Daemon-Byte Hi, An email from my children’s kindergarten heavily scored as spam so it got outright quarantined. When I looked at why it was nearly all because of a status “OLEFY_MACRO” which gave it -20. But I can’t find any information on the net that will tell me what this status means let alone what triggered it on this mail. Does anyone know of a good source of information I can read about it? Is it due to the word document that was attached? I know oletools is related to microsoft files
Daemon-Byte diekuh It was a word document (.docx). As for the olefy logs, I’m not exactly sure. When I did a docker-compose logs for olefy I got lots of things and since there’s no date or seemingly any information to tie the error back to the message in general I don’t know which error goes with this email. olefy.txt32kB
diekuh There is no correct/matching log line. It probably has a macro. Do not send macros! 🙂 You should not even accept them from anyone.