Win.Trojan.Jany-1 — Office (OLE) malware analysis

Static analysis result for SHA-256 7155098562936f6c…

MALICIOUS

Office (OLE)

15.0 KB First seen: 2012-06-14
MD5: dc696619c37a9c91809360281af776fc SHA-1: a70466a77957103c66e8574c3f08b0b845b07d63 SHA-256: 7155098562936f6c4775f15ecbe168f62f0ba80645b98867a704474d1e6e60a0
60 Risk Score

Malware Insights

Win.Trojan.Jany-1 · confidence 90%

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as Win.Trojan.Jany-1 by ClamAV. The document body contains social engineering text attempting to lure the user into double-clicking an embedded object disguised as another document (JanyCute.DOC), which likely leads to the execution of a Trojan. The embedded object also references a potential executable path.

Heuristics 1

  • ClamAV: Win.Trojan.Jany-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Jany-1