Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 8b83d721e27e1a4b…

MALICIOUS

Office (OLE)

117.0 KB Created: 2018-06-14 07:11:00 Authoring application: Microsoft Office Word First seen: 2018-06-25
MD5: 9eb572c1546f0860e3f755cd7f2e8593 SHA-1: d165da01ccdadba439d59626a907479564da1d4c SHA-256: 8b83d721e27e1a4b0f91dbbedf303f1a9f63d82945a309cea821008ad8437949
64 Risk Score

Heuristics 3

  • ClamAV: Doc.Malware.Valyria-6803403-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Doc.Malware.Valyria-6803403-0
  • Scan did not complete info SCAN_INCOMPLETE
    Office scanner subprocess failed (worker timed out); this file was not fully inspected. The result is not cached so a later submission will re-trigger the scan.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://schemas.openxmlformats.org/drawingml/2006/main In document text (OLE body)