{"id":"MAL-2024-4521","summary":"Malicious code in KeyAuthAPI (NuGet)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2024-10-24T01:01:57Z","published":"2024-06-25T13:29:39Z","database_specific":{"malicious-packages-origins":[{"versions":["1.2.56"],"import_time":"2024-06-28T02:47:47.700760033Z","modified_time":"2024-06-25T13:29:39Z","source":"reversing-labs","id":"RLMA-2024-03306","sha256":"a8de7a1a56f603df16c0ea04bc3e1ae1a7a14f2d1e7927af531bf1cb6ff97390"},{"source":"reversing-labs","import_time":"2024-10-24T00:58:37.820883852Z","modified_time":"2024-10-16T13:47:53Z","id":"RLUA-2024-07671","sha256":"f23b104f410100ad266178601773c35b32f5fda26bf9c06a61e1d9b76e452187"}]},"references":[{"type":"ARTICLE","url":"https://www.reversinglabs.com/blog/malicious-nuget-campaign-uses-homoglyphs-and-il-weaving-to-fool-devs"}],"affected":[{"package":{"name":"KeyAuthAPI","ecosystem":"NuGet","purl":"pkg:nuget/KeyAuthAPI"},"versions":["1.2.56"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/nuget/keyauthapi/MAL-2024-4521.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}