{"id":"MAL-2024-61","summary":"Malicious code in akshansh-jaiswal-ctf-security (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: ossf-package-analysis (1a21cd8cd0f3e40599808c19641304a3f52f263a31d9b68e9847bc4c6933cc80)\nThe OpenSSF Package Analysis project identified 'akshansh-jaiswal-ctf-security' @ 99.9999.9999 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n","modified":"2024-01-11T03:34:07Z","published":"2024-01-07T11:31:28Z","database_specific":{"malicious-packages-origins":[{"source":"ossf-package-analysis","modified_time":"2024-01-07T12:14:49Z","versions":["99.9999.9999"],"import_time":"2024-01-11T03:33:47.690434539Z","sha256":"1a21cd8cd0f3e40599808c19641304a3f52f263a31d9b68e9847bc4c6933cc80"},{"source":"ossf-package-analysis","modified_time":"2024-01-07T12:19:33Z","versions":["99.9999.999"],"import_time":"2024-01-11T03:33:47.777274938Z","sha256":"59be761e6fad93718d21936fb72b98ad21f2b5c7aa2a975685e3177216895b93"},{"source":"ossf-package-analysis","modified_time":"2024-01-07T11:51:40Z","versions":["99.999.9999"],"import_time":"2024-01-11T03:33:47.582159861Z","sha256":"d22ed9d48ba8a72976d38cd75d33812b3e507dfb911e9390767f9de8696d4486"},{"source":"ossf-package-analysis","modified_time":"2024-01-07T11:31:28Z","versions":["99.999.999"],"import_time":"2024-01-11T03:33:47.511546099Z","sha256":"ec23692f068dfd1e5bdec20553312221bbc66229ec52cfe663f94d0b58eeafd4"},{"source":"ossf-package-analysis","modified_time":"2024-01-07T12:23:02Z","versions":["999.999.999"],"import_time":"2024-01-11T03:33:47.850234231Z","sha256":"f189944d893312d51ac46a71cd4581e91c051d7e8b2aec53874b0d75ab4951cf"}]},"affected":[{"package":{"name":"akshansh-jaiswal-ctf-security","ecosystem":"npm","purl":"pkg:npm/akshansh-jaiswal-ctf-security"},"versions":["99.9999.9999","99.9999.999","99.999.9999","99.999.999","999.999.999"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/akshansh-jaiswal-ctf-security/MAL-2024-61.json"}}],"schema_version":"1.7.3","credits":[{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}