Feed NameDescription
autorun-
registryRegistry entry data derived from querying
registry changes known for persistencebanking-
dnsBanking Trojan network communicationsdga-dns DGA domains with pseudo-randomly generated
namesdll-
hijacking- dns
Domains communicated to by samples
leveraging DLL sideloading and hijacking
techniquesdoc-net-
com-dnsDocument (PDF, Office) network
communicationsdownloa
ded- pe-
dnsSamples downloading executables network
communicationsdynamic-
dnsSamples leveraging dynamic DNS providersirc-dns Internet Relay Chat (IRC) network
communicationsmodified
-hosts-
dnsModified Windows hosts file network
communicationsparked-
dnsParked domains resolving to RFC 1918 localhost
and broadcast addressespublic-
ip-check-
dnsPublic IP address network communicationsransomw
are-dnsSamples communicating with ransomware
servers