MALICIOUS
80
Risk Score
Malware Insights
MITRE ATT&CK
T1059.005 Visual Basic
T1203 Exploitation for Client Execution
The critical ClamAV heuristic and the presence of Excel 4.0 macros (OLE_XLM_AUTOOPEN) strongly indicate malicious intent. The macro sheet contains instructions to convert text to formulas and execute them, a common technique for downloading and running additional malware. The extracted filenames 'xl5glry.xls' and its path suggest potential dropped or related malicious files.
Heuristics 2
-
ClamAV: Win.Trojan.Crazy-2 critical CLAMAV_DETECTIONClamAV detected this file as malware: Win.Trojan.Crazy-2
-
Excel 4.0 (XLM) macro sheet present medium OLE_XLM_AUTOOPENWorkbook contains an Excel 4.0 macro sheet sub-stream — XLM is rarely seen in modern legitimate workbooks and was a major Office malware vector during 2020-2022.
Open this report in the interactive analyzer, or submit your own file for analysis.