Overview

overview

10

Static

static

10

sqldevelop.../sdcli

ubuntu-18.04-amd64

3

sqldevelop.../sdcli

debian-9-armhf

3

sqldevelop.../sdcli

debian-9-mips

3

sqldevelop.../sdcli

debian-9-mipsel

3

sqldevelop...li.exe

windows7-x64

3

sqldevelop...li.exe

windows10-2004-x64

3

sqldevelop...64.exe

windows7-x64

1

sqldevelop...64.exe

windows10-2004-x64

1

sqldevelop...in/sql

ubuntu-18.04-amd64

3

sqldevelop...in/sql

debian-9-armhf

3

sqldevelop...in/sql

debian-9-mips

3

sqldevelop...in/sql

debian-9-mipsel

3

sqldevelop...ql.exe

windows7-x64

3

sqldevelop...ql.exe

windows10-2004-x64

3

sqldevelop...eloper

ubuntu-18.04-amd64

3

sqldevelop...eloper

debian-9-armhf

3

sqldevelop...eloper

debian-9-mips

3

sqldevelop...eloper

debian-9-mipsel

3

sqldevelop...er.exe

windows7-x64

3

sqldevelop...er.exe

windows10-2004-x64

3

sqldevelop...64.exe

windows7-x64

1

sqldevelop...64.exe

windows10-2004-x64

1

sqldevelop...4W.exe

windows7-x64

1

sqldevelop...4W.exe

windows10-2004-x64

1

sqldevelop...rW.exe

windows7-x64

3

sqldevelop...rW.exe

windows10-2004-x64

3

sqldevelop...lp.jar

windows7-x64

1

sqldevelop...lp.jar

windows10-2004-x64

1

sqldevelop...lp.jar

windows7-x64

1

sqldevelop...lp.jar

windows10-2004-x64

1

sqldevelop...g.html

windows7-x64

3

sqldevelop...g.html

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2025, 03:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sqldeveloper/sqldeveloper/doc/welcome/de/Training.html

  • Size

    2KB

  • MD5

    473822154add2e446d9915331a25a876

  • SHA1

    4dd53d465558155049200a24d8f9060dfb1f1f6d

  • SHA256

    9b43cf03cf83ba42a8c9b6d6998e8c9f8ae384d4eaa57e06d03b42662d9eff12

  • SHA512

    ab3653ff8800d45a8ae30cf908073a4282808e627e9d042f51621e593955fe57952727ae980ca81a4837d6dc48047756e9a58a5f33093baa7737311695cb4d6d

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sqldeveloper\sqldeveloper\doc\welcome\de\Training.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2340
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2340 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015
    Filesize

    71KB

    MD5

    83142242e97b8953c386f988aa694e4a

    SHA1

    833ed12fc15b356136dcdd27c61a50f59c5c7d50

    SHA256

    d72761e1a334a754ce8250e3af7ea4bf25301040929fd88cf9e50b4a9197d755

    SHA512

    bb6da177bd16d163f377d9b4c63f6d535804137887684c113cc2f643ceab4f34338c06b5a29213c23d375e95d22ef417eac928822dfb3688ce9e2de9d5242d10

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    df3c1b13b760abf359a37ac1ea7d79f7

    SHA1

    aa21275148b1a6e979962872174511d2f014ed1f

    SHA256

    19e95720237966694c82449362bbfa535c5b10dc7e2566b4e6afa4e08d4a5bdf

    SHA512

    cc5787259963954b89b32e4c87ddbe56dcb82b6902ce115f5d83d1e5bb44f3173848e9845fa278f3340061a380806138626ef2b974feade8edff79fb56d1f8f3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    28038d3132f877b7f25113f185942273

    SHA1

    93706665f48953996ad3d8be28fba523789cdfe4

    SHA256

    f13d3bd7911ecf75b588c05b7d47361b51d05af771fe73cd9391bb5897ef4137

    SHA512

    eea665cc6f3bdc10214cd4c449acf591f1890212f1b2ed578c6d82f66227ec08150e3dc7d6cd180fa8c0f30fe7301a8b6381c47883fff5ec891b23fbdebeb9ac

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    09ba633658460d41308fb115cbd5b2be

    SHA1

    7a77a648156a7818741cf8712a53d8f1b79c58eb

    SHA256

    5a9d27504255d52a20d699e91717d556bf31295201a3021dc0ac4cfb492a0b2d

    SHA512

    274cd23a4e1c7790436b6beb0b57318ffe8256d67f52b1508e9848fc29ed551bdb0f6bb5e5f59a1cdea56b4c3fe385dd7eead70f3608dd40f9ff813529948e62

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0b058eef4b40a4618942e130228def7f

    SHA1

    07bdb49e51a0fbf32845c13df12aacebc190fc08

    SHA256

    95b11aeb10a672d58795f9eea2d228203033bb2614b45175305e7be92f26ae8e

    SHA512

    b589880eb8ca2f171ce2b79a16b9efa15c6d6edcf3fefbf5573a4ec73ae5d94fcc13d67ef6b023d2775c7f43963edf41cc077d470605dbd88fae27b12f701432

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc2b677d78fb1ba11734376026dd6f8d

    SHA1

    6d139d0c5f4df21118f72eca35b27b0cd6f4cc05

    SHA256

    b5c18e6e6b97aff6f5dae631713282c465f31aebd859aaa3a168a4f50b758b4c

    SHA512

    6bd8c4faadccae20b3c4334cc541d8a4f95b606894459f2cbc1a9d9ec8573ec0cc1edbc3a8737efc7c4c4d747fb718ef944bd076e4f1f87149ec30d53f9eae50

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    54bcd01338095f4a27be9522551fce76

    SHA1

    9b91f069150ca678197be89e21bc125fd05afe63

    SHA256

    0e9ef4aa0d52e084aef0512e014f3f38cbbbbdd00c013e204cfc87e0e0972b86

    SHA512

    d42e07f9fb6ebe08a29a6c3c894619de26047c9fd037bc45fe75d9a1f31b495465819f4fbf7eb280a1633a919b38fa0e5177432898b5387c203a5985ab2607d9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    094cfbd501a559cbd759f93498d17d4c

    SHA1

    63f23e4dec406599968051632c9927b4b204912e

    SHA256

    9f5936a69828460e57635c789a00563d60ec92e41332f379b24d8bbf6dddc347

    SHA512

    70cbe5980dcd27ee2498f569a82c5a179b1541ecc649273d0379ff20ff70c43be3c75d89d7c2bbd12a71f4e06bb819cae9acfc1702e94237a472030f35abd60e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8194cbba64aa41dedba909a417aef77f

    SHA1

    32100db296ac416eed0e1903e831c18642ef8fc7

    SHA256

    c1aea345dc95d0fd19ac89335f4df6a451bae4ca5727e37c0873b0ef37164750

    SHA512

    8d7a8cac004289c37dc4a308b9ae2a4e58144b2c7a077ba97eef174f60ede02c445aaea34eebdebf5f3845cd699e895d7ce5ec2cb2f15a82068d8aeb665689cf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    a92409ec3bb5e9aa5539aebc9fd3c479

    SHA1

    08132c989888c3e2851d45ae8ec5430729e16296

    SHA256

    bafff2bfccc5f291694173d9dc430c5b6ae03c353b48e59c891d47906aa715b0

    SHA512

    9c7ac277e3566907d4881a6b3321eaae1abd244bd46a3a958654922de91b92ce1fbb68e4b5f96e4bd87ad6d5498182df8df4130c340d5aeeb43d32d49bb0c93c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    73f91ef98bb9784aa06889a05e8ccea8

    SHA1

    ef94ad3e29da85feb7a96c4330018704378ca28a

    SHA256

    20e4955996a4892b3dee584e7e2fa97f6660ec722a9344974f1eef5775c4fd76

    SHA512

    ba6f39ecdc10f70da8274715577c1003f018c8d45d6131eff54202c0b55f36e1b175d9ce65e556baea427b0f8cb06dd3695899d48fb441c6f853dc0098c023d1

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fffe5d8beaebb7b75032be0c78610ba9

    SHA1

    7b76183563cd06d5c19041ef1c5a83a2c820e049

    SHA256

    d3c59ebd1bd6025afacdfd1f4443a8e4f5d96e7dfd0bd3c641073350cfe57aa0

    SHA512

    d20a19c661850a63afb0caf1ecab8120d88d3048861e841d829d51c235c3cb635490735d7f55c5d227e42457f8400fc1add72366e45496ac85daab3ce82e22e9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0db2c96e4ac6d2c50aa6875b5166387c

    SHA1

    10cb1d9f458b4d7838eade1f6f9891517b5e810a

    SHA256

    7d4dd10ff6bc5ecefcc35ddf28f1127a508403024481edca9ddc36082364f32b

    SHA512

    f468496866d661611a85d5f0f24b4877bb18c46d69dd9031b2fc9e7f30a7be5d3756c6d5320aa3b6010a9b3c194b4260292deb3be8c81cb3ae84a7403d438e57

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bc847fa6ec77278c1e78398e2d88198c

    SHA1

    d6968cfb211dde34d670afc61e24257893e9a79c

    SHA256

    729db819e1114865236997dd171758e291e6ac26ac33b24889e802b56db21a6f

    SHA512

    db7833d7f06bb24869d2786075e192a022a04bb406aed8b3212e9291a50d1be7395bf6d9e82217eb9a83a611feac6de2ac9610c81b286b65da0f5af8373d5f64

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    fdb839b1ff6a66c3bfa9fd4ccbba56e5

    SHA1

    4b620497a637fbfd196d0462fc9c816275c7ad51

    SHA256

    8d77d2fdd259682cdcc3fd848df726ccc94ea9641668c52e635290afbf32f0a7

    SHA512

    0a108eb74a1314dbf38968dd2ed51162d4fdb40e52faa9ba2e7dc1bab40dca5c628f66d4fdfdea1f4d4888338bac1da78a1226aca5aaaaa5f63013eec2439494

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    377950813b2621043b2c9fcd218cc531

    SHA1

    7b7bda88d09c5dc3cd5fe6468b4be1fbefb58a18

    SHA256

    ffee2003e5bc19044f72cfa9b3b7ce0290589a435251d1f0ba5c72da9e317b72

    SHA512

    612d342fca669e03cb66f582a0a6de86d6afbff6692fdf28e9e3a3cb99aa3bf4cc82b745d1b1f206a90cc594af673cc57cb02d5161f05e6e30f474a4a1e03595

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    0883b7928bd19569166c86b66a29612c

    SHA1

    9ef6a4f8b156952ea1497a632362d04afa3b714e

    SHA256

    3be4f54aafb3a411468eb4f0c677c3a0f09b774710bda8df95035e27210d4c35

    SHA512

    4cdbbf201493bac322e97584fdce7281deb96f48b2b2ddb94a9fdbcef6cadc9e13e9e597f743d212fda7aef11a9614186616afa35bf04e3dc805d7d0d23e3d39

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    bf32321918fba6a4132d6c1928b55e47

    SHA1

    1884f87a6554a4b077a4bb8e8cae66048b8dfd21

    SHA256

    846e666e0cff7d27941a81b367f9969c0590693619b6196f023704d7129bdfbf

    SHA512

    ef3b951100c923bcbd8da302f69c5169a85ee07ae56df0a6953b4535c12fa0d60ad0e415db26eada820f02fb1b3bb7b34b8d80bd482a30062f91054453afcf82

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    344B

    MD5

    8c352194102999f84b8241dd993dfd33

    SHA1

    4a43b91a8e52f90c4946cf83cf5c87cae56d2d3e

    SHA256

    2c4783035fc78aaa372743e90a9b5e4bfcf1685922cc3095ceadfaf3ae1d36fe

    SHA512

    6e5900c983bcc520d16629b31576ef7d7892d3d438dd4bb84c389cf062d175d8a4cce35c7a26db385135b35200a9cba41935b2655f537d243248ef41be13c2f7

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab40D9.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar4229.tmp
    Filesize

    183KB

    MD5

    109cab5505f5e065b63d01361467a83b

    SHA1

    4ed78955b9272a9ed689b51bf2bf4a86a25e53fc

    SHA256

    ea6b7f51e85835c09259d9475a7d246c3e764ad67c449673f9dc97172c351673

    SHA512

    753a6da5d6889dd52f40208e37f2b8c185805ef81148682b269fff5aa84a46d710fe0ebfe05bce625da2e801e1c26745998a41266fa36bf47bc088a224d730cc

    Download Submit