SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)

SID: 903207813Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedSeptember 15, 2025
UpdatedSeptember 15, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)"; tls_cert_fingerprint; content:"55:87:a6:8a:00:2b:f4:db:78:28:df:9d:2b:ac:e0:cd:4b:34:23:14"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/5587a68a002bf4db7828df9d2bace0cd4b342314/; sid:903207813; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/5587a68a002bf4db7828df9d2bace0cd4b342314/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!