Office (OLE) / .EXE malware analysis — malicious · f5708d981d37bcf7

MALICIOUS

Office (OLE) / .EXE

225.0 KB Created: 1980-01-04 01:06:05 Authoring application: Microsoft Excel

MD5: 8c1f5d7819f9532825a2552ac428022b SHA-1: 04b8289960a88d3035ffc7837a28d3e9021c87e5 SHA-256: f5708d981d37bcf736af658c10fb9fcfba566d242983d56b72a8c8ed3c62f1bc

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The file is identified by ClamAV as Xls.Dropper.Agent-1560443, indicating it functions as a dropper. While no specific script content was extracted, the heuristic suggests the Excel file's primary purpose is to download and execute a second-stage payload. The document body contains garbled text, offering no further clues to the lure.

Heuristics 1

ClamAV: Xls.Dropper.Agent-1560443 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Xls.Dropper.Agent-1560443

Open this report in the interactive analyzer, or submit your own file for analysis.