MALICIOUS
120
Risk Score
Malware Insights
MITRE ATT&CK
T1059.005 Visual Basic
The presence of the OLE_XLS5_LAROUX_MACRO_VIRUS heuristic firing strongly indicates the file is an Excel 5 macro-virus, likely belonging to the Laroux family. ClamAV also identifies it as Win.Trojan.Spellcheck-1. The macro is designed to execute automatically upon opening the workbook.
Heuristics 2
-
ClamAV: Win.Trojan.Spellcheck-1 critical CLAMAV_DETECTIONClamAV detected this file as malware: Win.Trojan.Spellcheck-1
-
Excel 5 Laroux/Larou-CV macro-virus marker cluster critical OLE_XLS5_LAROUX_MACRO_VIRUSLegacy Excel workbook contains a Laroux/Larou-CV macro-virus marker cluster including auto_open execution and workbook/module replication strings. This is a narrow indicator for an infected legacy Excel macro workbook.
Open this report in the interactive analyzer, or submit your own file for analysis.