THL EvilSoul-Engine DNS Query for evilsoul.cc or evilsoul.xyz Backend

SID: 3500011Rev: 1Enabled2 views
History
Filehunters-ledger.rules
CreatedJuly 5, 2026
UpdatedJuly 5, 2026
Classificationtrojan-activity
alert dns $HOME_NET any -> any any (msg:"THL EvilSoul-Engine DNS Query for evilsoul.cc or evilsoul.xyz Backend"; dns_query; content:"evilsoul."; nocase; threshold:type limit,track by_src,count 1,seconds 3600; classtype:trojan-activity; sid:3500011; rev:1; metadata:author The_Hunters_Ledger, date 2026-07-03, reference https://the-hunters-ledger.com/hunting-detections/evilsoul-engine-stealer-maas-detections/;)

Metadata

authorThe_Hunters_Ledger
date2026-07-03
referencehttps://the-hunters-ledger.com/hunting-detections/evilsoul-engine-stealer-maas-detections/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!