ee known vulnerabilities in Microsoft Office, which we discuss in the Infection Techniques section. Upon execution in a vulnerable environment, the PowerShell based payload takes over. 3: The PowerShell script is responsible for downloading the final payload from C2 server to execute it. • Conlclusion: Th