Win.Trojan.Cap-1 — Office (OLE) / .DOC malware analysis

Static analysis result for SHA-256 3d5e090473fd02eb…

MALICIOUS

Office (OLE) / .DOC

15.0 KB Created: 1997-12-03 22:43:00 Authoring application: Microsoft Word for Windows 95
MD5: cd048274b186a806d04208b2e125d064 SHA-1: 0e8a3baf447f2f1f2f922fc52359ee946d7df3b3 SHA-256: 3d5e090473fd02ebc177562a8f19b701d412c7db3b7d6cf3caa80aabe8c32f0b
60 Risk Score

Malware Insights

Win.Trojan.Cap-1 · confidence 85%

The file is detected as Win.Trojan.Cap-1 by ClamAV, indicating a known trojan. The document body, disguised as an 'Executive Summary', contains numerous VBA macro names such as AutoExec, AutoOpen, and ToolsMacro, suggesting the document is designed to execute malicious code upon opening. The presence of these macro names strongly implies an attempt to deliver a payload.

Heuristics 1

  • ClamAV: Win.Trojan.Cap-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Cap-1

Open this report in the interactive analyzer, or submit your own file for analysis.