Section 202c
Acts preparatory to data espionage and phishing
(1) Whosoever prepares the commission of an offence under section 202a or section 202b by producing, acquiring for himself or another, selling, supplying to another, disseminating or making otherwise accessible
1. passwords or other security codes enabling access to data (section 202a(2)), or
2. software for the purpose of the commission of such an offence,
shall be liable to imprisonment not exceeding one year or a fine.
(2) Section 149(2) and (3) shall apply mutatis mutandis.
Please note that this might not reflect the current version of the legislation.