Office (OLE) / .EXE malware analysis — malicious · e64446dabd0656be

MALICIOUS

Office (OLE) / .EXE

22.0 KB Created: 1997-02-11 18:09:00 Authoring application: Microsoft Word 6.0

MD5: 6e4c96d6e97cf642f3318121d91602cc SHA-1: 62ee216520e44f9248196e6a4132aba30bd41bb5 SHA-256: e64446dabd0656be5795fc17f5615d96003c11b9410d04641dfaf6693bc65f5a

60 Risk Score

Malware Insights

The file is detected as a Trojan by ClamAV. The document body mimics an internal memo requesting financial data, likely a pretext to trick the user into enabling macros. The presence of VBA macro names like 'autoOpen' and 'wazzu' suggests malicious macro execution, which is a common delivery mechanism for Trojans.

Heuristics 1

ClamAV: Doc.Trojan.Wazzu-6 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Doc.Trojan.Wazzu-6

Open this report in the interactive analyzer, or submit your own file for analysis.