THL EvilSoul-Engine DNS Query for evilsoul.cc or evilsoul.xyz Backend
Sourcehunters-ledger
Filehunters-ledger.rules
CreatedJuly 5, 2026
UpdatedJuly 5, 2026
Classificationtrojan-activity
alert dns $HOME_NET any -> any any (msg:"THL EvilSoul-Engine DNS Query for evilsoul.cc or evilsoul.xyz Backend"; dns_query; content:"evilsoul."; nocase; threshold:type limit,track by_src,count 1,seconds 3600 ; classtype:trojan-activity; sid:3500011; rev:1; metadata:author The_Hunters_Ledger, date 2026-07-03, reference https://the-hunters-ledger.com/hunting-detections/evilsoul-engine-stealer-maas-detections/ ;)
Metadata
authorThe_Hunters_Ledger
date2026-07-03
referencehttps://the-hunters-ledger.com/hunting-detections/evilsoul-engine-stealer-maas-detections/
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!