MAL-2026-5995

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/tobihook/MAL-2026-5995.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-5995

Published

2026-06-17T04:22:21Z

Modified

2026-06-17T06:02:05.876757089Z

Summary

Malicious code in tobihook (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (2c093ec7049ebbe26ca860033bc1fd81ad98f4f586b66fc68170e1ff81ae90bb)

The package masquerades as an HTTP helper (functions named post/get/fetch, module comment '# request/init.py', and an unused requests dependency) but each of those functions base64-decodes the string 'cmd /c mshta https://quitlag.com' and launches it via subprocess.Popen with CREATENOWINDOW on Windows. mshta.exe then fetches and executes attacker-controlled HTA/JavaScript from quitlag.com on the caller's machine with no visible window. The malicious code is concealed in tobihook/post.py behind roughly 400 lines of leading whitespace and base64 obfuscation, and the dropper is reachable from the package's documented top-level API (tobihook/init.py re-exports post). Any developer who installs tobihook and calls its advertised post()/get()/fetch() triggers remote code execution on a Windows host.

Database specific

{
    "malicious-packages-origins": [
        {
            "id": "IN-MAL-2026-006881",
            "import_time": "2026-06-17T05:45:42.031525513Z",
            "source": "amazon-inspector",
            "versions": [
                "1.0.4"
            ],
            "modified_time": "2026-06-17T04:22:21Z",
            "sha256": "2c093ec7049ebbe26ca860033bc1fd81ad98f4f586b66fc68170e1ff81ae90bb"
        }
    ]
}

References

https://pypi.org/project/tobihook/1.0.4/

Credits

- Amazon Inspector - FINDER
- - inspector-research@amazon.com

Affected packages

PyPI / tobihook

Package

Name: tobihook; View open source insights on deps.dev
Purl: pkg:pypi/tobihook

Affected ranges

Affected versions

1.*

1.0.4

Database specific

cwes

[
    {
        "name": "Embedded Malicious Code",
        "description": "The product contains code that appears to be malicious in nature.",
        "cweId": "CWE-506"
    }
]

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/tobihook/MAL-2026-5995.json"

indicators

{
    "package_integrity": [
        {
            "filename": "tobihook-1.0.4-py3-none-any.whl",
            "hashes": {
                "blake2b_256": "596f2c5ff209e5e7edf7117cfb076ac5509d90e2df79f195f856cf638862df61",
                "md5": "c6e1aadfd1e5600b697e835c64398ed5",
                "sha256": "51936e8835e6f0501d7e2aa6b1e4d44bfa1c273dd030bc469f52354f26de88fa"
            }
        },
        {
            "filename": "tobihook-1.0.4.tar.gz",
            "hashes": {
                "blake2b_256": "26d20b14018d25c92b3eda5babd8dc4281ff86ddeca752dd90f2fa3ebb0fc3c8",
                "md5": "c8c5236ca6ad0adb8cc9dc9d8855ef7d",
                "sha256": "1059215361577e38a8ad04b98c56aac494c93a52714e8a512cfac7c0f008c443"
            }
        }
    ],
    "evidence_files": [
        {
            "path": "tobihook/post.py",
            "sha256": "447e5ecc54a7119c09666ecfdbf02d6ce944ee370baa06ef9f2a704302c32d58",
            "tlsh": "9931f48fe32b478843a308af2009ac72d7d70405d3222986fb1d97a02f09464a43e87d"
        },
        {
            "path": "tobihook/__init__.py",
            "sha256": "afb179d86f84de6d45ef4944dbf13ede041dcca7bcdb71d47df340ea7579a198",
            "tlsh": "9790024e4467760be2644084052107100929a4307f2014783004a5ac63466140410108"
        }
    ]
}