MalwareBazaar Database
This page shows some basic information the YARA rule SUSP_Double_Base64_Encoded_Executable_RID34CC including corresponding malware samples.
Database Entry
| YARA Rule: | SUSP_Double_Base64_Encoded_Executable_RID34CC |
|---|---|
| Author: | Florian Roth |
| Description: | Detects an executable that has been encoded with base64 twice |
| Firstseen: | 2021-09-20 06:09:19 UTC |
| Lastseen: | 2025-12-16 14:46:17 UTC |
| Sightings: | 337 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|