SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903208777Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedJanuary 30, 2026
UpdatedJanuary 30, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"ae:17:3d:c4:94:de:48:5d:f4:fa:d8:92:e3:86:6c:88:17:bd:a7:bb"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/ae173dc494de485df4fad892e3866c8817bda7bb/; sid:903208777; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/ae173dc494de485df4fad892e3866c8817bda7bb/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!