From c6142b9168f3d55c1a7bc1a690d0a641760da5eb Mon Sep 17 00:00:00 2001
From: Lightning <154468000+LightningDev23@users.noreply.github.com>
Date: Tue, 12 Mar 2024 15:46:38 -0400
Subject: [PATCH] =?UTF-8?q?=F0=9F=9A=80=20Create=20IOK:=20polyhedra-AKXFtG?=
 =?UTF-8?q?GI.yml?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

IOK Detection for a wallet drainer relating to the Polyhedra $ZK Airdrop.
---
 indicators/polyhedra-AKXFtGGI.yml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 indicators/polyhedra-AKXFtGGI.yml

diff --git a/indicators/polyhedra-AKXFtGGI.yml b/indicators/polyhedra-AKXFtGGI.yml
new file mode 100644
index 0000000..d4c7a52
--- /dev/null
+++ b/indicators/polyhedra-AKXFtGGI.yml
@@ -0,0 +1,27 @@
+title: Polyhedra Airdrop AKXFtGGI
+description: Detects a wallet drainer relating to the Polyhedra $ZK Airdrop.
+
+references:
+    - https://urlscan.io/result/e511f859-b299-4923-8d05-c6847815bc36/
+    - https://urlscan.io/result/244b005c-6e67-4554-9660-e9714efced28/
+    - https://urlscan.io/result/6b42aaa3-1d06-4ff6-bfaa-b943a691d347/
+
+detection:
+
+  siteTitle:
+    html|contains: "Polyhedra $ZK Airdrop"
+
+  fileRequest:
+    requests|endswith: '/logo-AKXFtGGI.svg'
+
+  fileUsage:
+    html|contains: '/logo-AKXFtGGI.svg'
+  
+  walletConnect:
+    requests|contains: 'wallet-connect-v2.js'
+
+  condition: siteTitle or fileRequest or fileUsage and walletConnect
+
+tags:
+    - target.polyhedra
+    - cryptocurrency