Office (OOXML) / .XLSX malware analysis — malicious · cac16b534567491c

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 11e3a49c3c53d20268605e7f7204cb58 SHA-1: f545441981c343e71371e3c99a486e4254cd49b0 SHA-256: cac16b534567491c2ddf7725b25a3680f136fe12c7a0e18c2d68093fe1947c61

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.002 Phishing: Spearphishing Attachment

The file is an Excel spreadsheet identified by ClamAV as 'Xls.Dropper.QbotDocu12020-9818439-0'. This heuristic suggests the document is a dropper, intended to download and execute a secondary malicious payload. No further details on the payload or specific delivery mechanism were extracted.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.