Office (OOXML) / .XLSX malware analysis — malicious · d7aefc481992f8a5

MALICIOUS

Office (OOXML) / .XLSX

23.6 KB Created: 2006-09-16 00:00:00 UTC Authoring application: Microsoft Excel 14.0300

MD5: 1583e7e1bc00313b43898674fce3537e SHA-1: 7ae2ceb9fd6e1f1a3ae428a0242e466927c45730 SHA-256: d7aefc481992f8a56bc409105864e985b3241f3110ca261fb58c21d8114e3883

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204 Malicious File

Static analysis identified the file as a malicious Excel document. The ClamAV heuristic firing, 'Xls.Dropper.QbotDocu12020-9818439-0', strongly suggests this file acts as a dropper for other malware. Without further script or body content, the exact payload and delivery mechanism remain unclear, but the intent is to execute malicious code.

Heuristics 1

ClamAV: Xls.Dropper.QbotDocu12020-9818439-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.QbotDocu12020-9818439-0

Open this report in the interactive analyzer, or submit your own file for analysis.