SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903208693Rev: 11 views
Sourcesslbl/ssl-fp-blacklist
CreatedJanuary 7, 2026
UpdatedJanuary 7, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"04:a0:bb:42:24:a4:37:e8:fb:5d:0f:73:63:94:47:0d:37:c7:bb:d1"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/04a0bb4224a437e8fb5d0f736394470d37c7bbd1/; sid:903208693; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/04a0bb4224a437e8fb5d0f736394470d37c7bbd1/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!