Office (OLE) malware analysis — malicious · a7a6ac1ab111536a

MALICIOUS

Office (OLE)

162.5 KB Created: 1998-04-01 00:28:00 Authoring application: Microsoft Word for Windows 95

MD5: 127393245b2dacef485443992fe37f60 SHA-1: 4e1c2f19b652baded36f7e1ed892ab5991127dbe SHA-256: a7a6ac1ab111536aad7fb3e9cfa6ec724daecc040c23910d3bbfe96d17515c8e

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File Execution: User Execution of Malicious File

The file is an older Microsoft Word document (95) that triggers a critical ClamAV detection for Win.Trojan.Tm-1. The document body contains unusual strings and references to printer escape codes, suggesting it may be designed to exploit a vulnerability in how older Word versions handle embedded content or macros, leading to arbitrary code execution. No specific IOCs were extracted beyond the file hash.

Heuristics 1

ClamAV: Win.Trojan.Tm-1 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Tm-1

Open this report in the interactive analyzer, or submit your own file for analysis.