PAY-CLICKONCEExecution

ClickOnce Application Phishing

.application files install + run signed .NET payloads — bypass several typical email filters that scan for .exe.

§ Where this technique fits

PAY-CLICKONCE is catalogued under the Execution tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.