SSLBL: Malicious SSL certificate detected (ACRStealer C&C)

SID: 903209165Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedMarch 8, 2026
UpdatedMarch 8, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"e2:a5:b8:20:d4:63:b6:05:09:0d:3d:83:3d:12:25:2a:22:cd:45:10"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/e2a5b820d463b605090d3d833d12252a22cd4510/; sid:903209165; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/e2a5b820d463b605090d3d833d12252a22cd4510/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!