Win.Trojan.Ninja-8 — Office (OLE) malware analysis

Static analysis result for SHA-256 a9336d674c4346d1…

MALICIOUS

Office (OLE)

13.0 KB Authoring application: Microsoft Excel First seen: 2012-06-14
MD5: febdd365a675c98a3bba7a1571e4f7c2 SHA-1: fc6b20e63d27e740f687c851e7d620299bbd4b74 SHA-256: a9336d674c4346d1bd1ac5e081acb2650916872cabdeffd1f9ab9693fbf73418
60 Risk Score

Malware Insights

Win.Trojan.Ninja-8 · confidence 90%

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature Win.Trojan.Ninja-8. The document's content, though partially garbled, suggests a lure related to 'Ninja', potentially indicating a trojan designed to deceive users into executing it. The primary attack pattern is likely spearphishing attachment, aiming to trick recipients into opening this malicious Excel file.

Heuristics 1

  • ClamAV: Win.Trojan.Ninja-8 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Ninja-8