Malicious RTF — malware analysis report

Static analysis result for SHA-256 86534a0506798870…

MALICIOUS

RTF

10.1 KB First seen: 2015-09-15
MD5: 0c5b8831a3cce2fd5946bf987953f400 SHA-1: dfb30da26cac1ef66fd5ccd87dc7294d0cf9ad8c SHA-256: 86534a0506798870b6f4fc6ad66919e476ef4dc5544bce6ebed4abea00864e99
60 Risk Score

Malware Insights

MITRE ATT&CK
T1203 Exploitation for Client Execution

The sample is an RTF file that triggers a critical ClamAV heuristic indicating exploitation of the CVE-2010-3333 vulnerability. This vulnerability allows for arbitrary code execution on the victim's machine. No further IOCs or script content were extracted to provide more specific details on the payload or family.

Heuristics 1

  • ClamAV: BC.Legacy.Exploit.CVE_2012_0158-20 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: BC.Legacy.Exploit.CVE_2012_0158-20

Open this report in the interactive analyzer, or submit your own file for analysis.