Office (OLE) / .EXE malware analysis — malicious · 5aed91423571dd27

MALICIOUS

Office (OLE) / .EXE

18.0 KB Created: 1996-05-04 13:15:00 Authoring application: Microsoft Word 6.0

MD5: fd2adade6741177afb427e125b9dae36 SHA-1: d50187b5c46df801c61cb75413ac7e4f8b3f5d31 SHA-256: 5aed91423571dd27aa084e6583059e2346386359a0873c4913b1a1cd036abc75

60 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Nuclear-1 by ClamAV. The document body contains references to "Nuclear Virus" and lists several macro names such as AutoExec, AutoOpen, and InsertPayload, indicating a likely macro-based execution of malicious code. The presence of file paths like C:\NUCZAP.DOC suggests the malware may interact with the local file system.

Heuristics 1

ClamAV: Win.Trojan.Nuclear-1 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Nuclear-1

Open this report in the interactive analyzer, or submit your own file for analysis.