IcedID
July 4, 2025 ∘ 12 days ago
Bank Trojan
Trojan
Loader
IcedID (also known as BokBot) is a modular banking Trojan for stealing login credentials to financial services.
In addition, it can be used as a loader for delivering other malicious software and additional functional modules to a unified computer system.
To deliver the main functional module, it uses the principles of steganography, masking the program code in malicious PNG images.
It was first identified in 2017.
Aggression
Activity dynamics
Malicious infrastructure growth dynamics
Malicious infrastructure rose
Extensions of captured samples