SSLBL: Malicious SSL certificate detected (ACRStealer C&C)

SID: 903209076Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedMarch 1, 2026
UpdatedMarch 1, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"6f:89:2a:b7:af:6b:9a:1f:f0:19:ea:78:a0:91:10:75:36:f0:0e:81"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/6f892ab7af6b9a1ff019ea78a091107536f00e81/; sid:903209076; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/6f892ab7af6b9a1ff019ea78a091107536f00e81/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!