Rule Info
Name
DNS Query for Ufile.io Upload Domain - DNS Client
Description
Detects DNS queries to "ufile.io". Which is often abused by malware for upload and exfiltration
Modified
None
Date
2023-01-16 00:00:00
Author
Nasreddine Bencherchali (Nextron Systems)
Tags
attack.exfiltration DEMO attack.t1567.002
Id
090ffaad-c01a-4879-850c-6d57da98452d
Type
Community Rule
Link to Public Repo
Scan your endpoints, forensic images or collected files with our portable scanner THOR