RTF malware analysis — malicious · 225f9077b87e2a9d

MALICIOUS

RTF

9.4 KB First seen: 2015-09-16

MD5: 3dff208c522f5a40c42455c287a256a0 SHA-1: 3c734a4afee634e39ed24d47821aefdb6382b31f SHA-256: 225f9077b87e2a9d7dbf1d692506ccc9836b8240a75eb2bbdfe6e480cfc65ca0

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is an RTF document with a subject line and body text that mimics a legitimate business communication, directing the recipient to open an attached Excel file. This is a common social engineering tactic used to deliver malicious payloads, often associated with spearphishing campaigns.

Heuristics 1

ClamAV: Win.Trojan.W-302 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.W-302

Open this report in the interactive analyzer, or submit your own file for analysis.