Win.Trojan.Laroux-42 — Office (OLE) / .VIR malware analysis

Static analysis result for SHA-256 fa08ada514c1b01f…

MALICIOUS

Office (OLE) / .VIR

97.5 KB Created: 1997-06-11 07:30:35 Authoring application: Microsoft Excel
MD5: f87762731ffed40be2cac0775176f8e9 SHA-1: a5b6e202092d6b19ffed03c962eb7526a5ea9149 SHA-256: fa08ada514c1b01fb9710ca79b412294b37c473c6a30515425c845f0273ab651
60 Risk Score

Malware Insights

Win.Trojan.Laroux-42 · confidence 95%

MITRE ATT&CK
T1566.002 Spearphishing Attachment

The file is detected as Win.Trojan.Laroux-42, a known malware family. Static analysis revealed an embedded URL within the document, suggesting a delivery mechanism for a malicious payload. The document content itself appears to be a fabricated status report, a common social engineering tactic to entice users to open and interact with malicious files.

Heuristics 1

  • ClamAV: Win.Trojan.Laroux-42 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Laroux-42

Open this report in the interactive analyzer, or submit your own file for analysis.