Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 c9905c5b5009e05d…

MALICIOUS

Office (OLE)

80.5 KB Created: 1998-06-15 03:33:00 Authoring application: Microsoft Word for Windows 95
MD5: 13dea0e79ba827070733dd1cca1ad86b SHA-1: 59aa6c6952f8c9677179a8384aa4c39d867f9744 SHA-256: c9905c5b5009e05d3a5f594fdbf9e07d4ad8a8f3dbb07ca7b327019e77bcc770
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file is an OLE document with a creation date of 1998, indicating it is likely exploiting a very old vulnerability. The ClamAV heuristic 'Win.Trojan.Tm-1' strongly suggests malicious intent. The document body contains unusual strings that do not form coherent text, further supporting the idea that the document's content is not meant for human consumption but rather to trigger an exploit.

Heuristics 1

  • ClamAV: Win.Trojan.Tm-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Tm-1

Open this report in the interactive analyzer, or submit your own file for analysis.