Office (OLE) / .EXE malware analysis — malicious · b1f61dc416fa2bcc

MALICIOUS

Office (OLE) / .EXE

14.0 KB Created: 1997-02-25 04:51:00 Authoring application: Microsoft Word for Windows 95

MD5: c183d17c80b39f3b08a8bb563b225529 SHA-1: cbfcaa5bd07532c5501fe17c6ec4c08319497f6f SHA-256: b1f61dc416fa2bcccb91a95d60603e0132e603063dc39356af440d7f5da77f28

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File

The file is identified as a malicious executable by ClamAV with the signature 'Doc.Trojan.Wazzu-6'. Its metadata indicates it is an Office OLE file, specifically an executable, with authoring application 'Microsoft Word for Windows 95' and a creation date from 1997. The document body contains references to macros like 'autoOpen' and 'fileMacro', suggesting it may have been designed to execute malicious code upon opening. No specific scripts were extracted, and the family is undetermined.

Heuristics 1

ClamAV: Doc.Trojan.Wazzu-6 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Doc.Trojan.Wazzu-6

Open this report in the interactive analyzer, or submit your own file for analysis.