Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: Diaries by Keyword Diaries by Keyword

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

EXCEL 40 MACROS

2019-03-17Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16Didier StevensMaldoc: Excel 4.0 Macros

EXCEL

2020-08-26/a>Xavier MertensMalicious Excel Sheet with a NULL VT Score
2020-06-12/a>Xavier MertensMalicious Excel Delivering Fileless Payload
2020-06-01/a>Didier StevensXLMMacroDeobfuscator: An Update
2020-04-24/a>Xavier MertensMalicious Excel With a Strong Obfuscation and Sandbox Evasion
2020-04-05/a>Guy BruneauMaldoc XLS Invoice with Excel 4 Macros
2020-03-29/a>Didier StevensObfuscated Excel 4 Macros
2020-03-09/a>Didier StevensMalicious Spreadsheet With Data Connection and Excel 4 Macros
2020-03-06/a>Xavier MertensA Safe Excel Sheet Not So Safe
2020-02-24/a>Didier StevensMaldoc: Excel 4 Macros and VBA, Devil and Angel?
2020-02-23/a>Didier StevensMaldoc: Excel 4 Macros in OOXML Format
2019-11-08/a>Xavier MertensMicrosoft Apps Diverted from Their Main Use
2019-03-25/a>Didier Stevens"VelvetSweatshop" Maldocs: Shellcode Analysis
2019-03-23/a>Didier Stevens"VelvetSweatshop" Maldocs
2019-03-17/a>Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16/a>Didier StevensMaldoc: Excel 4.0 Macros
2018-10-10/a>Xavier MertensNew Campaign Using Old Equation Editor Vulnerability
2018-09-28/a>Xavier MertensMore Excel DDE Code Injection
2018-05-22/a>Xavier MertensMalware Distributed via .slk Files
2018-02-02/a>Xavier MertensSimple but Effective Malicious XLS Sheet
2018-01-14/a>Didier StevensPeeking into Excel files
2017-04-19/a>Xavier MertensHunting for Malicious Excel Sheets
2015-05-15/a>Didier StevensAnother Maldoc? I'm Afraid So...
2010-03-09/a>John BambenekMarch 2010 - Microsoft Patch Tuesday Diary
2009-07-13/a>Adrien de BeaupreVulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution

40

2019-03-17/a>Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16/a>Didier StevensMaldoc: Excel 4.0 Macros
2017-07-19/a>Xavier MertensBots Searching for Keys & Config Files
2014-06-12/a>Johannes UllrichMetasploit now includes module to exploit CVE-2014-0195 (OpenSSL DTLS Fragment Vuln.)
2014-05-21/a>John BambenekNew, Unpatched IE 0 Day published at ZDI
2014-03-02/a>Stephen HallSymantec goes yellow
2012-04-12/a>Guy BruneauHP ProCurve 5400 zl Switch, Flash Cards Infected with Malware
2011-08-05/a>Johannes UllrichCommon Web Attacks. A quick 404 project update
2011-07-28/a>Johannes UllrichAnnouncing: The "404 Project"
2009-11-11/a>Rob VandenBrinkApple Safari 4.0.4 Released
2006-10-05/a>Swa FrantzenMS06-053 revisited ?
2006-08-31/a>Joel EslerMS06-040 Worm

MACROS

2020-08-07/a>Brad DuncanTA551 (Shathak) Word docs push IcedID (Bokbot)
2020-07-15/a>Brad DuncanWord docs with macros for IcedID (Bokbot)
2020-07-10/a>Brad DuncanExcel spreasheet macro kicks off Formbook infection
2020-06-10/a>Brad DuncanJob application-themed malspam pushes ZLoader
2020-06-01/a>Didier StevensXLMMacroDeobfuscator: An Update
2020-05-20/a>Brad DuncanMicrosoft Word document with malicious macro pushes IcedID (Bokbot)
2020-04-05/a>Guy BruneauMaldoc XLS Invoice with Excel 4 Macros
2020-03-29/a>Didier StevensObfuscated Excel 4 Macros
2020-03-09/a>Didier StevensMalicious Spreadsheet With Data Connection and Excel 4 Macros
2020-02-24/a>Didier StevensMaldoc: Excel 4 Macros and VBA, Devil and Angel?
2020-02-23/a>Didier StevensMaldoc: Excel 4 Macros in OOXML Format
2019-06-18/a>Brad DuncanMalspam with password-protected Word docs pushing Dridex
2019-03-17/a>Didier StevensVideo: Maldoc Analysis: Excel 4.0 Macro
2019-03-16/a>Didier StevensMaldoc: Excel 4.0 Macros