{"id":"MAL-2024-4628","summary":"Malicious code in Rg.Plugins.Popups.Net (NuGet)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","modified":"2024-10-24T01:01:57Z","published":"2024-06-25T13:31:00Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2024-06-25T13:31:00Z","versions":["1.0.175","1.0.1098","1.0.1116","1.0.1017","1.0.25","1.0.1042","1.0.131","1.0.1029","1.0.1065","1.0.1146","1.0.1068","1.0.288","1.0.1158","1.0.1162","1.0.12","1.0.148","1.0.206","1.0.1130","1.0.1061","1.0.161","1.0.216","1.0.1067","1.0.205","1.0.1019","1.0.1104","1.0.1200","1.0.1037","1.0.139","1.0.1142","1.0.1129","1.0.1136","1.0.108","1.0.141","1.0.1165","1.0.143","1.0.1181","1.0.261","1.0.1107","1.0.1125","1.0.106","1.0.222","1.0.1123","1.0.1076","1.0.144","1.0.151","1.0.156","1.0.169","1.0.1051","1.0.1027","1.0.1186","1.0.23","1.0.1141","1.0.1120","1.0.1180","1.0.207","1.0.135","1.0.1190","1.0.214","1.0.1063","1.0.119","1.0.181","1.0.27","1.0.1007","1.0.1166","1.0.116","1.0.1081","1.0.1004","1.0.1033","1.0.13","1.0.1028","1.0.233","1.0.1090","1.0.1124","1.0.147","1.0.129","1.0.1099","1.0.1071","1.0.1096","1.0.270","1.0.262","1.0.226","1.0.1177","1.0.1103","1.0.231","1.0.185","1.0.1015","1.0.1150","1.0.1035","1.0.1198","1.0.14","1.0.1172","1.0.170","1.0.183","1.0.1078","1.0.128","1.0.238","1.0.224","1.0.1022","1.0.1147","1.0.1199","1.0.1192","1.0.1008","1.0.1126","1.0.296","1.0.1012","1.0.1140","1.0.177","1.0.228","1.0.168","1.0.1132","1.0.145","1.0.244","1.0.186","1.0.1054","1.0.104","1.0.266","1.0.294","1.0.1173","1.0.17","1.0.268","1.0.1110","1.0.123","1.0.159","1.0.24","1.0.1121","1.0.1163","1.0.1134","1.0.1002","1.0.1138","1.0.165","1.0.1041","1.0.1047","1.0.1083","1.0.153","1.0.1030","1.0.1046","1.0.1171","1.0.19","1.0.1049","1.0.107","1.0.179","1.0.1168","1.0.1088","1.0.113","1.0.243","1.0.212","1.0.1144","1.0.176","1.0.1118","1.0.241","1.0.1191","1.0.201","1.0.122","1.0.1011","1.0.1040","1.0.1183","1.0.239","1.0.202","1.0.200","1.0.249","1.0.1005","1.0.152","1.0.110","1.0.1034","1.0.166","1.0.154","1.0.132","1.0.1077","1.0.105","1.0.150","1.0.1127","1.0.178","1.0.111","1.0.198","1.0.208","1.0.173","1.0.21","1.0.1187","1.0.1073","1.0.112","1.0.1057","1.0.199","1.0.1050","1.0.1175","1.0.218","1.0.1122","1.0.1079","1.0.1070","1.0.118","1.0.1148","1.0.1149","1.0.1131","1.0.236","1.0.1032","1.0.1133","1.0.1115","1.0.117","1.0.237","1.0.197","1.0.134","1.0.1082","1.0.234","1.0.1112","1.0.140","1.0.1058","1.0.102","1.0.1064","1.0.1154","1.0.253","1.0.158","1.0.204","1.0.1059","1.0.251","1.0.1197","1.0.191","1.0.223","1.0.1024","1.0.1044","1.0.1085","1.0.1072","1.0.109","1.0.1084","1.0.1188","1.0.220","1.0.1113","1.0.136","1.0.1117","1.0.187","1.0.1031","1.0.163","1.0.137","1.0.1023","1.0.211","1.0.227","1.0.1020","1.0.1060","1.0.259","1.0.274","1.0.264","1.0.1100","1.0.1097","1.0.167","1.0.217","1.0.1111","1.0.1095","1.0.1167","1.0.219","1.0.1026","1.0.1189","1.0.2","1.0.1055","1.0.1174","1.0.1155","1.0.1043","1.0.1128","1.0.125","1.0.196","1.0.1102","1.0.114","1.0.246","1.0.1009","1.0.103","1.0.194","1.0.1080","1.0.1106","1.0.1185","1.0.192","1.0.1135","1.0.221","1.0.155","1.0.20","1.0.126","1.0.157","1.0.184","1.0.254","1.0.120","1.0.182","1.0.235","1.0.215","1.0.265","1.0.1074","1.0.1021","1.0.133","1.0.149","1.0.1114","1.0.1164","1.0.240","1.0.230","1.0.1105","1.0.1161","1.0.1194","1.0.260","1.0.16","1.0.124","1.0.299","1.0.115","1.0.193","1.0.1010","1.0.209","1.0.1092","1.0.18","1.0.1087","1.0.1201","1.0.190","1.0.26","1.0.1160","1.0.1048","1.0.1038","1.0.174","1.0.1018","1.0.1069","1.0.1093","1.0.1052","1.0.1066","1.0.164","1.0.1101","1.0.1143","1.0.1153","1.0.1182","1.0.1075","1.0.1195","1.0.195","1.0.1196","1.0.1108","1.0.1178","1.0.1025","1.0.1091","1.0.272","1.0.142","1.0.4","3.4.0","1.0.1094","1.0.1152","1.0.3","1.0.160","1.0.1013","1.0.1039","1.0.1139","1.0.1159","1.0.130","1.0.252","1.0.1157","1.0.1151","1.0.1003","1.0.22","1.0.1184","1.0.213","1.0.171","1.0.1036","1.0.1119","1.0.1137","1.0.210","1.0.121","1.0.1056","1.0.138","1.0.203","1.0.146","1.0.1179","1.0.188","1.0.1014","1.0.225","1.0.242","1.0.1156","1.0.172","1.0.15","1.0.180","1.0.189","1.0.1109","1.0.1086","1.0.1062","1.0.1089","1.0.269","1.0.1006","1.0.1169","1.0.263","1.0.1193","1.0.229","1.0.1016","1.0.1045","1.0.232","1.0.1170","1.0.1176","1.0.162","1.0.127","1.0.1145","1.0.1053"],"id":"RLMA-2024-03415","import_time":"2024-06-28T02:48:00.910858152Z","sha256":"41d0f9b97e4742b2cdd19e1355d9e1e31b8cdd7385bb8f36cd19dea6893cb583","source":"reversing-labs"},{"modified_time":"2024-10-16T13:48:25Z","source":"reversing-labs","id":"RLUA-2024-07719","import_time":"2024-10-24T00:58:41.093491343Z","sha256":"0ae2655e0fd9c886b251f25ca872f8e63ce94a34af905833512d26ceda6ece70"}]},"references":[{"type":"ARTICLE","url":"https://www.reversinglabs.com/blog/malicious-nuget-campaign-uses-homoglyphs-and-il-weaving-to-fool-devs"}],"affected":[{"package":{"name":"Rg.Plugins.Popups.Net","ecosystem":"NuGet","purl":"pkg:nuget/Rg.Plugins.Popups.Net"},"versions":["1.0.175","1.0.1098","1.0.1116","1.0.1017","1.0.25","1.0.1042","1.0.131","1.0.1029","1.0.1065","1.0.1146","1.0.1068","1.0.288","1.0.1158","1.0.1162","1.0.12","1.0.148","1.0.206","1.0.1130","1.0.1061","1.0.161","1.0.216","1.0.1067","1.0.205","1.0.1019","1.0.1104","1.0.1200","1.0.1037","1.0.139","1.0.1142","1.0.1129","1.0.1136","1.0.108","1.0.141","1.0.1165","1.0.143","1.0.1181","1.0.261","1.0.1107","1.0.1125","1.0.106","1.0.222","1.0.1123","1.0.1076","1.0.144","1.0.151","1.0.156","1.0.169","1.0.1051","1.0.1027","1.0.1186","1.0.23","1.0.1141","1.0.1120","1.0.1180","1.0.207","1.0.135","1.0.1190","1.0.214","1.0.1063","1.0.119","1.0.181","1.0.27","1.0.1007","1.0.1166","1.0.116","1.0.1081","1.0.1004","1.0.1033","1.0.13","1.0.1028","1.0.233","1.0.1090","1.0.1124","1.0.147","1.0.129","1.0.1099","1.0.1071","1.0.1096","1.0.270","1.0.262","1.0.226","1.0.1177","1.0.1103","1.0.231","1.0.185","1.0.1015","1.0.1150","1.0.1035","1.0.1198","1.0.14","1.0.1172","1.0.170","1.0.183","1.0.1078","1.0.128","1.0.238","1.0.224","1.0.1022","1.0.1147","1.0.1199","1.0.1192","1.0.1008","1.0.1126","1.0.296","1.0.1012","1.0.1140","1.0.177","1.0.228","1.0.168","1.0.1132","1.0.145","1.0.244","1.0.186","1.0.1054","1.0.104","1.0.266","1.0.294","1.0.1173","1.0.17","1.0.268","1.0.1110","1.0.123","1.0.159","1.0.24","1.0.1121","1.0.1163","1.0.1134","1.0.1002","1.0.1138","1.0.165","1.0.1041","1.0.1047","1.0.1083","1.0.153","1.0.1030","1.0.1046","1.0.1171","1.0.19","1.0.1049","1.0.107","1.0.179","1.0.1168","1.0.1088","1.0.113","1.0.243","1.0.212","1.0.1144","1.0.176","1.0.1118","1.0.241","1.0.1191","1.0.201","1.0.122","1.0.1011","1.0.1040","1.0.1183","1.0.239","1.0.202","1.0.200","1.0.249","1.0.1005","1.0.152","1.0.110","1.0.1034","1.0.166","1.0.154","1.0.132","1.0.1077","1.0.105","1.0.150","1.0.1127","1.0.178","1.0.111","1.0.198","1.0.208","1.0.173","1.0.21","1.0.1187","1.0.1073","1.0.112","1.0.1057","1.0.199","1.0.1050","1.0.1175","1.0.218","1.0.1122","1.0.1079","1.0.1070","1.0.118","1.0.1148","1.0.1149","1.0.1131","1.0.236","1.0.1032","1.0.1133","1.0.1115","1.0.117","1.0.237","1.0.197","1.0.134","1.0.1082","1.0.234","1.0.1112","1.0.140","1.0.1058","1.0.102","1.0.1064","1.0.1154","1.0.253","1.0.158","1.0.204","1.0.1059","1.0.251","1.0.1197","1.0.191","1.0.223","1.0.1024","1.0.1044","1.0.1085","1.0.1072","1.0.109","1.0.1084","1.0.1188","1.0.220","1.0.1113","1.0.136","1.0.1117","1.0.187","1.0.1031","1.0.163","1.0.137","1.0.1023","1.0.211","1.0.227","1.0.1020","1.0.1060","1.0.259","1.0.274","1.0.264","1.0.1100","1.0.1097","1.0.167","1.0.217","1.0.1111","1.0.1095","1.0.1167","1.0.219","1.0.1026","1.0.1189","1.0.2","1.0.1055","1.0.1174","1.0.1155","1.0.1043","1.0.1128","1.0.125","1.0.196","1.0.1102","1.0.114","1.0.246","1.0.1009","1.0.103","1.0.194","1.0.1080","1.0.1106","1.0.1185","1.0.192","1.0.1135","1.0.221","1.0.155","1.0.20","1.0.126","1.0.157","1.0.184","1.0.254","1.0.120","1.0.182","1.0.235","1.0.215","1.0.265","1.0.1074","1.0.1021","1.0.133","1.0.149","1.0.1114","1.0.1164","1.0.240","1.0.230","1.0.1105","1.0.1161","1.0.1194","1.0.260","1.0.16","1.0.124","1.0.299","1.0.115","1.0.193","1.0.1010","1.0.209","1.0.1092","1.0.18","1.0.1087","1.0.1201","1.0.190","1.0.26","1.0.1160","1.0.1048","1.0.1038","1.0.174","1.0.1018","1.0.1069","1.0.1093","1.0.1052","1.0.1066","1.0.164","1.0.1101","1.0.1143","1.0.1153","1.0.1182","1.0.1075","1.0.1195","1.0.195","1.0.1196","1.0.1108","1.0.1178","1.0.1025","1.0.1091","1.0.272","1.0.142","1.0.4","3.4.0","1.0.1094","1.0.1152","1.0.3","1.0.160","1.0.1013","1.0.1039","1.0.1139","1.0.1159","1.0.130","1.0.252","1.0.1157","1.0.1151","1.0.1003","1.0.22","1.0.1184","1.0.213","1.0.171","1.0.1036","1.0.1119","1.0.1137","1.0.210","1.0.121","1.0.1056","1.0.138","1.0.203","1.0.146","1.0.1179","1.0.188","1.0.1014","1.0.225","1.0.242","1.0.1156","1.0.172","1.0.15","1.0.180","1.0.189","1.0.1109","1.0.1086","1.0.1062","1.0.1089","1.0.269","1.0.1006","1.0.1169","1.0.263","1.0.1193","1.0.229","1.0.1016","1.0.1045","1.0.232","1.0.1170","1.0.1176","1.0.162","1.0.127","1.0.1145","1.0.1053"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/nuget/rg.plugins.popups.net/MAL-2024-4628.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}