Loading ...

Play interactive tourEdit tour

Analysis Report utente_2410.xls

Overview

General Information

Sample Name:utente_2410.xls
MD5:d648f3d304eb459e04b1f6fae252e5a8
SHA1:6592a203ae5dbd5faf6ad5d5fdce168026f9ecc3
SHA256:c5c95428f746a2326c65533305f7ca35b63d165278fbe9402db31b8d953e42f7

Most interesting Screenshot:

Detection

Hidden Macro 4.0
Score:56
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Document exploit detected (creates forbidden files)
Document exploit detected (UrlDownloadToFile)
Found abnormal large hidden Excel 4.0 Macro sheet
Checks for available system drives (often done to infect USB drives)
Document contains embedded VBA macros
Potential document exploit detected (performs DNS queries)
Potential document exploit detected (performs HTTP gets)
Potential document exploit detected (unknown TCP traffic)
Uses a known web browser user agent for HTTP communication
Yara detected Xls With Macro 4.0
Yara signature match

Classification