Office (OOXML) / .XLSX malware analysis — malicious · 53a3bf315c19ff21

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 256cd1631276a6e2704d8eb3411c4a3d SHA-1: 989c1b39a1b2b612a189b6e3575793d20ad74f82 SHA-256: 53a3bf315c19ff21e905b4f5a31d75d8dde6ac076201f7300af52c800cd080ff

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204 Malicious File Execution

Static analysis identified the file as a malicious Excel document. The CLAMAV_DETECTION heuristic specifically flags it as a dropper, indicating its primary purpose is to download and execute a secondary payload. Without further script or body content, the exact nature of the payload and delivery mechanism remains unknown.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.