Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 dc4a04d3be34e166…

MALICIOUS

Office (OLE)

38.5 KB Authoring application: Microsoft Excel First seen: 2015-10-04
MD5: 7636ab817785d030168a9522f9c30950 SHA-1: f4984d2d31a5adc37708a915340907585c36eeb9 SHA-256: dc4a04d3be34e1660e5df56dd5d8549dac04750a15b5534408148186f5ebebde
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature Win.Trojan.Extras-1. The document body contains financial calculation fields, suggesting a lure to trick the user into opening the file. No scripts were extracted, and the document body's content is largely unreadable, limiting further analysis of the specific payload or delivery mechanism.

Heuristics 1

  • ClamAV: Win.Trojan.Extras-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Extras-1

Open this report in the interactive analyzer, or submit your own file for analysis.