all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

How Threat Actors Use OneNote to Deploy ASyncRAT

Add to bookmarks
Feb. 1, 2023, 3:01 p.m. | Roza Maille

TrustedSec www.trustedsec.com

See how Research Team Lead Carlos Perez dissects a sample of a OneNote document that was used to deploy ASyncRAT, an open-source remote admin tool, to enable phishing attacks. You’ll find out how these OneNote files are now being used by threat actors and where to find the location that ASyncRAT is being downloaded and...


The post How Threat Actors Use OneNote to Deploy ASyncRAT appeared first on TrustedSec.

asyncrat attacks document enable files find incident response incident response & forensics location malware analysis office 365 security assessment onenote phishing phishing attacks remote admin tool research team threat threat actors threat hunting tool trustedsec

Visit resource

More from www.trustedsec.com / TrustedSec

PCI DSS Vulnerability Management: The Most Misunderstood Requirement – Part 2 2 days, 22 hours ago | www.trustedsec.com
dss identification management pci +6
PCI DSS Vulnerability Management: The Most Misunderstood Requirement – Part 1 1 week, 1 day ago | www.trustedsec.com
dss identification management pci +4
A Hitch-Hacker's Guide To DACL-Based Detections - The Addendum 1 week, 3 days ago | www.trustedsec.com
active directory attributes blog detections +7
Observations From Business Email Compromise (BEC) Attacks 2 weeks, 1 day ago | www.trustedsec.com
attacks bec business business email compromise +7
From Chaos to Clarity: Organizing Data With Structured Formats 3 weeks, 3 days ago | www.trustedsec.com
bonus chaos clarity data +6
Securing Sensitive Data: How Ransomware Challenges the Healthcare Industry 4 weeks, 1 day ago | www.trustedsec.com
attacks blog blog post can +15
From Error to Entry: Cracking the Code of Password-Spraying Tools 1 month ago | www.trustedsec.com
authors blog blog post code +11
Failure to Restrict URL Access: It’s Still a Thing 1 month ago | www.trustedsec.com
access application application security failure +6
Introducing PCI's New Self-Assessment Questionnaire 1 month, 1 week ago | www.trustedsec.com
april assessment dss pci +5

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Information Systems Security Officer (ISSO), Junior

@ Dark Wolf Solutions | Remote / Dark Wolf Locations
View on infosec-jobs.com

Cloud Security Engineer

@ ManTech | REMT - Remote Worker Location
View on infosec-jobs.com

SAP Security & GRC Consultant

@ NTT DATA | HYDERABAD, TG, IN
View on infosec-jobs.com

Security Engineer 2 - Adversary Simulation Operations

@ Datadog | New York City, USA
View on infosec-jobs.com
View more jobs