Office (OLE) / .DOCX malware analysis — malicious · 2ec9c69d79e8ae9e

MALICIOUS

Office (OLE) / .DOCX

12.5 KB Created: 2004-06-10 13:58:00 Authoring application: Microsoft Word for Windows 95

MD5: b4bf6f35dde06a0917eb01e8d7f7fbd2 SHA-1: e513b30a8df73b87cc35d856214f5bf2471320da SHA-256: 2ec9c69d79e8ae9e1ca24417457b386add67984c66e5154a7ff1f9ad6467bc71

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File

The file is detected as Win.Trojan.Atom-7 by ClamAV, indicating malicious intent. The document body contains keywords like 'AutoOpen', 'FileSaveAs', and 'FileOpen' which are often associated with macro-based attacks designed to execute arbitrary code upon opening. The presence of 'C:\WINDOWS\' suggests potential system modification.

Heuristics 1

ClamAV: Win.Trojan.Atom-7 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Atom-7

Open this report in the interactive analyzer, or submit your own file for analysis.