MAL-2024-8843

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/harthat-api/MAL-2024-8843.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2024-8843

Published

2024-09-05T09:39:45Z

Modified

2024-09-05T09:15:00Z

Summary

Malicious code in harthat-api (npm)

Details

The package contains a preinstall hook which silently executes a malicious script with downloader functionality. This is characteristic of an ongoing North Korean state-sponsored campaign.

Database specific

{
    "malicious-packages-origins": null
}

References

Credits

- Stacklok: trustypkg.dev - FINDER
- - https://discord.com/invite/RkzVuTp3WK

Affected packages

npm / harthat-api

Package

Name: harthat-api; View open source insights on deps.dev
Purl: pkg:npm/harthat-api

Affected ranges

Affected versions

1.*

1.3.1

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/harthat-api/MAL-2024-8843.json"