Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 150c975174c1eb3a…

MALICIOUS

Office (OLE)

279.5 KB Created: 1998-09-15 08:58:00 Authoring application: Microsoft Word for Windows 95
MD5: 09cf23a5e853df22747652aaf7aac44b SHA-1: d82c20be1dc4711b0c245d8e547d435d22a5acd2 SHA-256: 150c975174c1eb3addfe61357dd718cc717c82e8d8faba4811b6924f9f1a8135
60 Risk Score

Malware Insights

MITRE ATT&CK
T1203 Exploitation for Client Execution

The file is an OLE document created with Microsoft Word for Windows 95, a version known to be vulnerable to various exploits. The ClamAV heuristic identifies it as Win.Trojan.Tm-1, indicating a known malicious pattern. The document body contains unusual strings and what appear to be internal Word structures, suggesting it may be malformed or packed to hide its exploit code.

Heuristics 1

  • ClamAV: Win.Trojan.Tm-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Tm-1

Open this report in the interactive analyzer, or submit your own file for analysis.