Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 fb31b2bd6e325021…

MALICIOUS

Office (OLE)

481.0 KB Created: 1998-04-03 08:32:00 Authoring application: Microsoft Word for Windows 95
MD5: 087a54b74265b13c16d09fe11af1f83f SHA-1: 5ccd180e5026cbc6d96483733d885bd6b81af3b6 SHA-256: fb31b2bd6e3250215501ca6e76510a11468cb1c77833dde3c5eacd6c9d59f4f6
60 Risk Score

Malware Insights

MITRE ATT&CK
T1204.002 Malicious File

The file is an OLE document created with Microsoft Word for Windows 95, a version known to be vulnerable to various exploits. The CLAMAV_DETECTION heuristic firing for 'Win.Trojan.Tm-1' strongly suggests malicious intent. The document body contains unusual strings and control characters, potentially related to exploit code or obfuscation, but no clear user-facing lure was extracted. The lack of specific script content or URLs makes detailed analysis of the payload difficult.

Heuristics 1

  • ClamAV: Win.Trojan.Tm-1 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Win.Trojan.Tm-1

Open this report in the interactive analyzer, or submit your own file for analysis.