MALICIOUS
60
Risk Score
Heuristics 1
-
Excel 4.0 macro sheet (1 sheet(s)) critical OOXML_XLM_MACROSHEETSpreadsheet contains an Excel 4.0 (XLM) macro sheet — XLM was a major Office malware vector during 2020-2022 and evaded many VBA-focused controls before Microsoft tightened XLM defaults. Even legitimate XLM use is rare in modern workbooks. The macro sheet is stored as XLSB/BIFF12 binary content, which many XML-only OOXML scanners miss.
Extracted artifacts 1
Files carved from inside the sample during analysis.
| Filename | Kind | Source | Size |
|---|---|---|---|
xlm_sheet_00.bin |
xlm-macrosheet | OOXML XLM macro sheet: xl/macrosheets/sheet1.bin | 2764 bytes |
SHA-256: 873cd7d25ab44865a6e864cee26e96869274e7c750c6b0544537086c1cfcdd3f |
|||
Preview scriptFirst 1,000 lines of the extracted script
� � � @ �������� � ( � % �� & � � @ d � $ � � % �� & � ���� , � < $,
< �? $
� � % �� & ,
% �� & ,
% �� & ,
% �� & ,
% �� & , q
^ I @ # # # I= @ # #& # #' #% @ # #" # # @ % �� &
, 2
I @ ## #+ # # % �� & ,
% �� & ,
% �� & ,
>
+ Z �: �: �: � B � % �� & ,
% �� & ,
:
' AJ @ 0 0 : 0 0 : 0 3 @ B �� % �� & ,
% �� & ,
M
: Z �:
�: � : �: � B � % �� & ,
% �� & ,
:
' AJ @ 0 0 : 0 0 : 0 3 @ B �� % �� & ,
% �� & ,
D
1 Z �Z
�Z
� Z A F P B � % �� & , @
- #, : �:
�: � B � % �� & ,
% �� & ,
B 6 % �� & ,
% �� & ,
% �� & ,
% �� & " ,
% �� & $ , w
d I @ # # # # I= @ # # # # @ # # # # # @ % �� & & , D
1 I- @ # #* # #( #! # # % �� & ( ,
� � � �� @ � g������\�xO� D��
n����&�hZ`C�� }X�cd� ��W(!�u; � ��7������b�� MWb��L�?�u dXk
P S H A - 5 1 2 � B � � 0ffffff�?ffffff�? �? �?333333�?333333�?� . d X X r I d 2 % �� s'�����E�e���`p�& �
|
|||
Open this report in the interactive analyzer, or submit your own file for analysis.