Overview

overview

10

Static

static

10

sqldevelop.../sdcli

ubuntu-18.04-amd64

3

sqldevelop.../sdcli

debian-9-armhf

3

sqldevelop.../sdcli

debian-9-mips

3

sqldevelop.../sdcli

debian-9-mipsel

3

sqldevelop...li.exe

windows7-x64

3

sqldevelop...li.exe

windows10-2004-x64

3

sqldevelop...64.exe

windows7-x64

1

sqldevelop...64.exe

windows10-2004-x64

1

sqldevelop...in/sql

ubuntu-18.04-amd64

3

sqldevelop...in/sql

debian-9-armhf

3

sqldevelop...in/sql

debian-9-mips

3

sqldevelop...in/sql

debian-9-mipsel

3

sqldevelop...ql.exe

windows7-x64

3

sqldevelop...ql.exe

windows10-2004-x64

3

sqldevelop...eloper

ubuntu-18.04-amd64

3

sqldevelop...eloper

debian-9-armhf

3

sqldevelop...eloper

debian-9-mips

3

sqldevelop...eloper

debian-9-mipsel

3

sqldevelop...er.exe

windows7-x64

3

sqldevelop...er.exe

windows10-2004-x64

3

sqldevelop...64.exe

windows7-x64

1

sqldevelop...64.exe

windows10-2004-x64

1

sqldevelop...4W.exe

windows7-x64

1

sqldevelop...4W.exe

windows10-2004-x64

1

sqldevelop...rW.exe

windows7-x64

3

sqldevelop...rW.exe

windows10-2004-x64

3

sqldevelop...lp.jar

windows7-x64

1

sqldevelop...lp.jar

windows10-2004-x64

1

sqldevelop...lp.jar

windows7-x64

1

sqldevelop...lp.jar

windows10-2004-x64

1

sqldevelop...g.html

windows7-x64

3

sqldevelop...g.html

windows10-2004-x64

3

Analysis

  • max time kernel
    122s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2025, 03:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sqldeveloper/sqldeveloper/bin/sdcli.exe

  • Size

    91KB

  • MD5

    e852995397a5fe958ce791d3c08c607c

  • SHA1

    aae5bd0835c7a1f91962318f4c6d0bf80fa3dd7b

  • SHA256

    d798bfd4c0e33c76c26aedbd0af2f03f8a1300383cfb5008b0a9fde9623603da

  • SHA512

    c6e641669eac1c3a4eb638be88dd2b0891ea85aee8040495288aacd9cae2c494f7c389656cabae08b2bef5e0f27289763efb6f1b76e89f7bf681aeabc4b455c7

  • SSDEEP

    1536:BKfI/s6MMj7dG0AjmDCs7JeYrR3tug5SstjQ718XPxq:gf565XdxaUegXusBQ2X

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\sqldeveloper\sqldeveloper\bin\sdcli.exe
    "C:\Users\Admin\AppData\Local\Temp\sqldeveloper\sqldeveloper\bin\sdcli.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:536

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads