MAL-2025-2590

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/blackspammerbd-remot/MAL-2025-2590.json

JSON Data

https://api.test.osv.dev/v1/vulns/MAL-2025-2590

Published

2025-03-19T14:42:00Z

Modified

2025-03-19T14:42:00Z

Summary

Malicious code in blackspammerbd-remot (PyPI)

Details

-= Per source details. Do not edit below this line.=-

Source: Oracle using Macaron (b3620d6bbda8c8e6a637f39997f1d22114756ec09e8e458eaab7287ea64ff7c3)

This package is designed for remote control and data exfiltration, and could be used for malicious purposes such as spying, unauthorized access, data theft, or for distributing more malware.

Database specific

{
    "malicious-packages-origins": [
        {
            "modified_time": "2025-03-19T14:42:00Z",
            "import_time": "2025-03-19T14:42:00Z",
            "versions": [
                "1.0.0"
            ],
            "source": "Oracle using Macaron",
            "sha256": "b3620d6bbda8c8e6a637f39997f1d22114756ec09e8e458eaab7287ea64ff7c3"
        }
    ]
}

References

Credits

- Oracle using Macaron - FINDER
- - https://github.com/oracle/macaron

Affected packages

PyPI / blackspammerbd-remot

Package

Name: blackspammerbd-remot; View open source insights on deps.dev
Purl: pkg:pypi/blackspammerbd-remot

Affected ranges

Affected versions

1.*

1.0.0