Office (OLE) / .DOC malware analysis — malicious · c3077108e8de4b6e

MALICIOUS

Office (OLE) / .DOC

19.0 KB Created: 1986-05-06 10:16:00 Authoring application: Microsoft Word 6.0

MD5: f573a3517936b5f6fec12ea3b5c0ebd3 SHA-1: 51ad79385e33cdd29b9290b9b6c212bd4256deda SHA-256: c3077108e8de4b6e25374295768d53e0312cd5deb87dbe7d670c9117bf7f3410

60 Risk Score

Malware Insights

MITRE ATT&CK

T1204.002 Malicious File T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Macro-11 by ClamAV, indicating a macro-based threat. The document body contains numerous file paths and references to 'Epson Stylus Pro XL', suggesting a lure related to printer software or drivers. The presence of embedded URLs, though not explicitly detailed in the provided evidence, further supports a malicious intent, likely to download a secondary payload. The extracted file paths are treated as potential indicators of compromise related to the macro's execution environment.

Heuristics 1

ClamAV: Win.Trojan.Macro-11 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Macro-11

Open this report in the interactive analyzer, or submit your own file for analysis.