Phoenix
Sigma Intelligence
Beta
Home
Detections
Rules
Emerging
Authors
MITRE
KB
Convert
Analytics
Coverage
Field Explorer
Testing
Ecosystem
Releases
About
Team
Philosophy
Search Rules
Rule Library
Sigma Rules
1 rule found for "DPRK"
3,731
Total
3,132
Detection
457
Emerging
139
Hunting
Filters
Emerging Threat
high
test
DPRK Threat Actor - C2 Communication DNS Indicators
Detects DNS queries for C2 domains used by DPRK Threat actors.
Windows
DNS Query
Nasreddine Bencherchali (Nextron Systems)
Tue Feb 20
2024