{"id":"MAL-2024-9946","summary":"Malicious code in atomicdecoderss (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-PYTHON-ATOMICDECODERSS-8145474"],"modified":"2025-03-03T15:42:05.551814Z","published":"2024-10-16T14:36:35Z","database_specific":{"malicious-packages-origins":[{"import_time":"2024-10-24T00:56:53.657845789Z","modified_time":"2024-10-16T14:36:35Z","source":"reversing-labs","id":"RLMA-2024-07842","versions":["1.6.4","1.6.5","1.6.6"],"sha256":"618913e886a834380cead3299b0b95cd41b4b632f0f389ed2a8edf6c8b79e913"},{"import_time":"2024-12-09T14:38:53.259017765Z","modified_time":"2024-12-09T06:49:49Z","source":"reversing-labs","id":"RLUA-2024-10978","sha256":"20f5f545317949c14c9074d2670423cf69d53fc320846f47f4a416019fe24552"},{"import_time":"2025-03-03T15:07:33.752662415Z","modified_time":"2025-03-03T13:44:40Z","source":"reversing-labs","id":"RLUA-2025-01201","sha256":"0d006a5f80f574b5e10c9c3cd3e35ef2bdfaaf965529b896eb35ffebef3745fe"}]},"references":[{"type":"ARTICLE","url":"https://checkmarx.com/blog/crypto-stealing-code-lurking-in-python-package-dependencies"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-PYTHON-ATOMICDECODERSS-8145474"}],"affected":[{"package":{"name":"atomicdecoderss","ecosystem":"PyPI","purl":"pkg:pypi/atomicdecoderss"},"versions":["1.6.4","1.6.5","1.6.6"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/atomicdecoderss/MAL-2024-9946.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}