SSLBL: Malicious SSL certificate detected (ACRStealer C&C)

SID: 903209181Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedMarch 10, 2026
UpdatedMarch 10, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"7c:a7:48:d4:2c:a7:14:a0:01:7f:17:6d:d9:42:ae:77:73:9b:34:be"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/7ca748d42ca714a0017f176dd942ae77739b34be/; sid:903209181; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/7ca748d42ca714a0017f176dd942ae77739b34be/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!