Loader

Latrodectus

First seen: 2023-11 • Status: active

Currently Active Threat

Latrodectus is the new version of IcedID malware. When IcedID went quiet, the same criminals made Latrodectus.

Overview

Latrodectus emerged as a successor to IcedID after that malware went quiet. It shares developers with IcedID.

Also Known As

IceNova

How It Spreads

  • Malspam
  • Reply-chain hijacking

What It Does

  • Loader capabilities
  • Initial access

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Monitor for IcedID successor indicators

MITRE ATT&CK Techniques

T1566, T1105

If You're Infected

  1. 1.

    Check for ransomware deployment

Related Malware

Icedid

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices