Hi @mmufa 

You might find some helpful examples in the community-contributed YARA-L rules on GitHub. https://github.com/chronicle/detection-rules.  Look for rules that detect cryptomining and examine how they access threat intelligence data. 

@ErikaB Thanks Erica i have gone through this not much helpful need specific  threat feed name related to cryptomining domains

@Mufa_shah navigate to IoC Collections:
https://www.virustotal.com/gui/threat-landscape/ioc-collections
...and then search for "cryptomining"