Office (OOXML) / .XLSX malware analysis — malicious · 994e0a9dbac1f9ec

MALICIOUS

Office (OOXML) / .XLSX

21.4 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: d68bc3d44eb1611214136600365350c2 SHA-1: 713448cefc01f4315a67da93108a7db5c650e9ef SHA-256: 994e0a9dbac1f9ec06c9e38be362982b0b1a3b9253a17ea9957f187140ccaee6

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204 Malicious File

The file is identified by ClamAV as 'Xls.Dropper.QbotDocu12020-9818439-0', indicating it functions as a dropper for other malware. As an Excel document, it likely uses macros or embedded objects to achieve its malicious objective. Without further script or body content, the exact execution chain cannot be determined, but its primary purpose is to deliver a payload.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.