A widespread email campaign using malicious Microsoft Excel attachments and Excel 4 macros is delivering IcedID at high volumes, suggesting it s filling the Emotet void. In the first three months of the year, Uptycs flagged more than 15,000 HTTP requests from more than 4,000 malicious documents. The malware has been circulating at increasing rates, thanks to a spate of email campaigns using Microsoft Excel spreadsheet file attachments and Microsoft Excel macros. Researchers say they were able to see similarities between all of the attacks, suggesting a coordinated campaign.
Source: https://threatpost.com/icedid-banking-trojan-surges-emotet/165314/