Office (OLE) malware analysis — malicious · 08ad4c4af8f3f6d0

MALICIOUS

Office (OLE)

71.5 KB Created: 1998-03-31 15:16:00 Authoring application: Microsoft Word 6.0

MD5: 10f861799d92be3549f95c82d470f815 SHA-1: 81d899a72dbcac83fc31be59bb203af5c3633a4c SHA-256: 08ad4c4af8f3f6d04f053cf574988bb65ef744f7c8523d868aaa0ff03c4d88f3

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature Win.Trojan.TWNO-2. The presence of OLE objects and auto-execution macros (AUTONEW, AUTOOPEN) strongly suggests an attempt to execute malicious code upon opening. The document body content is not indicative of a specific lure, but the structure points towards a macro-based downloader.

Heuristics 1

ClamAV: Win.Trojan.TWNO-2 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.TWNO-2

Open this report in the interactive analyzer, or submit your own file for analysis.