Sqlextractor

Description

(Palo Alto) The attackers used a custom tool they named sqlextractor (binary name sql.net4.exe). Its purpose is to query SQL databases and extract sensitive PII data, such as the following: • ID numbers • Passport scans • Emails • Full addresses

Names

Name
Sqlextractor

Type

Info stealer

Information

https://unit42.paloaltonetworks.com/agonizing-serpens-targets-israeli-tech-higher-ed-sectors/

Other Information

Uuid

c9f0e5cc-aa04-449a-a8cf-27fe280be3b7

Last Card Change

2023-11-29

Threat Intelligence Garden

Explorer

Sqlextractor

Sqlextractor

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks