Office (OLE) / .DOC malware analysis — malicious · 88003a98941096b9

MALICIOUS

Office (OLE) / .DOC

276.5 KB Created: 2007-12-03 09:59:00 Authoring application: Microsoft Office Word

MD5: 366c6860c7e9e38e1a68f7041e9db29e SHA-1: 16fc5b4f648fadb1415066803a853bcfa132351b SHA-256: 88003a98941096b9794ce8bcd6c770dbf283c04e54d0976c344b9b40a2aeef16

68 Risk Score

Malware Insights

MITRE ATT&CK

T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature 'Doc.Trojan.Xaler-1'. Although the VBA project contains no executable statements, the document body suggests it is a statistical methodology document, likely intended as a lure. The primary indicator of compromise is the ClamAV detection signature.

Heuristics 2

ClamAV: Doc.Trojan.Xaler-1 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Doc.Trojan.Xaler-1
VBA project contains no executable statements low OLE_VBA_MACROS

Document contains a VBA project, but extracted modules only contain attributes/options/comments and no executable statements.

Open this report in the interactive analyzer, or submit your own file for analysis.