Analysis Report LIQUIDACION INTERBANCARIA 02_22_2021.xls

Overview

General Information

Sample Name: LIQUIDACION INTERBANCARIA 02_22_2021.xls
Analysis ID: 356267
MD5: 8cc0e4d5044939ef3d7a7d8825d8c9c9
SHA1: 61ca1ae2ac0fa0fb0f075ee09f9ff83985b5b66b
SHA256: 35cf92b551f09ba61770ce1c7c5dc73b3c3e291eb98948c87d430646370a103f
Tags: ESPgeoOutlookxls

Most interesting Screenshot:

Detection

Hidden Macro 4.0
Score: 60
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Office document tries to convince victim to disable security protection (e.g. to enable ActiveX or Macros)
Document exploit detected (UrlDownloadToFile)
Found Excel 4.0 Macro with suspicious formulas
Found obfuscated Excel 4.0 Macro
Document contains embedded VBA macros
Potential document exploit detected (performs DNS queries)
Potential document exploit detected (performs HTTP gets)
Potential document exploit detected (unknown TCP traffic)
Unable to load, office file is protected or invalid

Classification