General
-
Target
Spectra-Injector.exe
-
Size
10.1MB
-
MD5
78dd7dbdc8055ab591e3d4b11bef671f
-
SHA1
405b2a97f3e0b5c5764de5319b8f478e56766ae0
-
SHA256
b24be7d2e714e4e9614015f2643e8d38dab373ce8d61189670f55588ff56a8ce
-
SHA512
0942c78b6c19b01c0dc37c02b03ae420da6b0fe3cdbb0a14796762a2071bfe43cbb96da69f075dc7d36ffb39f7940dc453ce8d4847d8ebf6a77a15ea92b3e86c
-
SSDEEP
196608:TKc2pwqBA1HeT39Iigw01ncKOVVt+v7w5x3nGLUnig+IjFnCMfjKn:+c2Fq1+TtIiFQ0VSDwP3nGLg9C8K
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Spectra-Injector.exe
Files
-
Spectra-Injector.exe.exe windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
UPX0 Size: - Virtual size: 240KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 116KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 52KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
main.pyc