Prevent

using DNS-specific steps, make it less likely incidents of this type will occur in the future.

Services: Knowledge transfer (including to internal IT teams); Vulnerability Response;

also relates to detection (possibly updating the signatures and detection rules) and recovery (during recovery, should the system be reconfigured to prevent recurrence).

Note that broad anti-malware prevention is out of scope. Of course everyone should do the broad anti-malware practices, see for example Best Practices | M3AAWG.