Loading ...

Play interactive tourEdit tour

Analysis Report utente_2263.xls

Overview

General Information

Sample Name:utente_2263.xls
MD5:99623bf981658ae3c9469e59cc94cf75
SHA1:5d6557cd5d6591cbbae7e37889b37337e8897059
SHA256:1a448a1e70be5d5885d5f527bfca787996eedbd1cb074260129e32e53d934dcf

Most interesting Screenshot:

Detection

Hidden Macro 4.0
Score:80
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus detection for URL or domain
Document exploit detected (creates forbidden files)
Multi AV Scanner detection for domain / URL
Multi AV Scanner detection for submitted file
Document exploit detected (UrlDownloadToFile)
Found abnormal large hidden Excel 4.0 Macro sheet
Checks for available system drives (often done to infect USB drives)
Document contains embedded VBA macros
Potential document exploit detected (performs DNS queries)
Potential document exploit detected (performs HTTP gets)
Potential document exploit detected (unknown TCP traffic)
Uses a known web browser user agent for HTTP communication
Yara detected Xls With Macro 4.0
Yara signature match

Classification