IcedID is a very complex, and there is no doubt the threat actors behind this are very much capable with constant updates to their arsenal, the researchers say. “This can trick security and detection systems, if you are not looking at msiexec,” the report notes. “IcedID” is capable of extracting passwords stored in browsers and mail applications, collecting system information, uploading a file to the command-and-control server as well executing shellcode from the server.”]
Source: https://www.cuinfosecurity.com/revamped-icedid-banking-trojan-campaign-uses-covid-19-lure-a-14489