MALICIOUS
60
Risk Score
Malware Insights
MITRE ATT&CK
T1203 Exploitation for Client Execution
The RTF document contains a stack overflow vulnerability (CVE-2010-3333) that can be triggered by a specially crafted pFragments field. This vulnerability allows for arbitrary code execution, indicating a malicious intent to compromise the user's system. No document body or scripts were extracted, but the heuristic firing is sufficient for a high confidence assessment.
Heuristics 1
-
CVE-2010-3333 — pFragments RTF stack overflow critical CVE exact CVE_2010_3333RTF shape property pFragments has an oversized value, matching the CVE-2010-3333 stack-overflow trigger in Microsoft Word 2002/2003.
Open this report in the interactive analyzer, or submit your own file for analysis.