MALICIOUS
60
Risk Score
Heuristics 1
-
Excel 4.0 macro sheet (1 sheet(s)) critical OOXML_XLM_MACROSHEETSpreadsheet contains an Excel 4.0 (XLM) macro sheet — XLM was a major Office malware vector during 2020-2022 and evaded many VBA-focused controls before Microsoft tightened XLM defaults. Even legitimate XLM use is rare in modern workbooks. The macro sheet is stored as XLSB/BIFF12 binary content, which many XML-only OOXML scanners miss.
Extracted artifacts 1
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
xlm_sheet_00.bin |
xlm-macrosheet | OOXML XLM macro sheet: xl/macrosheets/sheet1.bin | 2963 bytes |
SHA-256: bfd2726f962c91d30ee5c01d778019d3e0935a120a1af994a41ef6b30823540d |
|||
Preview scriptFirst 1,000 lines of the extracted script
� � � @ �������� � ? � % �� & � � @ d � $ � � % �� & � ���� , � < ) < �? $ � � % �� & , q % �� & , r % �� & , � � I� @ #� #� # #o #J #j #� #� #� #^ # #� #y #7 #� #g #b #� #8 #a #� #U #, #i #x #� @ #� #� #
#� #� @ #< # % �� & , q % �� & , r % �� & , � � I� @ #� #� # #o #J #j #� #� #� #^ # #� #y #7 #� #g #b #� #8 #a #� #U #, #i #x #� @ #� #� #
#� #� @ #< # % �� &
, s % �� & , t % �� & , u % �� & , v % �� & , w % �� & , 2 I @ #� #� #n C % �� & , , 0�@ � � B % �� & , E + Z | �: z �: � �: � B � % �� & ,
: ' AJ @ 0 0 : 0 0 : 0 4 @ B �� % �� & " ,
D 1 Z � �Z Z �Z � � N A Z R B � % �� & # , 7 $ #m : �: � B � % �� & ) ,
: ' AJ @ 0 0 : 0 0 : 0 4 @ B �� % �� & / ,
D 1 Z � �Z � �Z � � A N S L B � % �� & 0 , D 1 # : � �: � @ : # � B � % �� & 3 ,
B 6 % �� & 7 , x % �� & 9 , y % �� & ; , z % �� & = , { % �� & ? , | � � � �� @ ��r ��u�65p5�c��i�Q���o��X���� ��O�P����U�L�U�5�pLA�jA�̏F�S��?� �� 6�ڴ�x � �$� S H A - 5 1 2 � B � ��� 0ffffff�?ffffff�? �? �?333333�?333333�?� . d X X r I d 2 % �� & �
|
|||
Open this report in the interactive analyzer, or submit your own file for analysis.