Office (OOXML) / .XLSX malware analysis — malicious · cbc78329f6c4ca5a

MALICIOUS

Office (OOXML) / .XLSX

29.5 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 8274a98d6724c79489433683fa3fd001 SHA-1: cc3513e06659cbf8a0cc9d3a1bbb0e5f1047f9ee SHA-256: cbc78329f6c4ca5a709047fbbe906b8f3205901a2bc5d679a770c4e5b11ede5e

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204 Malicious File Execution

The file is identified by ClamAV as 'Xls.Dropper.QbotDocu12020-9818439-0', indicating it functions as a dropper for other malware. As an Excel document, it likely relies on social engineering or exploiting vulnerabilities to execute its payload. Further analysis would be needed to determine the specific payload and delivery mechanism.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.