Office (OLE) / .XLS malware analysis — malicious · fafd7463254353a7

MALICIOUS

Office (OLE) / .XLS

40.5 KB Created: 2015-06-05 18:17:20 Authoring application: Microsoft Excel First seen: 2022-05-06

MD5: 9824a8ff2390f5dedee5601363511d9f SHA-1: de72363a6fe7927f87031128467af431d3ef5c23 SHA-256: fafd7463254353a7e4ea4900b93f412fb84bbbddae730fc145c54331eb2533f8

100 Risk Score

Heuristics 3

Reference to Windows Script Host high SC_STR_WSCRIPT

Reference to Windows Script Host
CreateObject call high OLE_VBA_CREATEOBJ

CreateObject call
VBA macros detected medium OLE_VBA_MACROS

Document contains VBA macro code

Extracted artifacts 1

Files carved from inside the sample during analysis.

Filename	Kind	Source	Size
`macros.bas` `5a514f5d2f8dfe73d723a57b49c17e59064bfe98c1f9b0df16d5e85fac5aad03`	vba-macro	oletools.olevba.extract_macros (decoded VBA source)	1765 bytes

Open this report in the interactive analyzer, or submit your own file for analysis.