VirusTotal Malware Trends Report: Emerging Formats and Delivery Techniques

This report analyzes 2023 trends in malware delivery, showing increased use of OneNote files (embedding scripts that launch payloads) and ISO images (including zero-byte inflated executables and disguised DLLs) by crimeware and APT actors; it enumerates active families (QakBot, Emotet, BumbleBee, ChromeLoader, RemcosRAT, AsyncRAT), describes common kill-chains and detection-evasion techniques, and recommends monitoring these formats and related logs to improve detection.