Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6402 | July 22, 2021, 10:58 a.m. | July 22, 2021, 11:09 a.m. |
-
EXCEL.EXE "C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE" C:\Users\test22\AppData\Local\Temp\Invoice_9255471.xls
2096
Name | Response | Post-Analysis Lookup |
---|---|---|
No hosts contacted. |
IP Address | Status | Action |
---|---|---|
No hosts contacted. |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Elastic | malicious (high confidence) |
ALYac | VBA.Heur2.Dridex.4.CD579A05.Gen |
Arcabit | HEUR.VBA.CG.1 |
Kaspersky | VHO:Exploit.MSOffice.CVE-2017-8570.gen |
BitDefender | VBA.Heur2.Dridex.4.CD579A05.Gen |
NANO-Antivirus | Trojan.Ole2.Vbs-heuristic.druvzi |
MicroWorld-eScan | VBA.Heur2.Dridex.4.CD579A05.Gen |
Ad-Aware | VBA.Heur2.Dridex.4.CD579A05.Gen |
Emsisoft | VBA.Heur2.Dridex.4.CD579A05.Gen (B) |
TrendMicro | HEUR_VBA.O2 |
McAfee-GW-Edition | BehavesLike.OLE2.Downloader.jb |
FireEye | VBA.Heur2.Dridex.4.CD579A05.Gen |
GData | VBA.Heur2.Dridex.4.CD579A05.Gen |
MAX | malware (ai score=84) |
Zoner | Probably Heur.W97ShellB |
Qihoo-360 | virus.office.obfuscated.1 |