Office (OLE) / .EXE malware analysis — malicious · 11ebe0fd00d37cc5

MALICIOUS

Office (OLE) / .EXE

109.0 KB Created: 1999-02-08 09:24:15 Authoring application: Microsoft Excel

MD5: 6d6c2afbedcdb6a9ac2eb6a35af186e7 SHA-1: 31f211ce0045f840a10aab89b418e8f8978e0cea SHA-256: 11ebe0fd00d37cc5f92487b6148aae38f34a79b2ff0f0066a9bd9929235d94a6

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.005 Visual Basic

The critical heuristic firing indicates this is an Excel 5 macro virus, specifically the Laroux variant. The presence of macro-related markers like 'auto_open' and 'OnSheetActivate' strongly suggests the file contains malicious VBA code designed to execute automatically. While no specific IOCs were extracted, the file's nature points to a macro-based attack.

Heuristics 1

Excel 5 Laroux/Larou-CV macro-virus marker cluster critical OLE_XLS5_LAROUX_MACRO_VIRUS

Legacy Excel workbook contains a Laroux/Larou-CV macro-virus marker cluster including auto_open execution and workbook/module replication strings. This is a narrow indicator for an infected legacy Excel macro workbook.

Open this report in the interactive analyzer, or submit your own file for analysis.