Office (OLE) / .DOC static analysis report

Static analysis result for SHA-256 ad6087bf5e00b436…

CLEAN

Office (OLE) / .DOC

268.5 KB Created: 2021-08-02 13:49:00 Authoring application: Microsoft Office Word First seen: 2026-05-25
MD5: 8384050f5469327b44ec0bec2e8f7144 SHA-1: 045a22959bfb4c73352ca20d679f89db4aa26f4a SHA-256: ad6087bf5e00b43628cce9136e4dbf20c96cb21b82c2e5628e0a3efc55b12f8a
2 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The sample is a Microsoft Word document containing two embedded URLs. One URL, 'https://jpmm.com/research/disclosures', appears to be a legitimate research disclosure page, while the other, 'http://schemas.openxmlformats.org/drawingml/2006/main', is a schema reference. The heuristic firing indicates an embedded URL, suggesting a potential phishing or redirection attempt. However, the verdict is clean, and the document body was not provided, limiting the ability to determine the exact malicious intent.

Heuristics 1

  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL https://jpmm.com/research/disclosures In document text (OLE body)
    • http://schemas.openxmlformats.org/drawingml/2006/mainIn document text (OLE body)