Malicious Office (OLE) / .DOC — malware analysis report

Static analysis result for SHA-256 fb0a3be2c6569252…

MALICIOUS

Office (OLE) / .DOC

203.5 KB Created: 2010-04-14 14:45:00 Authoring application: Microsoft Office Word
MD5: 955773debc3cefc92026da199bd8dbc1 SHA-1: d95e94674ace48628663e9d5c21b607e54183d68 SHA-256: fb0a3be2c656925280f6bbf36851b1147c4da87c8bd6e16f4ba11f73f66b44bb
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file was detected as Win.Trojan.Trafox-3 by ClamAV. The document body indicates it is a Word document, and the embedded URL, though benign, is present. The attack pattern is inferred from the ClamAV detection and the nature of the document, suggesting a lure to execute malicious content.

Heuristics 2

  • ClamAV: Win.Trojan.Trafox-3 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Trafox-3
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://schemas.openxmlformats.org/drawingml/2006/main

Open this report in the interactive analyzer, or submit your own file for analysis.