Office (OLE) / .DOC malware analysis — malicious · 1d384c5196c417ab

MALICIOUS

Office (OLE) / .DOC

1.15 MB

MD5: 8e67d1c5ed1c6b82539d68cf31b10862 SHA-1: 75bfedb44bea316bd254fd8c079e508eec06f674 SHA-256: 1d384c5196c417ab1f276fabf31823c85856fb878e4df4d1643fc9f98fdfaa35

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The file is an encrypted Office document, and ClamAV detected it as a dropper. Due to the encryption, no document body or script content could be extracted for further analysis. The specific attack pattern and family remain unknown, but it is likely a downloader for a second-stage payload.

Heuristics 1

ClamAV: Doc.Dropper.Agent-7513333-0 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Doc.Dropper.Agent-7513333-0

Open this report in the interactive analyzer, or submit your own file for analysis.