Skip to main content
Version: Spectra Analyze 9.7.0

Layouts Editor

Spectra Analyze > Administration > Users & Personalization > Layouts Editor

Under Layouts Editor, you can create a new sample summary layout or edit an existing one.

ReversingLabs provides several built-in layouts that can be viewed from the drop-down list under Manage Layout Mode > Layouts:

  • RL Default Layout: includes all available data blocks.
  • Tier 1/Tier 2+ Analyst: corresponds to the SOC analyst role.
  • Researcher: corresponds to the researcher role.
  • AI Summary: provides an AI summary of a sample's behavior and classification.

Adding layouts

To create a new layout, do either of the following:

  • Use a built-in layout as a starting point for your own by selecting it from the Manage Layout Mode > Layouts drop-down list. Then edit it, click Save as and provide a new name.
  • Click Create New Layout to create a layout from scratch.

The available data blocks are:

  • Sample Information: hashes, first and last seen, filenames, uploaders, user and system tags.
  • Sources: detection sources, sample data from connector EDR integrations.
  • Sample Description: detailed sample characteristics with ability to search for similar samples.
  • Relationship Graph: visual overview of sample relations and their classifications.
  • MITRE ATT&CK: triggered tactics and techniques from statis and dynamic analysis.
  • Attribution Data: LLM-generated sample attribution details (campaigns, victims, vulnerabilities, sources), malware family insights (threat name, aliases, first/last seen dates, current version, packer, targeted OS, targeted industries), and related threat actors. Shown only for suspicious and malicious samples.
  • Network References: top five extracted and contacted URIs/Domains/IPs, ranked by classification. This block also shows the number of unique references.
  • Static Analysis Insights: top five static analysis indicators, ranked by priority. This block also shows the total number of static analysis indicators.
  • Dynamic Analysis Insights: top five dynamic analysis signatures, ranked by risk factor. This block also shows the total number of RL Cloud Sandbox signatures.
  • YARA Matches: top five YARA rulesets, ranked by classification impact. This block also shows the total number of matched YARA rulesets.
  • Email Information: shown only for email samples.
  • AI Summary: provides an AI summary of a sample's behavior and classification.

Any user-created layout can be saved either as personal or shared. Personal layouts are available only to the user that created them, and shared ones are available to other users on the machine.

Deleting layouts

To delete a layout, go to Manage Layout Mode > Layouts > New Layout and click to open the drop-down list. Select the layout to delete, click Delete and confirm the deletion of this layout.