diff --git a/dns/ptr-fingerprint.yaml b/dns/ptr-fingerprint.yaml
index e562d62f1e2..6de14779436 100644
--- a/dns/ptr-fingerprint.yaml
+++ b/dns/ptr-fingerprint.yaml
@@ -22,6 +22,7 @@ dns:
           - "IN\tPTR\\t(.+)$"
 
     extractors:
-      - type: dsl
-        dsl:
-          - ptr
\ No newline at end of file
+      - type: regex
+        group: 1
+        regex:
+          - "IN\tPTR\t(.+)"
\ No newline at end of file