Versions (2)
Version DetailsCurrent
Rev: 2 • Mar 4, 2022, 12:00 PM🐾 - ⚠ DNS Request 🌐 - qaz.im - File Sharing solution 🗃 - Possible Leak 🚱 - seen in 🔒 Conti Ransomware Leak
alert dns any any -> any any (msg:"🐾 - ⚠ DNS Request 🌐 - qaz.im - File Sharing solution 🗃 - Possible Leak 🚱 - seen in 🔒 Conti Ransomware Leak"; flow:to_server, stateless; dns_query; content:"qaz.im"; nocase; pcre:"/(^|\.)qaz\.im$/"; metadata:created_at 2022_03_04, updated_at 2025_09_16; sid:3300474; rev:2; classtype:bad-unknown;)
Mar 4, 2022, 12:00 PM
Sep 16, 2025, 12:00 PM
Feb 21, 2024, 4:00 PM
Sep 16, 2025, 8:34 PM
rules/PAW-PATRULES_LEAKS.rules