MalwareBazaar Database
This page shows some basic information the YARA rule SUSP_LNX_Base64_Exec_Apr24 including corresponding malware samples.
Database Entry
| YARA Rule: | SUSP_LNX_Base64_Exec_Apr24 |
|---|---|
| Author: | Christian Burkard |
| Description: | Detects suspicious base64 encoded shell commands (as seen in Palo Alto CVE-2024-3400 exploitation) |
| Firstseen: | 2025-06-07 10:07:15 UTC |
| Lastseen: | 2026-01-28 21:12:49 UTC |
| Sightings: | 6 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|