"
        }
    ]
}
References
Credits

Affected packages

npm / jqtools-toolbox-expose

Package

Name
jqtools-toolbox-expose
View open source insights on deps.dev
Purl
pkg:npm/jqtools-toolbox-expose

Affected ranges

Affected versions

69.*

69.69.69

70.*

70.69.69