Laroux — Office (OLE) malware analysis

Static analysis result for SHA-256 ccd504d47d77c7b7…

MALICIOUS

Office (OLE)

16.5 KB Created: 1999-09-08 05:49:21 Authoring application: Microsoft Excel First seen: 2012-06-14
MD5: 509f766ab09873be26627d5ad21c90fb SHA-1: 03611fd814cbbb0cab6adbca2817ec0f40bd7f44 SHA-256: ccd504d47d77c7b777d2ab0ae50f39854746f7b43def5e90cf3ae99ecbb5b924
60 Risk Score

Malware Insights

Laroux · confidence 85%

MITRE ATT&CK
T1059.005 Visual Basic

The sample is an Excel 5 OLE file exhibiting critical heuristic firings for the Laroux/Larou-CV macro virus. This indicates the presence of malicious macros designed to execute upon opening or specific sheet activation, typical of older macro viruses.

Heuristics 1

  • Excel 5 Laroux/Larou-CV macro-virus marker cluster critical OLE_XLS5_LAROUX_MACRO_VIRUS
    Legacy Excel workbook contains a Laroux/Larou-CV macro-virus marker cluster including auto_open execution and workbook/module replication strings. This is a narrow indicator for an infected legacy Excel macro workbook.

Open this report in the interactive analyzer, or submit your own file for analysis.