Recent IcedID (Bokbot) activity
released on 2023-04-12 @ 01:24:20 PM
IcedID (Bokbot) was distributed through thread-hijacked emails with PDF attachments. The PDF files have links that redirect to Google Firebase Storage URLs hosting password-protected zip archives.