SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)

SID: 903207451Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedSeptember 15, 2025
UpdatedSeptember 15, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)"; tls_cert_fingerprint; content:"80:9e:bc:29:e3:e9:38:c5:ed:e7:1c:6a:e4:63:aa:46:29:78:f2:37"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/809ebc29e3e938c5ede71c6ae463aa462978f237/; sid:903207451; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/809ebc29e3e938c5ede71c6ae463aa462978f237/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!