Hacker Download OneNoteGem.com's Template .one File to Confuse and Conceal the Next Malicious Moves

Home
Addins
Buy
Documents
FAQs
Templates
Support
Release
WordNote

Hacker Download OneNoteGem.com's Template .one File to Confuse and Conceal the Next Malicious Moves

The hacker's code downloads a normal template file from OneNoteGem.com https://onenotegem.com/uploads/soft/one-templates/four-quadrant.one.

Used to confuse the user and hide his next action: downloading an executable bat file. https://transfer.sh/Hzjb6F/tn.bat

tn.bat is the malicious code that hackers want to execute.

Download normal template file from onenotegem.com just for obfuscation and covert the next actions.