URL files and WebDAV used for IcedID (Bokbot) infection
released on 2023-02-24 @ 05:39:10 PM
IcedID (also known as Bokbot) is an information stealer/backdoor malware that can lead to other activity like Cobalt Strike and Virtual Network Computing (VNC) traffic. IcedID is often distributed through email, and we've also seen it delivered by fake software sites from Google ad traffic.