SSLBL: Malicious SSL certificate detected (ACRStealer C&C)

SID: 903209116Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedMarch 4, 2026
UpdatedMarch 4, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"26:cd:bb:d6:a4:fb:b7:07:f7:97:5e:40:ad:d9:29:3e:e8:6b:57:09"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/26cdbbd6a4fbb707f7975e40add9293ee86b5709/; sid:903209116; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/26cdbbd6a4fbb707f7975e40add9293ee86b5709/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!