Office (OLE) / .EXE malware analysis — malicious · b05aed7ec204c7e5

MALICIOUS

Office (OLE) / .EXE

55.5 KB Created: 1980-01-05 18:50:47 Authoring application: Microsoft Excel

MD5: 2c39a9da66eccd3b5e0fae990273e9b6 SHA-1: 39ce6640ab5c8d60b257c82e1b970f536222d45c SHA-256: b05aed7ec204c7e57cba08f974ea8137f84ad7ba8088d645796d1ba6bbc70642

62 Risk Score

Malware Insights

MITRE ATT&CK

T1059.005 Visual Basic

The critical heuristic firing indicates the presence of the Excel 5 Laroux macro-virus marker cluster. This suggests the file contains malicious macros designed for propagation. However, VBA extraction failed due to an unsupported format, preventing deeper analysis of the script's specific actions. The DOC BODY content is not indicative of a specific lure.

Heuristics 2

Excel 5 Laroux macro-virus marker cluster critical OLE_XLS5_LAROUX_MACRO_VIRUS

Legacy Excel workbook contains the Laroux macro-virus marker cluster including the hidden laroux module, auto_open/check_files routines, and PERSONAL.XLS replication strings. This is a narrow indicator for an infected legacy Excel macro workbook.
Unsupported Office format for VBA extraction info OFFICE_FORMAT_UNSUPPORTED

olevba could not extract VBA macros (PermissionError); format-agnostic byte-level scans still ran. Likely legacy, encrypted, or malformed OLE/OOXML — re-scanning the same bytes will yield the same outcome.

Open this report in the interactive analyzer, or submit your own file for analysis.