SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903209150Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedMarch 7, 2026
UpdatedMarch 7, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"09:52:ff:0e:05:2e:4f:42:de:54:97:39:e1:3c:bd:43:c0:fd:19:aa"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/0952ff0e052e4f42de549739e13cbd43c0fd19aa/; sid:903209150; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/0952ff0e052e4f42de549739e13cbd43c0fd19aa/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!