Office (OOXML) / .XLSX malware analysis — malicious · 561cceed8306f2a0

MALICIOUS

Office (OOXML) / .XLSX

21.4 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: aec82aa5348b1dd347322b5f2e56a0fe SHA-1: a80746853f0a5d12db303c567648f3658043849a SHA-256: 561cceed8306f2a0ab9c9f57f2cdfd7af64241b21966c877b242867a4b1f8d11

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204 Malicious File

The file is identified by ClamAV as Xls.Dropper.QbotDocu12020-9818439-0, indicating its function as a dropper. While no specific document body or scripts were extracted, the detection signature strongly suggests the file's purpose is to deliver other malware. Further analysis would be needed to determine the exact payload and delivery mechanism.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.