SSLBL: Malicious SSL certificate detected (LummaStealer C&C)

SID: 903209354Rev: 10 views
Sourceabuse.ch/sslbl-blacklist
CreatedMarch 25, 2026
UpdatedMarch 25, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (LummaStealer C&C)"; tls_cert_fingerprint; content:"f0:5a:28:76:d9:12:9e:c0:57:ec:ae:df:ac:9c:c3:7e:be:21:38:ad"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/f05a2876d9129ec057ecaedfac9cc37ebe2138ad/; sid:903209354; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/f05a2876d9129ec057ecaedfac9cc37ebe2138ad/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!