Office (OLE) / .EXE malware analysis — malicious · eeac45072dea55c5

MALICIOUS

Office (OLE) / .EXE

13.0 KB Created: 1997-03-29 16:02:00 Authoring application: Microsoft Word for Windows 95

MD5: b22527a4690bfc1ba169588c59e3f8c7 SHA-1: 491fc620dd7d2ad7248bc8ad259b5a193c416d17 SHA-256: eeac45072dea55c5397187250227f8a5946c37f331974f55dac82789528ada37

60 Risk Score

Malware Insights

MITRE ATT&CK

T1059.001 PowerShell

The file is identified as malicious by ClamAV with the signature Win.Trojan.W-14. The document body contains text that mimics a virus alert, claiming infection by "The Time" and threatening to modify system files like COMMAND.COM and AUTOEXEC.BAT. It also references specific file paths and names, suggesting an attempt to mislead or scare the user into performing certain actions. No scripts were extracted from this sample.

Heuristics 1

ClamAV: Win.Trojan.W-14 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.W-14

Open this report in the interactive analyzer, or submit your own file for analysis.