SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)

SID: 903206179Rev: 10 views
History
Sourceabuse.ch/sslbl-blacklist
CreatedJune 25, 2025
UpdatedJune 25, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)"; tls_cert_fingerprint; content:"04:20:7f:e1:d5:aa:e7:9f:92:e5:e1:3c:c9:12:6d:ca:53:0c:75:27"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/04207fe1d5aae79f92e5e13cc9126dca530c7527/; sid:903206179; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/04207fe1d5aae79f92e5e13cc9126dca530c7527/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!