Hey I’m doing research on steganography and have read a lot about it. I’ve seen some examples of steganography bring used in the wild. But can’t find a reason why it’s being used in some cases.

For example there is an attack in which the attacker uses a PowerShell script from a vba macro in a excel doc, which downloads an image which has more malious code, which is run after the 1st PS script is done decoding it.

My question is why use steganography when they could have just used one PowerShell script with the doc macro?

For the victim to have a harder time to detect the attack?

Share This Discussion

1 Comment

  • Several-Listen7915

    November 23, 2021

    The answer was in the link on this post, it evades detection tools.

    Reply

Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.