SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903208905Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedFebruary 9, 2026
UpdatedFebruary 9, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"d1:2d:ac:aa:c4:98:4d:29:ac:31:7f:8b:c0:26:df:b1:18:7e:8a:a0"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/d12dacaac4984d29ac317f8bc026dfb1187e8aa0/; sid:903208905; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/d12dacaac4984d29ac317f8bc026dfb1187e8aa0/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!