Office (OLE) malware analysis — malicious · bafee2e6092585a3

MALICIOUS

Office (OLE)

124.5 KB Created: 2004-09-30 08:46:20 Authoring application: Microsoft Excel

MD5: 9a71ce583ea9f773b671cff8db54b6b7 SHA-1: f6b7bf3eef3a89645c0d83aa30db9019ce978645 SHA-256: bafee2e6092585a3f1915a134b4b6b4436f0f22d164164d0ce37839b9b0c4675

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.005 Visual Basic for Applications

The file is identified as a legacy Excel formula macro virus, specifically 'XF.Classic' by 'VicodinES'. This type of malware typically executes malicious code embedded within Excel formulas when the document is opened. The presence of this marker strongly indicates a malicious intent, likely to compromise the user's system or steal information.

Heuristics 1

Legacy Excel formula macro virus marker critical OLE_XLS_FORMULA_MACRO_VIRUS

Workbook stream contains self-identifying legacy Excel formula macro virus markers. This indicates the document carries formula macro virus content even when no VBA project or modern XLM macro-sheet structure is present.

Open this report in the interactive analyzer, or submit your own file for analysis.