# Copyright (c) 2014-2025 Maltrail developers (https://github.com/stamparm/maltrail/)
# See the file 'LICENSE' for copying permission

# Aliases: apt-q-27, dragon breath, golden eye dog

# Reference: https://news.sophos.com/en-us/2023/05/03/doubled-dll-sideloading-dragon-breath/
# Reference: https://github.com/sophoslabs/IoCs/blob/master/double-dragon-breath-iocs.csv

http://206.233.128.103
206.233.128.103:443
nsjdhmdjs.com
potatouu.com
123.nsjdhmdjs.com
2.nsjdhmdjs.com
2.potatouu.com
a.pic447.com
ac2.nsjdhmdjs.com
d.pic447.com
l.pic447.com
l2.pic447.com
t.pic447.com
v.pic447.com
v2.pic447.com
w.pic447.com
