SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)
Sourceabuse.ch/sslbl-blacklist
Filesslblacklist_tls_cert.rules
CreatedSeptember 15, 2025
UpdatedSeptember 15, 2025
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (Rhadamanthys C&C)" ; tls_cert_fingerprint; content:"e4:71:e9:b8:80:b4:3f:d5:c9:c4:78:68:22:95:30:87:85:88:90:60" ; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/e471e9b880b43fd5c9c478682295308785889060/ ; sid:903207598; rev:1;)
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!