MALICIOUS
80
Risk Score
Malware Insights
MITRE ATT&CK
T1566.001 Spearphishing Attachment
The file is an encrypted Office document, which is a common technique to evade static analysis and detection. ClamAV signature 'Doc.Dropper.Agent-7418749-0' strongly suggests this file functions as a dropper, intended to download and execute a secondary malicious payload. The encryption itself is a tactic to obscure the malicious content from initial inspection.
Heuristics 2
-
ClamAV: Doc.Dropper.Agent-6970417-0 critical CLAMAV_DETECTIONClamAV detected this file as malware: Doc.Dropper.Agent-6970417-0
-
Office document is password-encrypted medium OFFICE_ENCRYPTED_PACKAGEOLE container holds MS-OFFCRYPTO encrypted package (Standard Encryption (Office 2007, AES)).
Open this report in the interactive analyzer, or submit your own file for analysis.