Win.Trojan.Ninja-8 — Office (OLE) malware analysis

Static analysis result for SHA-256 60c7f223f369932f…

MALICIOUS

Office (OLE)

18.0 KB Authoring application: Microsoft Excel First seen: 2012-06-14
MD5: 00b9fbc044f07e7231ed13594c7d9f9e SHA-1: 254188f87cb224b61815bcf30c3c9526aeaf2389 SHA-256: 60c7f223f369932f9622dd59d5822b15e60f6b162016b364be330eaeb3d07911
60 Risk Score

Malware Insights

Win.Trojan.Ninja-8 · confidence 90%

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature Win.Trojan.Ninja-8. The document's content, though partially garbled, suggests a lure related to 'Ninja', potentially indicating a trojan designed to deceive users into executing it. The primary attack pattern is likely spearphishing attachment, aiming to trick recipients into opening this malicious Excel file.

Heuristics 1

  • ClamAV: Win.Trojan.Ninja-7 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Ninja-7