Deep CDR™ Technology Support for MS Office Files
OPSWAT Deep Content Disarm and Reconstruction (Deep CDR™ Technology) is an advanced threat prevention technology defeating any file-based attacks used for Advanced Persistent Threats (APT’s), Ransomware, Zero-day attacks, etc. It sanitizes and reconstructs over 200+ file types, ensuring each file is completely usable with safe content. Supported file types include PDF, Microsoft Office, HTML, and many image files. Language/region specific file formats like JTD and HWP files are also supported.
Highlighted malicious MS Office files neutralized by Deep CDR™ Technology
| File Type | Deep CDR™ Technology Feature | Threat Detected | Reference Sample |
|---|---|---|---|
| RTF | Remove Suspicious Node | CVE-2025-21298 | View |
| PPTX | Remove binary data | CVE-2017-8570 | View |
| PPTX | Remove OLE, sanitize XML content | CVE-2017-11882 | View |
| PPTX | Sanitize image | Malware.JS/Agent.UO.1 | View |
| PPTX | Sanitize image | Malware.JS/Giframe.AZ | View |
| PPTX | Sanitize image | JPG:PHPAgent-A | View |
| PPTX | Recursively sanitize embedded XLSM file | Virus:X97M/Mailcab.A | View |
| PPTX | Sanitize image | Malware.JS/iFrame.JPG.A.1 | View |
| PPTX | Remove OLE | Exploit.OLE-JAR.Gen.1 | View |
| PPTM | Remove macro | Troj/DocDl-JWU | View |
| PPTM | Remove hyperlink | HTML/IFRAME.gen | View |
| PPSX | Remove OLE, remove ActiveX, sanitize image | CVE-2017-8759 | View |
| SLDX | Sanitize image | RDN/Generic Exploit | View |
| SLDX | Remove embedded object | Trojan.LNK.Gen | View |
| SLDX | Remove OLE, Sanitize XML content | CVE-2017-11882 | View |
| SLDX | Remove OLE | Exploit.OLE-JAR.Gen.1 | View |
| SLDX | Sanitize image | Backdoor:PHP/Agent | View |
| SLDM | Sanitize image | Trojan-downloader.msoffice.agent | View |
| SLDM | Remove macro | Virus.Office.qexvmc | View |
| SLDM | Remove macro | Troj/DocDl-JWU (VB.PwShell.2.Gen) | View |
| XLS | Remove macro | MW97:Laroux-E | View |
| XLS | Remove macro | Virus/MSExcel.Fireal | View |
| XLS | Remove macro | X97M/DIVI.A | View |
| XLS | Remove macro | Virus/MSExcel.PTH | View |
| XLS | Remove macro | O97M.Tristate.C | View |
| XLS | Remove macro | XF/NetSnak.A | View |
| XLS | Remove external content, remove macro | XF/Sic | View |
| XLS | Remove macro | VBA.Trojan-Downloader.Agent | View |
| XLSX | Remove OLE, sanitize XML content | CVE-2017-11882 | View |
| XLSX | Remove OLE, remove external sheet | CVE-2017-8570 | View |
| XLSM | Remove macro | Troj/DocDl-QXQ | View |
| DOC | Remove macro | Troj/DocDl-NNN | View |
| DOC | File reconstruction | Trojan.VB.Valyria | View |
| DOC | Remove metadata, file reconstruction | Virus.Win32.Renamer.f | View |
| DOC | File reconstruction, remove metadata | Win.Trojan.PowerShell-8 | View |
| DOCX | Remove OLE, sanitize image, sanitize XML content | Troj/DocDrop-TM | View |
| DOCX | Remove OLE | CVE-2017-0199 | View |
| DOCX | Remove DDE | W97M/Macroless | View |
| DOCM | File reconstruction | JS/TrojanDownloader.Nemucod.CTT | View |
| DOCM | Remove OLE | Gen:Variant.Zusy.235023 | View |
| DOCM | Remove macro | VBA.Trojan-Downloader.Agent | View |
CYBERSECURITY ATTACKS ARE ON THE RISE
