× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: dd512875c5fc3a1040b7aaf7493274ee66573c118e536f0863ff3dc888a2eeb5
File name: juniorbeco_06711D233A9.xls
Detection ratio: 3 / 56
Analysis date: 2015-11-24 11:39:19 UTC ( 1 year, 5 months ago ) View latest
Antivirus Result Update
Arcabit HEUR.VBA.Trojan 20151124
CAT-QuickHeal X97M.Dropper.KA 20151124
NANO-Antivirus Trojan.Ole2.Vbs-heuristic.druvzi 20151124
Ad-Aware 20151124
AegisLab 20151124
Yandex 20151123
AhnLab-V3 20151123
Alibaba 20151124
ALYac 20151124
Antiy-AVL 20151124
Avast 20151124
AVG 20151124
Avira (no cloud) 20151124
AVware 20151124
Baidu-International 20151124
BitDefender 20151124
Bkav 20151123
ByteHero 20151124
ClamAV 20151124
CMC 20151124
Comodo 20151124
Cyren 20151124
DrWeb 20151124
Emsisoft 20151124
ESET-NOD32 20151124
F-Prot 20151124
F-Secure 20151124
Fortinet 20151124
GData 20151124
Ikarus 20151124
Jiangmin 20151123
K7AntiVirus 20151124
K7GW 20151124
Kaspersky 20151124
Malwarebytes 20151124
McAfee 20151124
McAfee-GW-Edition 20151124
Microsoft 20151124
eScan 20151124
nProtect 20151124
Panda 20151124
Qihoo-360 20151124
Rising 20151122
Sophos 20151123
SUPERAntiSpyware 20151124
Symantec 20151123
Tencent 20151124
TheHacker 20151121
TotalDefense 20151124
TrendMicro 20151124
TrendMicro-HouseCall 20151124
VBA32 20151123
VIPRE 20151124
ViRobot 20151124
Zillya 20151123
Zoner 20151124
The file being studied follows the Compound Document File format! More specifically, it is a MS Excel Spreadsheet file.
Summary
last_author
MY PC
creation_datetime
2013-02-05 11:04:55
last_saved
2015-11-24 00:24:56
application_name
Microsoft Excel
code_page
Cyrillic
Document summary
version
983040
company
*
code_page
Cyrillic
OLE Streams
name
Root Entry
clsid
00020820-0000-0000-c000-000000000046
type_literal
root
clsid_literal
MS Excel
sid
0
size
14400
type_literal
stream
size
102
name
\x01CompObj
sid
15
type_literal
stream
size
260
name
\x05DocumentSummaryInformation
sid
14
type_literal
stream
size
184
name
\x05SummaryInformation
sid
13
type_literal
stream
size
152351
name
Workbook
sid
1
type_literal
stream
size
708
name
_VBA_PROJECT_CUR/PROJECT
sid
12
type_literal
stream
size
107
name
_VBA_PROJECT_CUR/PROJECTwm
sid
11
type_literal
stream
size
675
type
macro (only attributes)
name
_VBA_PROJECT_CUR/VBA/Module1
sid
6
type_literal
stream
size
3933
name
_VBA_PROJECT_CUR/VBA/_VBA_PROJECT
sid
9
type_literal
stream
size
851
name
_VBA_PROJECT_CUR/VBA/dir
sid
10
type_literal
stream
size
1348
type
macro
name
_VBA_PROJECT_CUR/VBA/\u041b\u0438\u0441\u04421
sid
5
type_literal
stream
size
976
type
macro (only attributes)
name
_VBA_PROJECT_CUR/VBA/\u041b\u0438\u0441\u04422
sid
7
type_literal
stream
size
976
type
macro (only attributes)
name
_VBA_PROJECT_CUR/VBA/\u041b\u0438\u0441\u04424
sid
8
type_literal
stream
size
3805
type
macro
name
_VBA_PROJECT_CUR/VBA/\u042d\u0442\u0430\u041a\u043d\u0438\u0433\u0430
sid
4
ExifTool file metadata
MIMEType
application/vnd.ms-excel

CompObjUserTypeLen
26

CompObjUserType
???? Microsoft Excel 2003

Company
*

ModifyDate
2015:11:23 23:24:56

TitleOfParts
Warning, Code, Total

SharedDoc
No

FileType
XLS

AppVersion
15.0

LinksUpToDate
No

ScaleCrop
No

LastModifiedBy
MY PC

HeadingPairs
, 3

FileTypeExtension
xls

HyperlinksChanged
No

CreateDate
2013:02:05 10:04:55

Security
None

CodePage
Windows Cyrillic

Software
Microsoft Excel

File identification
MD5 947e9fd8fc101fe4e5ad532102673c6e
SHA1 b160773ce7b2ddfe4c9c4c18adf90777b14a3866
SHA256 dd512875c5fc3a1040b7aaf7493274ee66573c118e536f0863ff3dc888a2eeb5
ssdeep
3072:rwTGrBZAPUGvtZkiWnkHLtyeGx2zZ8NOiCHBsyRRks4qAaHZxBDRB9239AZGUi7B:sTGrBZAPUGvtZkiWnkHLty/x2zZ8NOiC

File size 168.5 KB ( 172544 bytes )
File type MS Excel Spreadsheet
Magic literal
CDF V2 Document, Little Endian, Os: Windows, Version 6.1, Code page: 1251, Last Saved By: MY PC, Name of Creating Application: Microsoft Excel, Create Time/Date: Mon Feb 04 10:04:55 2013, Last Saved Time/Date: Sun Nov 22 23:24:56 2015, Security: 0

TrID Microsoft Excel sheet (48.0%)
Microsoft Excel sheet (alternate) (39.2%)
Generic OLE2 / Multistream Compound File (12.8%)
Tags
xls

VirusTotal metadata
First submission 2015-11-24 11:39:19 UTC ( 1 year, 5 months ago )
Last submission 2016-12-21 15:12:41 UTC ( 4 months ago )
File names 7fa46faae41af1e3ce80feeca906bcd7
suspect.xls
suspect_xls
decode.xls
7474869252.xls
pisarna_B98717D690.xls
d9c209b3eb7cf65f07686349fd620625
bob_E41F6BA6C8CE.xls
alexkim_6904E73D9639.xls
hbailey_111C98CBF4.xls
RMS_rmansys.ru_malicious_remote_admin18.XLS
commercial_tsi_3C81762CA874.xls
pinnix_1437A0594AA.xls
947e9fd8fc101fe4e5ad532102673c6e.xls
michelle_C8BBB9C3BB.xls
945dd02aa2d09341cfca80c972ebe4d0
ingatlan_0A883FBCF90.xls
d806498b916d7bbdbf7046acc57d8d98
williamburbano_BC04FBCDDE.xls
4167870.root_1.xls
chica79_1982289A8B2E.xls
nicholas.litton_11D8DDF408.xls
randy_8364F757AE.xls
c1a485b1414287330bfd695b57cbf3b7
13530de0c3f60eeff92f10a9eeead0c4
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!