IcedID - A New Threat In Office Attachments

IcedID infiltrates via an Excel Macro

IcedID is somewhat of a veteran in the MaaS industry, being actively developed and distributed since 2017. The malware-as-a-service, also called Bokbot, has been in extensive use in the last couple of months by malspam distributors. Its latest version is delivered using a malicious Microsoft office attachment, which eventually drops and executes the IcedID payload.

Article Link: