Office (OLE) / .EXE malware analysis — malicious · 93c31cf30ac43ff8

MALICIOUS

Office (OLE) / .EXE

32.5 KB Created: 1980-01-05 11:18:30 Authoring application: Microsoft Excel

MD5: 9f4bef961466009c5ed3c5e2e2296c51 SHA-1: 04bf60c9afdf399ad25bb814ba1c6a10c5abd364 SHA-256: 93c31cf30ac43ff8cc27c235f711eb977789a776253c2a5939c86d1967ffb594

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The file is identified by ClamAV as Xls.Dropper.Agent-1560148, indicating its function as a dropper. While no specific scripts or URLs were extracted, the file's nature suggests it is designed to download and execute further malicious content. The presence of 'aroux, oglio1, oglio2, oglio3' in the document body is unusual but does not provide clear indicators of the attack pattern.

Heuristics 1

ClamAV: Xls.Dropper.Agent-1560148 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.Agent-1560148

Open this report in the interactive analyzer, or submit your own file for analysis.