1 rule found for "Arda Buyukkaya (EclecticIQ)"
Detects the execution of the "curl.exe" command, referencing "SOCKS" and ".onion" domains, which could be indicative of Kalambur backdoor activity.