ARTifacts/Initial_Access/Zipped_Malware.md

# Zipped Malware

A common method actors use to deliver is through zip attachments in email.

## ZIP + VBS Example

Take the following [qbot chain reaction](https://github.com/redcanaryco/atomic-red-team/blob/master/ARTifacts/Chain_Reactions/qbot_infection_reaction.vbs) and compress (zip) the vbs file to be used for delivery.

Simulate other file types by zipping and deliver to the receiving device.
Initial Access - Atomic Friday July 2019 (#530 ) 2019-08-28 12:38:26 -06:00			`# Zipped Malware`

			`A common method actors use to deliver is through zip attachments in email.`

			`## ZIP + VBS Example`

			`Take the following [qbot chain reaction](https://github.com/redcanaryco/atomic-red-team/blob/master/ARTifacts/Chain_Reactions/qbot_infection_reaction.vbs) and compress (zip) the vbs file to be used for delivery.`

			`Simulate other file types by zipping and deliver to the receiving device.`