This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.
An SSL certificate used in a malware-based command and control
infrastructure was detected on the remote host.
An SSL certificate associated with the group known as APT1 was
detected on the remote host. APT1's command and control
infrastructure uses several self-signed certificates to encrypt
communications in their command and control infrastructure. The
remote host appears to be using one of these certificates, which
indicates it may have been compromised.
See also :
Determine if the system has been compromised, restore from a set of
known good backups if necessary, and investigate your network for further
signs of a breach.
Risk factor :
Critical / CVSS Base Score : 10.0
Nessus Plugin ID: 64688 ()
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.