all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How Threat Actors Use OneNote to Deploy ASyncRAT

Add to bookmarks
Feb. 1, 2023, 3:01 p.m. | Roza Maille

TrustedSec www.trustedsec.com

See how Research Team Lead Carlos Perez dissects a sample of a OneNote document that was used to deploy ASyncRAT, an open-source remote admin tool, to enable phishing attacks. You’ll find out how these OneNote files are now being used by threat actors and where to find the location that ASyncRAT is being downloaded and...


The post How Threat Actors Use OneNote to Deploy ASyncRAT appeared first on TrustedSec.

asyncrat attacks document enable files find incident response incident response & forensics location malware analysis office 365 security assessment onenote phishing phishing attacks remote admin tool research team threat threat actors threat hunting tool trustedsec

Visit resource

More from www.trustedsec.com / TrustedSec

Missing: Data Classification 3 days, 3 hours ago | www.trustedsec.com
classification data data classification growth +7
Assumed Breach: The Evolution of Offensive Security Testing 1 week, 3 days ago | www.trustedsec.com
assumed breach breach client evolution +11
JS-Tap Mark II: Now with C2 Shenanigans 2 weeks, 3 days ago | www.trustedsec.com
applications attack capabilities collection +14
Introducing Meta-Detector 2 weeks, 5 days ago | www.trustedsec.com
blog blog post call collecting +12
Most Reported Web Findings of 2023 3 weeks, 3 days ago | www.trustedsec.com
api application assessments findings +8
XZ Utils Made Me Paranoid 4 weeks, 2 days ago | www.trustedsec.com
backdoor backdoors identify march +3
The Midnight Alert: Navigating the Dark Web Data Dilemma 1 month ago | www.trustedsec.com
alert chief chief information security officer ciso +19
Full Disclosure: A Look at a Recently Patched Microsoft Graph Logging Bypass - GraphNinja 1 month ago | www.trustedsec.com
attackers attacks azure bypass +14
Loading DLLs Reflections 1 month, 1 week ago | www.trustedsec.com
back dll hollowing malware +4

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com