Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 a036efe8630e4a0c…

MALICIOUS

Office (OLE)

11.5 KB Created: 1996-09-14 06:10:00 Authoring application: Microsoft Word for Windows 95 First seen: 2012-06-14
MD5: d95f4c6afbd79cd4bd86ec548d43d960 SHA-1: deb5a66afaa4aa504408c83884ff2b2f9d4cb196 SHA-256: a036efe8630e4a0c2a3d8d15010b194f9b64e47860b6fb8bfb3f21b773bda0e5
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Twno-5 by ClamAV. The document body contains text that mimics a file saving dialog, suggesting a social engineering lure to prompt the user to save a file. The presence of embedded file paths further supports this, indicating potential dropper functionality.

Heuristics 1

  • ClamAV: Win.Trojan.Twno-5 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Twno-5

Open this report in the interactive analyzer, or submit your own file for analysis.