Office (OLE) / .XLS malware analysis — malicious · 6f530508c896a66f

MALICIOUS

Office (OLE) / .XLS

48.5 KB Created: 2010-05-05 06:39:48 Authoring application: Microsoft Excel

MD5: fb1557591cd0dd71cc0d204dfd7d9ba4 SHA-1: 9885657c8440d6360f689c8699d6d1ed57c3079a SHA-256: 6f530508c896a66f3a19f541c92ddce113a5b2a1c8d9e6e8a45ceba70867d5d5

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is an Excel spreadsheet identified as a legacy formula macro virus. The document body contains what appears to be a shipping manifest, which is likely a social engineering lure to encourage users to open and interact with the malicious content. The presence of a known macro virus marker indicates a high likelihood of malicious intent.

Heuristics 1

Legacy Excel formula macro virus marker critical OLE_XLS_FORMULA_MACRO_VIRUS

Workbook stream contains self-identifying legacy Excel formula macro virus markers. This indicates the document carries formula macro virus content even when no VBA project or modern XLM macro-sheet structure is present.

Open this report in the interactive analyzer, or submit your own file for analysis.