Office (OLE) malware analysis — malicious · f25cf545ec98d5a6

MALICIOUS

Office (OLE)

6.5 KB Created: 1995-09-09 22:43:00 Authoring application: Microsoft Word 6.0 First seen: 2014-02-04

MD5: 0660b73aeb72ab84a84225919969114d SHA-1: 1b6c8a77df162ef0565c8fd867c1201cb2e2ba2c SHA-256: f25cf545ec98d5a6476e2d5178be09e5a3b54549fee4b3b9ab14981909533033

80 Risk Score

Heuristics 2

ClamAV: Win.Trojan.Minimal-57 critical CLAMAV_DETECTION

ClamAV detected this file as malware: Win.Trojan.Minimal-57
Legacy WordBasic auto-exec macro marker medium OLE_LEGACY_WORDBASIC_AUTOEXEC

OLE Word document contains a legacy WordBasic auto-execution marker such as AutoOpen, but no modern VBA project was recovered and no stronger macro-virus family marker was present. This is analyst-facing evidence for old Word macro execution surface, not a downloader or parser-CVE attribution by itself.

Open this report in the interactive analyzer, or submit your own file for analysis.