TrickBot: New Injects, New Host

What’s in the Name: Call it IcedID or TrickBot? Tell that to a security researcher (Arsh Arora in this case) and watch them RANT (Gar-note: today’s blog post is a guest blog from malware analyst, Arsh Arora…) Today’s post starts with an interesting link from Dawid Golak’s Medium post: “IcedID aka# Bokbot Analysis with Ghidra” which mentions that IcedID is dropping TrickBot.

Source: TrickBot: New Injects, New Host