Office (OLE) malware analysis — malicious · 31550b7cd34d3bd1

MALICIOUS

Office (OLE)

12.5 KB Created: 1601-01-01 00:00:00 Authoring application: Microsoft Word 6.0 First seen: 2014-04-13

MD5: 18fc8a8588d1a995ccefcf5d64dd0b9e SHA-1: 306ea47a8012bc2e607766836649a2173c203c3c SHA-256: 31550b7cd34d3bd1ca622eec42569d4e793a65d792336fed431bf17fdbfdbde0

100 Risk Score

Heuristics 2

ClamAV: Win.Trojan.Nuclear-6 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Nuclear-6
Legacy WordBasic macro-virus markers high OLE_LEGACY_WORDBASIC_MACRO_VIRUS

OLE Word document contains legacy WordBasic auto-execution macro markers such as AutoOpen plus ToolsMacro/MacroFile/fileMacro/globMacro or named historical macro-virus strings. These old Word 6/95 macro forms are not exposed as a modern VBA project, so normal VBA source extraction can miss them.

Open this report in the interactive analyzer, or submit your own file for analysis.