SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)
Sourceabuse.ch/sslbl-blacklist
Filesslblacklist_tls_cert.rules
CreatedFebruary 1, 2026
UpdatedFebruary 1, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (QuasarRAT C&C)" ; tls_cert_fingerprint; content:"43:6f:02:b3:a6:34:06:70:7f:64:67:d4:88:0a:69:1a:2a:3f:53:ea" ; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/436f02b3a63406707f6467d4880a691a2a3f53ea/ ; sid:903208812; rev:1;)
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!