Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 4bfbe9eb3f3b2a65…

MALICIOUS

Office (OLE)

7.0 KB First seen: 2012-06-14
MD5: f24f52e834eb44e1e06f6c4a09066b86 SHA-1: 30bb9b697922bb998182f3dd40027c82bcf9f689 SHA-256: 4bfbe9eb3f3b2a65b50ed453e8151abea4b23dc18258ea0726e11985e906197c
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Zero-1 by ClamAV. The document body contains a mix of German and English text, including personal messages and what appear to be file paths, suggesting a social engineering lure to trick the user into interacting with the document. No scripts were extracted, and the document body does not contain explicit malicious instructions, leading to a moderate confidence assessment.

Heuristics 1

  • ClamAV: Win.Trojan.Zero-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Zero-1

Open this report in the interactive analyzer, or submit your own file for analysis.