SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)
Sourcesslbl/ssl-fp-blacklist
CreatedApril 6, 2026
UpdatedApril 6, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)"; tls_cert_fingerprint; content:"15:8c:34:ec:24:ca:20:df:4c:dc:e6:f8:5d:49:5a:75:2d:1c:f4:46"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/158c34ec24ca20df4cdce6f85d495a752d1cf446/; sid:903209452; rev:1;)
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!