Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 c23698d9d36ef310…

MALICIOUS

Office (OLE)

42.0 KB Created: 1998-02-27 18:25:00 Authoring application: Microsoft Word for Windows 95 First seen: 2012-06-14
MD5: 22d16af43c03f0e4db350ca4f8bcec32 SHA-1: 3495fd3c6ec324409d1a70724704ad22dc061603 SHA-256: c23698d9d36ef310bba3f8b05e52d5351dec3dc0dbd65f2684cd122160c556dd
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is an OLE document with a detected ClamAV signature of Win.Trojan.Grass-1. The document body contains text that appears to be related to Microsoft Word macros and template files, suggesting an attempt to trick the user into enabling macro execution. The presence of macro-related text and the ClamAV detection strongly indicate a malicious macro-based document.

Heuristics 1

  • ClamAV: Win.Trojan.Grass-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Grass-1

Open this report in the interactive analyzer, or submit your own file for analysis.