SSLBL: Malicious SSL certificate detected (QuirkyLoader C&C)

SID: 903208580Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedDecember 12, 2025
UpdatedDecember 12, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (QuirkyLoader C&C)"; tls_cert_fingerprint; content:"d2:90:f2:6e:5a:f2:9e:87:03:44:18:cf:d5:b1:00:d7:d2:fe:ad:9d"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/d290f26e5af29e87034418cfd5b100d7d2fead9d/; sid:903208580; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/d290f26e5af29e87034418cfd5b100d7d2fead9d/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!