SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)

SID: 903207423Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedSeptember 15, 2025
UpdatedSeptember 15, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)"; tls_cert_fingerprint; content:"7a:80:b3:58:c8:12:e3:96:a7:0e:a0:35:87:71:12:e4:af:0b:30:da"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/7a80b358c812e396a70ea035877112e4af0b30da/; sid:903207423; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/7a80b358c812e396a70ea035877112e4af0b30da/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!