SSLBL: Malicious SSL certificate detected (CobaltStrike C&C)

SID: 903209153Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedMarch 7, 2026
UpdatedMarch 7, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (CobaltStrike C&C)"; tls_cert_fingerprint; content:"14:61:aa:5a:32:45:04:80:0a:52:ab:2f:49:b0:81:ce:fe:96:7e:17"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/1461aa5a324504800a52ab2f49b081cefe967e17/; sid:903209153; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/1461aa5a324504800a52ab2f49b081cefe967e17/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!