Office (OOXML) / .XLSX malware analysis — malicious · c07bb0d37b746c27

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 31249fb67f134550709cb4080a081297 SHA-1: 72aa483b6f38a5c4832e07d60d942a0469316fbe SHA-256: c07bb0d37b746c27570cac9387d2ffd991189b1113db005aa9314f8ee50c7fc4

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.002 Spearphishing Attachment

The file is identified by ClamAV as a known dropper (Xls.Dropper.QbotDocu12020-9818439-0), indicating its primary function is to deliver other malware. No specific document body, scripts, or URLs were extracted for further analysis, limiting the ability to detail the exact payload or delivery mechanism.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.