2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
2 readers (anonymous and Robert) submitted very similar malicious spreadsheets with almost no detections on VT: c1394e8743f0d8e59a4c7123e6cd5298 and a03ae50077bf6fad3b562241444481c1. These files contain Excel 4 macros (checking with oledump.py here): There are a lot of cells in this spreadsheet with a call to the CHAR function: These CHAR formulas evaluate to ASCII characters, that are then …
Johannes started a Covid19 Domain Classifier here on our Internet Storm Center site. From SANS NewsBites Vol. 22 Num. 025: Help Us Classify COVID-19 Related Domains These last couple of weeks, criminals have been using COVID-19 for everything from selling fake cures to phishing. Every day, several thousand domains are registered for COVID-19 related keywords. …