The MDRHZBOL2477518 CO.xls File Analysis

Updated 8 months ago

Checked by Malware Check

MDRHZBOL2477518 CO.xls

Technical Analysis

File Name	MDRHZBOL2477518 CO.xls
File Type	MS Excel Spreadsheet
Magic Bytes	`Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, Code page: 1252, Name of Creating Application: Microsoft Excel, Create Time/Date: Sat Sep 16 00:00:00 2006, Last Saved Time/Date: Wed Mar 26 05:52:13 2025, Security: 1`
SSDEEP Hash	24576:Fv2A6lUE6UzfYti5u0s38xN4XZs4z84W9Gt9cy37/bP4LtdUJvKZ:p2AIUE6KfYtGo38xuX+2WUt95jePq
Scanner Version	1.0.211.174
Database Version	2025-03-26 17:01:11 UTC

⚠

Suspicious File Detected

Detected by 19 security engines - requires caution

This file requires additional checking for potential threats. Based on suspicious indicators, we will soon add it to our virus database.

31%

Detection Rate

1,255,424

File Size (bytes)

19/62

Engines Detected

2025-03-26

Analysis Date

Scan Another File

File Identification

Hash Type	Value	Action
MD5	1f33c8b359cb013c059c9eea0f1af839
SHA1	4f5b8323ca37b1fcdec87195251386e87cbd4ca2
SHA256	17325bc4fbd3e188ce5f10e11f2df0a1c3967ba44664c4aed32211f6ec80a86e
SHA512	d120933e2685c0aa9f041fd0b8afea8fdaf5156a072fb24d993701b673fdb5a7966cbbdce7936f88885808a4687e72c9bbdb146427db3f80399b7b80206e6d2c

Security Engines with Detections (19 of 62)

Lionic

Trojan.MSExcel.Generic.4!c Malicious

MicroWorld-eScan

Exploit.CVE-2017-0199.05.Gen Malicious

ALYac

Exploit.CVE-2017-0199.05.Gen Malicious

Symantec

Scr.Malcode!gen59 Malicious

ESET-NOD32

probably a variant of Win32/Exploit.CVE-2017-0199.C Malicious

TrendMicro-HouseCall

HEUR_CVE170199.L Malicious

BitDefender

Exploit.CVE-2017-0199.05.Gen Malicious

Rising

Exploit.CVE-2017-0199!1.1010A (CLASSIC) Malicious

Emsisoft

Exploit.CVE-2017-0199.05.Gen (B) Malicious

VIPRE

Exploit.CVE-2017-0199.05.Gen Malicious

TrendMicro

HEUR_CVE170199.L Malicious

CTX

xls.exploit-kit.generic Malicious

FireEye

Exploit.CVE-2017-0199.05.Gen Malicious

Fortinet

MSExcel/CVE_2017_0199.G1!exploit Malicious

Arcabit

Exploit.CVE-2017-0199.05.Gen Malicious

ViRobot

XLS.Z.Exploit.1255424 Malicious

TACHYON

Downloader/W97.CVE-2017-0199 Malicious

GData

Exploit.CVE-2017-0199.05.Gen Malicious

alibabacloud

Exploit:Win/CVE-2017-0199.C Malicious

43 engines reported no threats - Only engines with detections are shown above for clarity

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
Email Security: Be cautious with email attachments and links, even from known contacts.

Proactive Protection

19 antivirus engines detected potential threats. This could be a false positive, especially for system tools or packed software. Verify the file source and check if it's digitally signed by a trusted publisher.

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.

Your Score for

5 4 3 2 1

The MDRHZBOL2477518 CO.xls File Analysis

Technical Analysis

Suspicious File Detected

Scan Another File

File Identification

Security Engines with Detections (19 of 62)

Remember: This is Result of Online Virus Scanner

Keep Your System Protected

Leave a Comment

Gridinsoft Anti-Malware