SSLBL: Malicious SSL certificate detected (ACRStealer C&C)
Sourcesslbl/ssl-fp-blacklist
CreatedMarch 12, 2026
UpdatedMarch 12, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"de:88:5c:1d:12:76:14:95:30:e9:be:3d:8f:62:2e:53:30:c1:c4:c7"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/de885c1d1276149530e9be3d8f622e5330c1c4c7/; sid:903209198; rev:1;)
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!