SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903208844Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedFebruary 5, 2026
UpdatedFebruary 5, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"e2:24:a0:e1:24:77:fa:d8:07:56:85:9e:96:bf:89:af:4a:f9:04:ef"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/e224a0e12477fad80756859e96bf89af4af904ef/; sid:903208844; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/e224a0e12477fad80756859e96bf89af4af904ef/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!