HUNTERS_LEDGER Inkognito Brand Portfolio DNS Query - Suricata Rule 1900068 (hunters-ledger) - EveBox Rules

HUNTERS_LEDGER Inkognito Brand Portfolio DNS Query

SID: 1900068Rev: 1Enabled2 views

Sourcehunters-ledger

Filehunters-ledger.rules

CreatedJune 25, 2026

UpdatedJune 25, 2026

Classificationtrojan-activity

alert dns $HOME_NET any -> any any (msg:"HUNTERS_LEDGER Inkognito Brand Portfolio DNS Query"; dns.query; pcre:"/(inkconnect\.ru|inklens\.(ru|co\.uk)|bikaf\.ru|unloki\.ru|bigass\.monster|vetcorbeanca\.eu|vagtec\.eu|petkovalegal\.eu|akredup\.ru|divar-irantop\.shop|catnpv\.xyz|evotoptan\.com|cryptone\.bot|00000xtrading\.ru)$/i"; reference:url,the-hunters-ledger.com/reports/opendirectory-79-137-192-3-20260515/; classtype:trojan-activity; sid:1900068; rev:1;)

References

url	the-hunters-ledger.com/reports/opendirectory-79-137-192-3-20260515/

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!