Play interactive tour
Edit tourAnalysis Report Complaint-Copy_1984632811_11102020.xls
Overview
General Information
| Sample Name: | Complaint-Copy_1984632811_11102020.xls |
| Analysis ID: | 321328 |
| MD5: | 3923517a84aa5cda58fec80a26dfbfac |
| SHA1: | 96339ae67e0634cabaefe3a9f13b0dd29f128781 |
| SHA256: | 5958d4456b39343d02e0a90b156112ff2f42ab2f94fb453f722b8c4f1f91b1c4 |
Most interesting Screenshot:  | |
Detection
Hidden Macro 4.0
| Score: | 84 |
| Range: | 0 - 100 |
| Whitelisted: | false |
| Confidence: | 100% |
Signatures
Antivirus / Scanner detection for submitted sample
Antivirus detection for URL or domain
Multi AV Scanner detection for submitted file
Office document tries to convince victim to disable security protection (e.g. to enable ActiveX or Macros)
Document exploit detected (UrlDownloadToFile)
Found abnormal large hidden Excel 4.0 Macro sheet
Yara detected hidden Macro 4.0 in Excel
Document contains embedded VBA macros
Potential document exploit detected (performs DNS queries)
Potential document exploit detected (performs HTTP gets)
Potential document exploit detected (unknown TCP traffic)
Uses a known web browser user agent for HTTP communication
Yara signature match
Classification
