Malicious Office (OLE) / .EXE — malware analysis report

Static analysis result for SHA-256 aae26b4f24e1df3c…

MALICIOUS

Office (OLE) / .EXE

51.5 KB Created: 1999-02-08 09:24:15 Authoring application: Microsoft Excel
MD5: f3978605288563cbbb988f97ec90846d SHA-1: 53359382983b7b506a4c053ddf5cc985ed67dfda SHA-256: aae26b4f24e1df3c6e84da3c40c2caa0a3497627e16dad29b7f87f592b7f1de6
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment T1059.005 Visual Basic

The file is an Office OLE executable containing VBA macros, specifically an Auto_Open macro. This indicates the file is likely designed to execute malicious code upon opening. No specific family could be identified, and no external IOCs were extracted.

Heuristics 2

  • Auto_Open macro high OLE_VBA_AUTO
    Auto_Open macro
  • VBA macros detected medium OLE_VBA_MACROS
    Document contains VBA macro code

Extracted artifacts 1

Files carved from inside the sample during analysis.

FilenameKindSourceSize
macros.bas
24f684c5a1654ebbbac7dabbdc72e95897993256770be604124740ee5d1eb622		 vba-macro oletools.olevba.extract_macros (decoded VBA source) 2195 bytes

Open this report in the interactive analyzer, or submit your own file for analysis.