Office (OLE) / .DOC malware analysis — malicious · b7cdde4fb7838225

MALICIOUS

Office (OLE) / .DOC

206.5 KB Created: 1997-09-11 12:03:00 Authoring application: Microsoft Word 6.0

MD5: f1c412417818a98a256ae07504bc78b6 SHA-1: de668749e8dd89036a87cbe919cc741f2ec69933 SHA-256: b7cdde4fb7838225459a4de3ad818bf6c6593761b52872d9a4843b7f2d9aad14

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.005 Visual Basic

The file is detected as Win.Trojan.Macro-11 by ClamAV, indicating a macro-based threat. The document body contains references to AUTOOPEN and WINJET, which are common indicators of macro execution in older Microsoft Word documents. The presence of these elements suggests the document is designed to trigger a malicious macro upon opening.

Heuristics 1

ClamAV: Win.Trojan.Macro-11 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Macro-11

Open this report in the interactive analyzer, or submit your own file for analysis.