SSLBL: Malicious SSL certificate detected (ACRStealer C&C)

SID: 903209244Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedMarch 17, 2026
UpdatedMarch 17, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)"; tls_cert_fingerprint; content:"09:5c:0d:f2:66:f4:b6:c1:15:b6:57:42:0a:c5:3e:70:1e:71:8a:36"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/095c0df266f4b6c115b657420ac53e701e718a36/; sid:903209244; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/095c0df266f4b6c115b657420ac53e701e718a36/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!