[QuickSand.io Home][Report Permalink]

QuickSand.io Malware Analysis Results

Date2018-12-05 11:03:34
FilenameInventory Form_English_new.xlsx
Size972000 bytes
MD5ddb6826f9108c2b2606c66526f522d8d
SHA14a0311c10bb13b1f7883758e136bf8277a59951e
SHA256481570043e2d22e067a531fd31ed2036dbd457b1508ce2107d89673b1a4f2e10
SHA5123d9ce3b8d4240be55ceedd4bd5ac27a9dfb506dee3cb342af72ded92719e390085dca7f71d5ea5234fd24e28c635c17e8cbe987c0b5d2caaa72c87040b281fe2
is_malware2 [file is high risk]
Score42 [high]
Runtime17.87 sec
Exploitswarning_activex_exec
exploit_cve_2012_0158
Yaraopenxml_remote_content
Streams

root:

zip:[Content_Types].xml:

zip:_rels/.rels:

zip:xl/_rels/workbook.xml.rels:

zip:xl/workbook.xml:

zip:xl/worksheets/sheet4.xml:

zip:xl/media/image31.png:

zip:xl/media/image30.jpg:

zip:xl/media/image29.jpg:

zip:xl/media/image28.emf:

zip:xl/media/image32.png:

zip:xl/drawings/drawing6.xml:

zip:xl/drawings/vmlDrawing5.vml:

zip:xl/media/image33.emf:

zip:xl/media/image34.jpg:

zip:xl/media/image35.jpg:

zip:xl/media/image27.emf:

zip:xl/media/image26.emf:

zip:xl/media/image25.emf:

zip:xl/media/image20.emf:

zip:xl/media/image19.emf:

zip:xl/drawings/vmlDrawing3.vml:

zip:xl/drawings/drawing4.xml:

zip:xl/media/image21.emf:

zip:xl/media/image22.emf:

zip:xl/media/image23.png:

zip:xl/media/image24.png:

zip:xl/drawings/drawing5.xml:

zip:xl/drawings/vmlDrawing4.vml:

zip:xl/media/image36.jpg:

zip:xl/media/image37.jpg:

zip:xl/media/image38.jpg:

zip:xl/drawings/_rels/drawing4.xml.rels:

zip:xl/drawings/_rels/vmlDrawing2.vml.rels:

zip:xl/drawings/_rels/drawing2.xml.rels:

zip:xl/drawings/_rels/vmlDrawing1.vml.rels:

zip:xl/drawings/_rels/vmlDrawing3.vml.rels:

zip:xl/drawings/_rels/drawing5.xml.rels:

zip:xl/drawings/_rels/vmlDrawing4.vml.rels:

zip:xl/drawings/_rels/drawing6.xml.rels:

zip:xl/drawings/_rels/vmlDrawing5.vml.rels:

zip:xl/drawings/_rels/vmlDrawing6.vml.rels:

zip:xl/worksheets/_rels/sheet8.xml.rels:

zip:xl/worksheets/_rels/sheet7.xml.rels:

zip:xl/worksheets/_rels/sheet6.xml.rels:

zip:xl/worksheets/sheet3.xml:

zip:xl/drawings/vmlDrawing6.vml:

zip:xl/drawings/drawing7.xml:

zip:xl/media/image39.jpg:

zip:xl/worksheets/sheet2.xml:

zip:xl/worksheets/_rels/sheet1.xml.rels:

zip:xl/worksheets/_rels/sheet2.xml.rels:

zip:xl/worksheets/_rels/sheet3.xml.rels:

zip:xl/worksheets/_rels/sheet4.xml.rels:

zip:xl/worksheets/_rels/sheet5.xml.rels:

zip:xl/media/image18.emf:

zip:xl/worksheets/sheet1.xml:

zip:xl/worksheets/sheet5.xml:

zip:xl/media/image8.png:

zip:xl/media/image7.png:

zip:xl/drawings/drawing2.xml:

zip:xl/media/image6.emf:

zip:xl/media/image9.png:

zip:xl/media/image10.png:

zip:xl/media/image11.png:

zip:xl/media/image12.png:

zip:xl/media/image13.png:

zip:xl/media/image14.png:

zip:xl/media/image5.emf:

zip:xl/media/image17.emf:

zip:xl/media/image3.emf:

zip:xl/theme/theme1.xml:

zip:xl/worksheets/sheet8.xml:

zip:xl/worksheets/sheet7.xml:

zip:xl/worksheets/sheet6.xml:

zip:xl/styles.xml:

zip:xl/sharedStrings.xml:

zip:xl/drawings/drawing1.xml:

zip:xl/drawings/vmlDrawing1.vml:

zip:xl/media/image1.emf:

zip:xl/media/image2.emf:

zip:xl/drawings/drawing3.xml:

zip:xl/media/image4.emf:

zip:xl/drawings/vmlDrawing2.vml:

zip:xl/media/image15.emf:

zip:xl/media/image16.emf:

zip:xl/printerSettings/printerSettings5.bin:

zip:xl/activeX/_rels/activeX5.xml.rels:

zip:xl/activeX/_rels/activeX4.xml.rels:

zip:xl/activeX/_rels/activeX2.xml.rels:

zip:xl/activeX/_rels/activeX6.xml.rels:

zip:xl/activeX/_rels/activeX1.xml.rels:

zip:xl/activeX/_rels/activeX3.xml.rels:

zip:xl/activeX/_rels/activeX7.xml.rels:

zip:xl/activeX/activeX11.xml:

zip:xl/activeX/_rels/activeX10.xml.rels:

zip:xl/activeX/_rels/activeX9.xml.rels:

zip:xl/activeX/_rels/activeX8.xml.rels:

zip:xl/activeX/activeX11.bin:

zip:xl/externalLinks/_rels/externalLink1.xml.rels:

zip:xl/activeX/activeX8.xml:

zip:docProps/custom.xml:

zip:docProps/app.xml:

zip:docProps/core.xml:

zip:customXml/itemProps3.xml:

zip:customXml/item3.xml:

zip:xl/activeX/activeX12.bin:

zip:xl/activeX/_rels/activeX11.xml.rels:

zip:xl/activeX/_rels/activeX12.xml.rels:

zip:xl/activeX/_rels/activeX13.xml.rels:

zip:xl/activeX/_rels/activeX33.xml.rels:

zip:xl/activeX/_rels/activeX32.xml.rels:

zip:xl/activeX/_rels/activeX31.xml.rels:

zip:xl/activeX/_rels/activeX30.xml.rels:

zip:xl/activeX/_rels/activeX29.xml.rels:

zip:xl/activeX/_rels/activeX28.xml.rels:

zip:xl/activeX/_rels/activeX34.xml.rels:

zip:xl/activeX/_rels/activeX35.xml.rels:

zip:customXml/_rels/item3.xml.rels:

zip:customXml/_rels/item2.xml.rels:

zip:customXml/_rels/item1.xml.rels:

zip:xl/activeX/_rels/activeX38.xml.rels:

zip:xl/activeX/_rels/activeX37.xml.rels:

zip:xl/activeX/_rels/activeX36.xml.rels:

zip:xl/activeX/_rels/activeX27.xml.rels:

zip:xl/activeX/_rels/activeX26.xml.rels:

zip:xl/activeX/activeX10.bin:

zip:xl/externalLinks/externalLink1.xml:

zip:xl/activeX/_rels/activeX17.xml.rels:

zip:xl/activeX/_rels/activeX16.xml.rels:

zip:xl/activeX/_rels/activeX15.xml.rels:

zip:xl/activeX/_rels/activeX14.xml.rels:

zip:xl/activeX/_rels/activeX18.xml.rels:

zip:xl/activeX/_rels/activeX19.xml.rels:

zip:xl/activeX/_rels/activeX20.xml.rels:

zip:xl/activeX/activeX9.bin:

zip:xl/activeX/_rels/activeX25.xml.rels:

zip:xl/activeX/_rels/activeX24.xml.rels:

zip:xl/activeX/_rels/activeX23.xml.rels:

zip:xl/activeX/_rels/activeX22.xml.rels:

zip:xl/activeX/_rels/activeX21.xml.rels:

zip:customXml/itemProps2.xml:

zip:customXml/itemProps1.xml:

zip:customXml/item1.xml:

zip:xl/activeX/activeX16.xml:

zip:xl/activeX/activeX15.bin:

zip:xl/activeX/activeX26.bin:

zip:xl/printerSettings/printerSettings2.bin:

zip:xl/printerSettings/printerSettings6.bin:

zip:xl/activeX/activeX19.bin:

zip:xl/printerSettings/printerSettings3.bin:

zip:xl/activeX/activeX20.bin:

zip:xl/calcChain.xml:

zip:xl/activeX/activeX6.xml:

zip:customXml/item2.xml:




[View report JSON] [View submissions JSON]