Interesting malware. It's probably a good idea to locally block their IoC domains [1] in the local DNS resolver. Probably won't help people using public DoH servers though.<p>[1] - <a href="https://github.com/Cisco-Talos/IOCs/tree/main/2023/05">https://github.com/Cisco-Talos/IOCs/tree/main/2023/05</a>