Main Area and Open Discussion > Living Room

How to check xlsx files for malicious macros or virus

(1/2) > >>

kalos:
Hello!

I got today a response from a job ad I applied and they sent me an xlsx file to test my Excel skills.

This sounds a bit dodgy to be honest and I am reluctant to open it. However, I scanned it with VirusTotal.com and no virus was found from all engines.

However, are these virus engines able to detect malicious stuff in a xlsx file, such as macros etc?

They also told me not to distribute the file because it's a 'test' so I cannot really upload it here.

Any advice?

mouser:
There are a couple of approaches to handling such files that you don't trust:

1. User a virtual machine to open and test it and work on it
2. Use a 3d party tool to open it instead of using microsoft office (like an online service or a 3rd party office compatible tool)
3. Turn off macros/scripts in excel until you are sure you trust it.

Target:
as long as it is actually an xlsx you wont have a problem - XLSX files can't hold macro's (they need to be in XLSM format)

as to how you confirm that I couldn't say, though excel is pretty good about highlighting files it thinks aren't in the expected format

ConstanceJill:
Hi ^^

Just like other Office 2007 files, .xlsx files are just .zip files, so you can explore the contents with 7-zip or another archiver, and have a look at the .xml files inside with Notepad++ or other text editor of your choice.

As Target mentionned, they shouldn't contain any macro though.

Stoic Joker:
Can't find it at the moment, but one of the hacking news sites had an article on hostel code that could be embedded in xlsx files, and a bunch of other types of MS Office document.

Bottom line, low-tech is best tech ...(because AV scanners miss stuff all the time)... Just contact them and ask if the file was sent intentionally.

This policy is mandatory at our office with any unsolicited attachments.

Navigation

[0] Message Index

[#] Next page