Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 e1ff2e4b7dc4853b…

MALICIOUS

Office (OLE)

6.5 KB First seen: 2012-06-14
MD5: a525f60f3d4ff07a8b7e3833775d0961 SHA-1: 2d447cda8faf50719759b4c15db0af78c85eb8c4 SHA-256: e1ff2e4b7dc4853b19b68f3c1af84be3e94cb503df3ac6f1c6d79b606c6dfe33
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file was detected by ClamAV as Legacy.Trojan.Agent-34816, indicating it is a known malicious legacy trojan. The document body contains what appears to be system configuration or metadata rather than a user-facing lure, suggesting the malicious functionality is likely triggered by the file's structure or embedded code rather than user interaction with the document content.

Heuristics 1

  • ClamAV: Legacy.Trojan.Agent-34816 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Legacy.Trojan.Agent-34816

Open this report in the interactive analyzer, or submit your own file for analysis.