SSLBL: Malicious SSL certificate detected (Guildma C&C)

SID: 903208668Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedDecember 30, 2025
UpdatedDecember 30, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Guildma C&C)"; tls_cert_fingerprint; content:"ad:6e:2e:21:ac:68:c7:2c:8c:70:2a:51:c4:a6:57:82:77:c1:5c:0c"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/ad6e2e21ac68c72c8c702a51c4a6578277c15c0c/; sid:903208668; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/ad6e2e21ac68c72c8c702a51c4a6578277c15c0c/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!