LightSpoofer[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

LightSpoofer.exe
Size

7KB
MD5

2d880fc5d42c33094e8623ee4777c66a
SHA1

fa2d08f85b03b59d7de84bd8c0d7920973c0c338
SHA256

932598b887eb4b13cb5d0334e32aa32877b2fb7ad90e9880dfc5fdfba4a29bc4
SHA512

d0e472178a65e6f669590eb04daede1f7d8beb84204da8de62ba792960733696a3d101a4e393e995f768f297be98f32d3de1437d73934d43d1282317655f7d68
SSDEEP

192:mx9PqvjUq3xszkjCbxbsIcaqcHNqAvPIcaBaNtUq6wce8fdn:mx9SvxOWCbxbbcaqcHNLgcaINt/Rce8F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
LightSpoofer.exe

Files

LightSpoofer.exe
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ