Hunting for Non-Traditional Initial Access Vectors: OneNote Notebooks and Malicious Shortcuts (.lnk)
In what’s looking like a new trend for 2023, we’re seeing a sharp increase in phishing attacks that are using new and non-traditional file types, including OneNote notebooks, ISO files, and malicious shortcuts (.lnk). This is a natural evolution since Microsoft’s decision last year to block macros in Office documents downloaded from the Internet. In this week’s Threat SnapShot, we’ll take a look at how attackers are weaponizing these file types, and discuss hunting and detection strategies you can use in your organization.
References:
-
-
SnapAttack Resources:
- - Threat: Trojanized OneNote
- - Detection: Suspicious Extracted File from
4 weeks ago 00:08:02 1
1 month ago 00:02:17 1
1 month ago 00:04:23 1
1 month ago 00:03:45 8
2 months ago 00:05:03 1
![Slipknot - Psychosocial [OFFICIAL VIDEO] [HD]](https://sun9-56.userapi.com/dUz4HeKmaHIMwSKlbdIQADqfpP0M4NTBnEVEYA/wARwtRDgu-Q.jpg)
2 months ago 00:15:09 1
2 months ago 00:00:00 1
2 months ago 00:03:58 1
2 months ago 01:37:08 143
2 months ago 00:02:06 1
2 months ago 00:09:59 1
![Братва и кольцо. Кладбищенский ужас (Гиви) [Gameplay part 2.5]](https://sun9-1.userapi.com/qj1ZPdWa-Yv_3Wq3NqzV917bDNB2QgMJgsIZsQ/C8I0eMA_TdE.jpg)
2 months ago 00:00:55 1
2 months ago 00:00:58 1
2 months ago 01:22:31 1
2 months ago 00:01:00 1
2 months ago 00:01:22 1
2 months ago 02:16:32 1
![spiral staircase - the perfect child [Full Album]](https://sun9-65.userapi.com/B1XeHTEA9hgAnOhLiHVMvSJKoTA9pj2lm4tVXQ/NweQPLpyfF4.jpg)
2 months ago 01:24:29 1
3 months ago 00:24:20 1
4 months ago 00:09:01 1
4 months ago 00:01:34 4
4 months ago 00:01:04 1
4 months ago 00:03:32 1
4 months ago 00:45:27 1
