Xls.Trojan.Laroux-32 — Office (OLE) / .XLS malware analysis

Static analysis result for SHA-256 67308473b4353d93…

MALICIOUS

Office (OLE) / .XLS

29.0 KB Created: 2006-08-26 02:01:55 Authoring application: Microsoft Excel
MD5: b9c6a78f60d0cd77cf2ad6834d60ba76 SHA-1: d8ed5480553760ab14a53e823694c1247861da0a SHA-256: 67308473b4353d93fc69bfa40e470a811abd9d5cb0602c53ba2796013b7e58f5
60 Risk Score

Malware Insights

Xls.Trojan.Laroux-32 · confidence 95%

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as Xls.Trojan.Laroux-32 by ClamAV, indicating it is a known malicious Excel macro trojan. The document body contains a production plan, likely a lure to encourage users to enable macros. The presence of '病毒宏代码:' (virus macro code:) further confirms the malicious nature, suggesting the macro is designed to execute malicious actions.

Heuristics 1

  • ClamAV: Xls.Trojan.Laroux-32 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Xls.Trojan.Laroux-32

Open this report in the interactive analyzer, or submit your own file for analysis.