SSLBL: Malicious SSL certificate detected (ACRStealer C&C)
Sourceabuse.ch/sslbl-blacklist
Filesslblacklist_tls_cert.rules
CreatedJune 10, 2026
UpdatedJune 10, 2026
alert tls $EXTERNAL_NET any -> $HOME_NET any (msg:"SSLBL: Malicious SSL certificate detected (ACRStealer C&C)" ; tls_cert_fingerprint; content:"86:a5:a8:ff:90:52:1b:e0:54:6e:61:84:77:f4:15:ef:72:9b:f1:39" ; reference:url, sslbl.abuse.ch/ssl-certificates/sha1/86a5a8ff90521be0546e618477f415ef729bf139/ ; sid:903209875; rev:1;)
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!