Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 e0e5946450683e5a…

MALICIOUS

Office (OLE)

25.0 KB Created: 1998-03-27 15:31:00 Authoring application: Microsoft Word 6.0
MD5: 0fde9db0da48fea773fcfb351eff5743 SHA-1: b14472dc5486587fb552d4b8d8df5c8bb20b98b4 SHA-256: e0e5946450683e5a8938d1c52e3d81ead418cd1cef43df8fd0bbfc4f7d6db1e9
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is detected as Win.Trojan.Cap-1 by ClamAV. The document body presents a form for financial contributions to a human rights center, which is a common lure for phishing or donation scams. The presence of macro-related keywords like AutoOpen and AutoExec suggests potential malicious macro execution, although no specific script content was extracted to confirm this.

Heuristics 1

  • ClamAV: Win.Trojan.Cap-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Cap-1

Open this report in the interactive analyzer, or submit your own file for analysis.