Office (OOXML) / .XLSX malware analysis — malicious · b22d7d4662936922

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: ead6ba5fbbf2f156eef3cf29c3a3b83d SHA-1: 153514edf5811633163cf6baf09e41e58685b6b4 SHA-256: b22d7d46629369221e6169fad33ac7b2e2affa8c60d404fa33b4a0f2efb48f74

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.002 Spearphishing Attachment

The file is an Excel document with a ClamAV detection signature indicating it is a dropper. This suggests the primary purpose of the file is to download and execute a secondary malicious payload. No further details on the payload or specific delivery mechanism were extracted.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.