← Back to Explore
T1137.005
Outlook Rules
Adversaries may abuse Microsoft Outlook rules to obtain persistence on a compromised system. Outlook rules allow a user to define automated behavior to manage email messages. A benign rule might, for example, automatically move an email to a particular folder in Outlook if it contains specific words from a specific sender. Malicious Outlook rules can be created that can trigger code execution when an adversary sends a specifically crafted email to that user.(Citation: SilentBreak Outlook Rules) ...
WindowsOffice Suite
1
Detections
1
Sources
0
Threat Actors
BY SOURCE
1elastic
PROCEDURES (1)
Script Execution Monitoring1 detections
Auto-extracted: 1 detections for script execution monitoring