Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 e86e21de8b004b4e…

MALICIOUS

Office (OLE)

26.5 KB Created: 1998-01-15 00:09:36 Authoring application: Microsoft Excel First seen: 2012-06-14
MD5: e7e2e8da8a7e947971a8108eccdb2201 SHA-1: 19a899be92e4f7cdf609ab712a00c69916b8aeb9 SHA-256: e86e21de8b004b4ebd460e83c60ee288ced19488aa0d2e9c7bb6841d690e11a7
60 Risk Score

Malware Insights

MITRE ATT&CK
T1566.001 Spearphishing Attachment

The file is identified as malicious by ClamAV with the signature Win.Trojan.Laroux-49. While the document body contains financial terms, the presence of this signature suggests it is a known trojan dropper. The file's origin as an Excel document implies it was likely delivered as a spearphishing attachment.

Heuristics 1

  • ClamAV: Win.Trojan.Laroux-49 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Laroux-49

Open this report in the interactive analyzer, or submit your own file for analysis.