SSLBL: Malicious SSL certificate detected (LummaStealer C&C)

SID: 903209434Rev: 10 views

Sourceabuse.ch/sslbl-blacklist

CreatedApril 6, 2026

UpdatedApril 6, 2026

alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (LummaStealer C&C)"; tls_cert_fingerprint; content:"f5:8f:fe:74:84:65:3b:53:ce:a5:39:b2:3d:a2:5b:c8:ee:eb:2c:05"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/f58ffe7484653b53cea539b23da25bc8eeeb2c05/; sid:903209434; rev:1;)

References

url	sslbl.abuse.ch/ssl-certificates/sha1/f58ffe7484653b53cea539b23da25bc8eeeb2c05/

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!