DNS Query for Ufile.io Upload Domain - DNS Client

Rule Info

Name
DNS Query for Ufile.io Upload Domain - DNS Client
Description
Detects DNS queries to "ufile.io". Which is often abused by malware for upload and exfiltration
Modified
None
Date
2023-01-16 00:00:00
Author
Nasreddine Bencherchali (Nextron Systems)
Tags
attack.exfiltration DEMO attack.t1567.002
Id
090ffaad-c01a-4879-850c-6d57da98452d
Type
Community Rule

Rule History

Author
Commit
Title
Date
Nasreddine Bencherchali
chore: add nextron authors tag
2023-02-01
Nasreddine Bencherchali
fix: broken logsource
2023-01-17
Nasreddine Bencherchali
feat: new rules and updates
2023-01-17