Malicious Excel Delivery

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Content Index

Bazacall uses malicious Excel files to execute payloads on affected devices.

Attribute Value
Type Hunting Query
Solution GitHub Only
ID 6fa3cf44-517f-4ce5-8727-948b0783b507
Tactics Initial access
Required Connectors MicrosoftThreatProtection
Source [View on GitHub](https://github.com/Azure/Azure-Sentinel/blob/master/Hunting Queries/Microsoft%20365%20Defender/Campaigns/Bazacall/Malicious%20Excel%20Delivery.yaml)

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

Back to Hunting Queries