Office (OLE) malware analysis — malicious · 7f70088e71a22de7

MALICIOUS

Office (OLE)

17.5 KB Created: 1997-05-04 22:41:00 Authoring application: Microsoft Word 6.0 First seen: 2014-02-28

MD5: 7e7fa2c2ebf2e50d702bd3f2a20a69ae SHA-1: 31df608c8eadaab36c8fc3fb526859cd3d952ab8 SHA-256: 7f70088e71a22de77c9e158b3b36985fce780783c3bab09e2d6e33f05de961f9

100 Risk Score

Heuristics 2

ClamAV: Legacy.Trojan.Agent-637 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Legacy.Trojan.Agent-637
Legacy WordBasic macro-virus markers high OLE_LEGACY_WORDBASIC_MACRO_VIRUS

OLE Word document contains legacy WordBasic auto-execution macro markers such as AutoOpen plus ToolsMacro/MacroFile/fileMacro/globMacro or named historical macro-virus strings. These old Word 6/95 macro forms are not exposed as a modern VBA project, so normal VBA source extraction can miss them.

Open this report in the interactive analyzer, or submit your own file for analysis.