popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Invoice%20325274%20from%20Quickbooks,%20LLC.xls

VBA_macro MSOffice File
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6401 Dec. 4, 2023, 10:47 a.m. Dec. 4, 2023, 10:47 a.m.
Size 711.0KB
Type Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1252, Title: Invoice 325274 from Quickbooks, LLC, Author: Quickbooks, LLC, Last Saved By: user, Name of Creating Application: Microsoft Excel, Create Time/Date: Wed Jul 14 08:38:23 2021, Last Saved Time/Date: Wed Jul 14 14:09:51 2021, Security: 0
MD5 ab0ba30c618d88e8a9134e0a7c43fc31
SHA256 0e1667c84a5a53153c9abe4eaafbea3dac07a49ebeb59c79c1e0f830edfea28c
CRC32 67764CB8
ssdeep 12288:jRYbXrlUc6XS/CwRl+4MW1H5onZHBDznxcp/c0UGtkbByxlFYd2DrpJT:MUc6EjDMW1UrDjxcNcfgZI2/
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
  • Contains_VBA_macro_code - Detect a MS Office document with embedded VBA macro code [binaries]

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Lionic Trojan.Multi.Generic.4!c
Elastic malicious (high confidence)
CAT-QuickHeal X97M.Downloader.43641
McAfee RDN/Dridex
Sangfor Virus.Macro.Generic.Save
Arcabit VB:Trojan.Valyria.D13C7
Cyren Trojan.HPYL-3
ESET-NOD32 VBA/TrojanDropper.Agent.CBR
TrendMicro-HouseCall TROJ_FRS.0NA103GG21
Avast SNH:Script [Dropper]
Cynet Malicious (score: 99)
Kaspersky UDS:DangerousObject.Multi.Generic
BitDefender VB:Trojan.Valyria.5063
NANO-Antivirus Trojan.Ole2.Vbs-heuristic.druvzi
MicroWorld-eScan VB:Trojan.Valyria.5063
Rising Downloader.Dridex!8.10EEC (TOPIS:E0:wwFjRqjqO3C)
Ad-Aware VB:Trojan.Valyria.5063
Emsisoft Trojan-Downloader.Macro.Generic.CQ (A)
Comodo Malware@#1xmzpuwl3lw58
DrWeb Exploit.Siggen3.18871
TrendMicro TROJ_FRS.0NA103GG21
McAfee-GW-Edition BehavesLike.OLE2.Downloader.bb
FireEye VB:Trojan.Valyria.5063
Sophos Troj/DocDl-ADXD
Avira HEUR/Macro.Downloader.AJAM.Gen
Microsoft TrojanDownloader:O97M/Dridex.PSTT!MTB
GData VB:Trojan.Valyria.5063
TACHYON Suspicious/X97M.XSR.Gen
AhnLab-V3 Downloader/MSOffice.Generic
ALYac Trojan.Downloader.XLS.Gen
MAX malware (ai score=99)
Tencent Trojan.MsOffice.MacroS.11012334
Fortinet VBA/Agent.3EC4!tr
AVG SNH:Script [Dropper]