SSLBL: Malicious SSL certificate detected (Vidar C&C)

SID: 903209487Rev: 10 views
Sourcesslbl/ssl-fp-blacklist
CreatedApril 9, 2026
UpdatedApril 9, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Vidar C&C)"; tls_cert_fingerprint; content:"04:7f:23:f9:ad:2e:da:a5:e3:4a:e6:60:ac:30:cd:4e:c5:97:5e:18"; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/047f23f9ad2edaa5e34ae660ac30cd4ec5975e18/; sid:903209487; rev:1;)

References

urlsslbl.abuse.ch/ssl-certificates/sha1/047f23f9ad2edaa5e34ae660ac30cd4ec5975e18/

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!