{"id":"MAL-2024-12262","summary":"Malicious code in ebe (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (7f86097ff84bdd8007ecb73c8e4a3d412500e503469684998f78fd39b14e51d5)\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2024-07-weaponized-golden\n\n\nReasons (based on the campaign):\n\n\n - files-exfiltration\n","modified":"2025-12-12T20:39:29.006498Z","published":"2024-07-28T23:19:33Z","database_specific":{"malicious-packages-origins":[{"sha256":"c73f63e52cc5b3b90e5646ff1d59d6d48c07398b8a7f377e301cade1a1f68741","source":"kam193","ranges":[{"events":[{"introduced":"0"}],"type":"ECOSYSTEM"}],"import_time":"2025-12-02T22:30:55.119656464Z","modified_time":"2024-07-28T23:19:33Z","id":"pypi/2024-07-weaponized-golden/ebe"},{"sha256":"7f86097ff84bdd8007ecb73c8e4a3d412500e503469684998f78fd39b14e51d5","source":"kam193","ranges":[{"events":[{"introduced":"0"}],"type":"ECOSYSTEM"}],"import_time":"2025-12-02T23:07:18.131132768Z","modified_time":"2024-07-28T23:19:33Z","id":"pypi/2024-07-weaponized-golden/ebe"},{"sha256":"284183cbd28541db57e3ff21108ceec52a8ac23dbd2f3849c89692b641c6e664","versions":["8.0.5"],"source":"kam193","import_time":"2025-12-10T21:38:57.416258199Z","modified_time":"2024-07-28T23:19:33Z","id":"pypi/2024-07-weaponized-golden/ebe"}]},"references":[{"type":"WEB","url":"https://bad-packages.kam193.eu/pypi/package/ebe"}],"affected":[{"package":{"name":"ebe","ecosystem":"PyPI","purl":"pkg:pypi/ebe"},"versions":["8.0.5"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/ebe/MAL-2024-12262.json"}}],"schema_version":"1.7.3","credits":[{"name":"Kamil Mańkowski (kam193)","contact":["https://github.com/kam193","https://bad-packages.kam193.eu/"]},{"name":"Kamil Mańkowski (kam193)","contact":["https://github.com/kam193","https://bad-packages.kam193.eu/"],"type":"ANALYST"}]}