IOK Rules: threat_actor_country.china

Detects a family of crypto drainers that utilises a similarly structured landing page.