Laroux Office (OLE) / .EXE malware analysis — malicious · 17553d8d0d1852d3

MALICIOUS

Office (OLE) / .EXE

31.0 KB Created: 1980-01-04 21:07:48 Authoring application: Microsoft Excel

MD5: bd1348ff4a93bce1e1c53ceb3f1dffd9 SHA-1: cc976998a9410a8b7bb3a614b36e0ad9a4d795b4 SHA-256: 17553d8d0d1852d3d832497ca1d6051e947ab4aaf2b2a3d6a814214a99996e1e

60 Risk Score

Malware Insights

Laroux · confidence 90%

MITRE ATT&CK

T1059.005 Visual Basic

The critical heuristic firing for OLE_XLS5_LAROUX_MACRO_VIRUS indicates the presence of the Excel 5 Laroux macro virus. This family is known for its ability to spread and execute malicious code, often through auto-execute macros like 'auto_open'. The presence of 'PERSONAL.XLS' and 'OnSheetActivate' further supports this identification.

Heuristics 1

Excel 5 Laroux/Larou-CV macro-virus marker cluster critical OLE_XLS5_LAROUX_MACRO_VIRUS

Legacy Excel workbook contains a Laroux/Larou-CV macro-virus marker cluster including auto_open execution and workbook/module replication strings. This is a narrow indicator for an infected legacy Excel macro workbook.

Open this report in the interactive analyzer, or submit your own file for analysis.