Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 c9442b9c302cbc2e…

MALICIOUS

Office (OLE)

9.5 KB Created: 1997-03-16 17:16:00 Authoring application: Microsoft Word 6.0 First seen: 2012-06-14
MD5: 887890c1c1ae63e23280b6541b5668cb SHA-1: 844d50c5985c8155fe75dcb8f984f941d04eac85 SHA-256: c9442b9c302cbc2eed9a4a660f1c38bf1541c836897b8d84ab04882f63040fe1
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Trojan-458 by ClamAV. The document body contains unusual text, including references to a "Nightmare Joker's Demolition Kit" and threatening phrases, suggesting it may be used as a lure for a malicious payload. No specific IOCs like URLs or hashes were extracted from the file content itself.

Heuristics 1

  • ClamAV: Win.Trojan.Trojan-458 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Trojan-458

Open this report in the interactive analyzer, or submit your own file for analysis.