b87fc34a41097a56a573aa668f8c9c2d3e83680446d10df69c84299237d5016c

Submit
Reports

Overview

overview

Static

static

xhs-live2.29.4x64.exe

windows11-21h2-x64

$PLUGINSDI...ls.dll

windows11-21h2-x64

$PLUGINSDI...em.dll

windows11-21h2-x64

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

$PLUGINSDI...ll.dll

windows11-21h2-x64

resources/app.js

windows11-21h2-x64

resources/elevate.exe

windows11-21h2-x64

resources/...er.dll

windows11-21h2-x64

resources/...xt.dll

windows11-21h2-x64

resources/...dk.dll

windows11-21h2-x64

resources/...v1.dll

windows11-21h2-x64

resources/...w3.dll

windows11-21h2-x64

resources/...ac.dll

windows11-21h2-x64

resources/...eg.dll

windows11-21h2-x64

resources/...ch.dll

windows11-21h2-x64

resources/...gc.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...1d.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...-x.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

$PLUGINSDI...gs.dll

windows11-21h2-x64

$PLUGINSDI...ec.dll

windows11-21h2-x64

$PLUGINSDI...ss.dll

windows11-21h2-x64

$PLUGINSDI...7z.dll

windows11-21h2-x64

Uninstall ...��.exe

windows11-21h2-x64

Analysis

max time kernel
65s
max time network
99s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
20-03-2024 11:52

Sharing

Copy URL

Twitter E-mail

Static task

static1

irata

3 signatures

Behavioral task

behavioral1

Sample

xhs-live2.29.4x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win11-20240319-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

resources/app.js

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/elevate.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/extensions/agora-electron-sdk/AgoraRtcWrapper.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/extensions/agora-electron-sdk/agora_node_ext.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/extensions/agora-electron-sdk/av1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/extensions/agora-electron-sdk/glfw3.dll

Resource

win11-20240319-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/extensions/agora-electron-sdk/libagora-fdkaac.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/extensions/agora-electron-sdk/libagora-ffmpeg.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/extensions/agora-electron-sdk/libagora-soundtouch.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/extensions/agora-electron-sdk/libagora-wgc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/extensions/agora-electron-sdk/libagora_ai_noise_suppression_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/extensions/agora-electron-sdk/libagora_audio_beauty_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/extensions/agora-electron-sdk/libagora_clear_vision_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/extensions/agora-electron-sdk/libagora_content_inspect_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/extensions/agora-electron-sdk/libagora_dav1d.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/extensions/agora-electron-sdk/libagora_drm_loader_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/extensions/agora-electron-sdk/libagora_face_detection_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/extensions/agora-electron-sdk/libagora_screen_capture_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Uninstall 小红书直播助手.exe

Resource

win11-20240221-en

windows11-21h2-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll
Size

28.1MB
MD5

9f9be693bf2a27ba5f0f5502bfabceb0
SHA1

99cc5bfe52a57d8ee5ebb3af1e2e8d41b934446c
SHA256

aa5e971ffe10758aee51b5b8b9066bc513e55aeb3c6a3502aafda2efbdfe7d52
SHA512

3b6b2f92ac5907db2dfddd9b1bccd7a1b7fe3dc361fbe538b396cef6fe1b64c52d2c62230620a60e39faa4cfa8de09ca1558ca2ddee372faa70951f48e92e4b8
SSDEEP

196608:lbIhOMyGuZWwkm2j0crW6U2ystIH4w1LAO0raR4Y9124A5MkMiyVc:NIhOBtdz8BrjyFHZ1LX0rE9M4A+khye

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\extensions\agora-electron-sdk\agora_rtc_sdk.dll,#1
1⤵
PID:2428

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads