diff --git a/yara/domain.md b/yara/domain.md
new file mode 100644
index 0000000..936142c
--- /dev/null
+++ b/yara/domain.md
@@ -0,0 +1,147 @@
+```
+Value,Type,malware_families,kill_chains,severity,APT_group,Additional Info
+okinawas.ssl443.org,domain,"Plead",,,"BlackTech",
+office.panasocin.com,domain,"Plead",,,"BlackTech",
+amazon.panasocin.com,domain,"Plead",,,"BlackTech",
+update.centosupdates.com,domain,"Flagpro",,,"BlackTech",
+org.misecure.com,domain,"Flagpro",,,"BlackTech",
+apk36501.flnet.org,domain,"TsCookie",,,"BlackTech",
+gethappy.effers.com,domain,"TsCookie",,,"BlackTech",
+ntp.ukrootns1.com,domain,"TsCookie",,,"BlackTech",
+twnicsi.ignorelist.com,domain,"TsCookie",,,"BlackTech",
+jpcerts.jpcertinfo.com,domain,"TsCookie",,,"BlackTech",
+eoffice.etowns.org,domain,"TsCookie",,,"BlackTech",
+lang.suroot.com,domain,"TsCookie",,,"BlackTech",
+office.dns04.com,domain,"TsCookie",,,"BlackTech",
+jpcert.ignorelist.com,domain,"TsCookie",,,"BlackTech",
+epayplus.flnet.org,domain,"TsCookie",,,"BlackTech",
+lookatinfo.dnset.com,domain,"TsCookie",,,"BlackTech",
+longdays.csproject.org,domain,"TsCookie",,,"BlackTech",
+langlang.dnset.com,domain,"TsCookie",,,"BlackTech",
+appinfo.fairuse.org,domain,"TsCookie",,,"BlackTech",
+fatgirls.fatdiary.org,domain,"TsCookie",,,"BlackTech",
+carcolors.effers.com,domain,"TsCookie",,,"BlackTech",
+ktyguxs.dnset.com,domain,"TsCookie",,,"BlackTech",
+newtowns.flnet.org,domain,"TsCookie",,,"BlackTech",
+sslmaker.ssl443.org,domain,"TsCookie",,,"BlackTech",
+twcertcc.jumpingcrab.com,domain,"TsCookie",,,"BlackTech",
+iawntsilk.dnset.com,domain,"TsCookie",,,"BlackTech",
+edu.microsoftmse.com,domain,"TsCookie",,,"BlackTech",
+inewdays.csproject.org,domain,"TsCookie",,,"BlackTech",
+savecars.dnset.com,domain,"TsCookie",,,"BlackTech",
+splashed.effers.com,domain,"TsCookie",,,"BlackTech",
+ting.qpoe.com,domain,,,,"BlackTech",
+moutain.onmypc.org,domain,,,,"BlackTech",
+cust.compradecedines.com.ar,domain,,,,"BlackTech",
+cecs.ben-wan.com,domain,,,,"BlackTech",
+edit.ctotw.tw,domain,,,,"BlackTech",
+rio.onmypc.org,domain,,,,"BlackTech",
+techlawilo.effers.com,domain,,,,"BlackTech",
+moc.mrface.com,domain,,,,"BlackTech",
+every.b0ne.com,domain,,,,"BlackTech",
+usamovie.mylftv.com,domain,,,,"BlackTech",
+applestore.dnset.com,domain,,,,"BlackTech",
+fastnews.ezua.com,domain,,,,"BlackTech",
+accounts.fartit.com,domain,,,,"BlackTech",
+music.ftp.sh,domain,,,,"BlackTech",
+ikwb55.ikwb.com,domain,,,,"BlackTech",
+pcphoto.servehalflife.com,domain,,,,"BlackTech",
+festival.lflinkup.net,domain,,,,"BlackTech",
+kh7710103.qnoddns.org.cn,domain,,,,"BlackTech",
+soo.dtdns.net,domain,,,,"BlackTech",
+sysinfo.itemdb.com,domain,,,,"BlackTech",
+injure.ignorelist.com,domain,,,,"BlackTech",
+linenews.mypicure.info,domain,,,,"BlackTech",
+forums.happyforever.com,domain,,,,"BlackTech",
+showgirls.mooo.com,domain,,,,"BlackTech",
+dcns.chickenkiller.com,domain,,,,"BlackTech",
+xuite.myMom.info,domain,,,,"BlackTech",
+kukupy.chatnook.com,domain,,,,"BlackTech",
+support.bonbonkids.hk,domain,,,,"BlackTech",
+tabf.garrarufaworld.com,domain,,,,"BlackTech",
+hehagame.Got-Game.org,domain,,,,"BlackTech",
+newspaper.otzo.com,domain,,,,"BlackTech",
+greeting.hopewill.com,domain,,,,"BlackTech",
+picture.diohwm.com,domain,,,,"BlackTech",
+npa.dynamicdns.org.uk,domain,,,,"BlackTech",
+formosa.happyforever.com,domain,,,,"BlackTech",
+moea.crabdance.com,domain,,,,"BlackTech",
+subnotes.ignorelist.com,domain,,,,"BlackTech",
+forums.toythieves.com,domain,,,,"BlackTech",
+paperspot.wikaba.com,domain,,,,"BlackTech",
+firstme.mysecondarydns.com,domain,,,,"BlackTech",
+nspo.itaiwans.com,domain,,,,"BlackTech",
+asus.strangled.net,domain,,,,"BlackTech",
+freeonshop.x24hr.com,domain,,,,"BlackTech",
+mirdc.happyforever.com,domain,,,,"BlackTech",
+job.jobical.com,domain,,,,"BlackTech",
+hinet.homenet.org,domain,,,,"BlackTech",
+cypd.slyip.com,domain,,,,"BlackTech",
+picture.brogrammer.org,domain,,,,"BlackTech",
+17ublig.1dumb.com,domain,,,,"BlackTech",
+cert.dynet.com,domain,,,,"BlackTech",
+cwb.soportetechmdp.com.ar,domain,,,,"BlackTech",
+zing.youdontcare.com,domain,,,,"BlackTech",
+mozila.strangled.net,domain,,,,"BlackTech",
+tios.nsicscores.com,domain,,,,"BlackTech",
+setting.herbalsolo.com,domain,,,,"BlackTech",
+pictures.wasson.com,domain,,,,"BlackTech",
+jog.punked.us,domain,,,,"BlackTech",
+pictures.happyforever.com,domain,,,,"BlackTech",
+superapple.sendsmtp.com,domain,,,,"BlackTech",
+rdec.compress.to,domain,,,,"BlackTech",
+timehigh.ddns.info,domain,,,,"BlackTech",
+amazon.otzo.com,domain,,,,"BlackTech",
+teacher.yahoomit.com,domain,,,,"BlackTech",
+dream.wikaba.com,domain,,,,"BlackTech",
+webmail.24-7.ro,domain,,,,"BlackTech",
+av100.mynetav.net,domain,,,,"BlackTech",
+yahoo.zzux.com,domain,,,,"BlackTech",
+zip.zyns.com,domain,,,,"BlackTech",
+avira.justdied.com,domain,,,,"BlackTech",
+dwnic.crabdance.com,domain,,,,"BlackTech",
+africa.themafia.info,domain,,,,"BlackTech",
+wordhasword.darktech.org,domain,,,,"BlackTech",
+techlaw.linestw.com,domain,,,,"BlackTech",
+webey.sbfhome.net,domain,,,,"BlackTech",
+twcert.compress.to,domain,,,,"BlackTech",
+INetGIS.faceboktw.com,domain,,,,"BlackTech",
+idb.jamescyoung.com,domain,,,,"BlackTech",
+icst.compress.to,domain,,,,"BlackTech",
+needjustword.bbsindex.com,domain,,,,"BlackTech",
+blognews.onmypc.org,domain,,,,"BlackTech",
+su27.oCry.com,domain,,,,"BlackTech",
+dcns.soniceducation.com,domain,,,,"BlackTech",
+front.fartit.com,domain,,,,"BlackTech",
+sushow.xxuz.com,domain,,,,"BlackTech",
+motc.linestw.com,domain,,,,"BlackTech",
+facebook.itsaol.com,domain,,,,"BlackTech",
+tw.chatnook.com,domain,,,,"BlackTech",
+newpower.jkub.com,domain,,,,"BlackTech",
+boe.pixarworks.com,domain,,,,"BlackTech",
+docsedit.cleansite.us,domain,,,,"BlackTech",
+wendy.uberleet.com,domain,,,,"BlackTech",
+flog.pgp.com.mx,domain,,,,"BlackTech",
+zany.strangled.net,domain,,,,"BlackTech",
+microsfot.ikwb.com,domain,,,,"BlackTech",
+blognews.ezua.com,domain,,,,"BlackTech",
+beersale.servebeer.com,domain,,,,"BlackTech",
+ametoy.acmetoy.com,domain,,,,"BlackTech",
+effinfo.effers.com,domain,,,,"BlackTech",
+movieonline.redirectme.net,domain,,,,"BlackTech",
+tw.shop.tm,domain,,,,"BlackTech",
+asus0213.asuscomm.com,domain,,,,"BlackTech",
+furniture.home.kg,domain,,,,"BlackTech",
+dpp.edesizns.com,domain,,,,"BlackTech",
+home.mwbsys.org,domain,"TsCookie",,,"BlackTech",
+app.dynamicrosoft.com,domain,"TsCookie",,,"BlackTech",
+apple.wikaba.com,domain,"waterbear",,,"BlackTech",
+itaiwans.com,domain,"waterbear",,,"BlackTech",
+ntstore.hosthampster.com,domain,"waterbear",,,"BlackTech",
+asiainfo.hpcloudnews.com,domain,"waterbear",,,"BlackTech",
+loop.microsoftmse.com,domain,"waterbear",,,"BlackTech",
+microsoftmse.com,domain,"waterbear",,,"BlackTech",
+mx.msdtc.tw,domain,"waterbear",,,"BlackTech",
+naaakkk.wikaba.com,domain,"waterbear",,,"BlackTech",
+blog.mysecuritycamera.com,domain,"waterbear",,,"BlackTech",
+```
\ No newline at end of file