Office (OLE) / .EXE malware analysis — malicious · 3305b417aaa3e890

MALICIOUS

Office (OLE) / .EXE

217.5 KB Created: 1997-09-05 09:15:41 Authoring application: Microsoft Excel

MD5: 6f53a93bc58e2d0813017b1b182a758d SHA-1: 4522f1cac3d38343294b0c534a9ef635e016e535 SHA-256: 3305b417aaa3e8902ac755b0d07bd0af392419205b97c0053229634b75a9cdda

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The file is identified by ClamAV as 'Xls.Dropper.Agent-1559737', indicating it functions as a dropper. Although no document body or script content was extracted, the file's metadata and the ClamAV detection strongly suggest it is designed to download and execute a secondary malicious payload. The presence of OLE and EXE file types further supports this dropper functionality.

Heuristics 1

ClamAV: Xls.Dropper.Agent-1559737 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.Agent-1559737

Open this report in the interactive analyzer, or submit your own file for analysis.