Office (OLE) malware analysis — malicious · 852b51c253a4ca6e

MALICIOUS

Office (OLE)

183.5 KB Created: 1997-08-12 16:18:00 Authoring application: Microsoft Word 6.0

MD5: 99c133d68eb38bccc72c1ecfae3161dc SHA-1: dc427e19bd2f63f0d3e93722282df6fffcf8bd57 SHA-256: 852b51c253a4ca6e0544dd9bfc59f379f9c34ad10d65bbf2c4b189aca49884cb

62 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Clock-4 by ClamAV, indicating malicious intent. The document body is formatted as an announcement for the International Congress of Mathematicians, likely a lure to trick recipients into believing it is legitimate. An embedded URL was found, though it was confirmed as benign.

Heuristics 2

ClamAV: Win.Trojan.Clock-4 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Clock-4
Embedded URL info EMBEDDED_URL

One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.

URL http://elib.zib.de/ICM98

Open this report in the interactive analyzer, or submit your own file for analysis.