Back to Resources

SentinelOne Detects and Mitigates a Word-based malware attack that doesn’t use a macro

On this video, you can see how SentinelOne agent, set with detect only mode, is capable of detecting a Word-based malware attack that doesn’t use a macro. This document has 2 embedded OLE objects, each contains JScript and runs cmd command that spawns Powershell and executes malware -~-
Watch Now