GCIH · Question #638
Which file type can be used to execute code in Excel without issuing a warning about opening a macro-supporting file type?
The correct answer is A. XLTM. XLTM (Excel Macro-Enabled Template) files can execute embedded VBA macros while bypassing the standard Office macro security warning that XLSM files trigger.
Question
Which file type can be used to execute code in Excel without issuing a warning about opening a macro-supporting file type?
Options
- AXLTM
- BCSV
- CXLSB
- DPRN
How the community answered
(30 responses)- A73% (22)
- B17% (5)
- C7% (2)
- D3% (1)
Why each option
XLTM (Excel Macro-Enabled Template) files can execute embedded VBA macros while bypassing the standard Office macro security warning that XLSM files trigger.
XLTM is the macro-enabled template format for Excel, and in certain Office configurations it avoids the Protected View or macro-enable warning that XLSM files generate because Excel treats template file types under different trust and opening logic. Attackers exploit this distinction to embed malicious VBA code in XLTM files and deliver them via phishing, where the code executes silently without the expected security dialog alerting the victim.
CSV files are plain-text comma-separated value files with no support for macros, VBA, or any form of executable code.
XLSB (Excel Binary Workbook) can contain macros but still triggers Office security warnings when opened, so it does not bypass the macro warning the way XLTM can.
PRN files are printer-formatted text output files and have no capability to store or execute macros or embedded code.
Concept tested: Excel macro file type used to bypass security warnings
Source: https://learn.microsoft.com/en-us/deployoffice/security/internet-macros-blocked
Topics
Community Discussion
No community discussion yet for this question.