b87fc34a41097a56a573aa668f8c9c2d3e83680446d10df69c84299237d5016c

Submit
Reports

Overview

overview

Static

static

xhs-live2.29.4x64.exe

windows11-21h2-x64

$PLUGINSDI...ls.dll

windows11-21h2-x64

$PLUGINSDI...em.dll

windows11-21h2-x64

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

$PLUGINSDI...ll.dll

windows11-21h2-x64

resources/app.js

windows11-21h2-x64

resources/elevate.exe

windows11-21h2-x64

resources/...er.dll

windows11-21h2-x64

resources/...xt.dll

windows11-21h2-x64

resources/...dk.dll

windows11-21h2-x64

resources/...v1.dll

windows11-21h2-x64

resources/...w3.dll

windows11-21h2-x64

resources/...ac.dll

windows11-21h2-x64

resources/...eg.dll

windows11-21h2-x64

resources/...ch.dll

windows11-21h2-x64

resources/...gc.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...1d.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...-x.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

$PLUGINSDI...gs.dll

windows11-21h2-x64

$PLUGINSDI...ec.dll

windows11-21h2-x64

$PLUGINSDI...ss.dll

windows11-21h2-x64

$PLUGINSDI...7z.dll

windows11-21h2-x64

Uninstall ...��.exe

windows11-21h2-x64

Analysis

max time kernel
72s
max time network
97s
platform
windows11-21h2_x64
resource
win11-20240214-en
resource tags

arch:x64arch:x86image:win11-20240214-enlocale:en-usos:windows11-21h2-x64system
submitted
20-03-2024 11:52

Sharing

Copy URL

Twitter E-mail

Static task

static1

irata

3 signatures

Behavioral task

behavioral1

Sample

xhs-live2.29.4x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win11-20240319-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

resources/app.js

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/elevate.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/extensions/agora-electron-sdk/AgoraRtcWrapper.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/extensions/agora-electron-sdk/agora_node_ext.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/extensions/agora-electron-sdk/av1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/extensions/agora-electron-sdk/glfw3.dll

Resource

win11-20240319-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/extensions/agora-electron-sdk/libagora-fdkaac.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/extensions/agora-electron-sdk/libagora-ffmpeg.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/extensions/agora-electron-sdk/libagora-soundtouch.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/extensions/agora-electron-sdk/libagora-wgc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/extensions/agora-electron-sdk/libagora_ai_noise_suppression_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/extensions/agora-electron-sdk/libagora_audio_beauty_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/extensions/agora-electron-sdk/libagora_clear_vision_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/extensions/agora-electron-sdk/libagora_content_inspect_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/extensions/agora-electron-sdk/libagora_dav1d.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/extensions/agora-electron-sdk/libagora_drm_loader_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/extensions/agora-electron-sdk/libagora_face_detection_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/extensions/agora-electron-sdk/libagora_screen_capture_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Uninstall 小红书直播助手.exe

Resource

win11-20240221-en

windows11-21h2-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll
Size

3.9MB
MD5

4df13e99d563ab2c891ce18aff7f60ba
SHA1

c7bb15a87a5df57f17cd629c6b4d19f40b7fa062
SHA256

3df6a58aa7b522d0f8ba3936a7677b3ad44a6656cf394cbec968d065b3e179c1
SHA512

4c62f1033b887dc59e365ac4c5b0fb38a4681c072aab89516c3888bf00716d56a44ef8c1d5c1874e3d70b81e3f9cbf5d1ed587bb2b8e923a63b7a59ebb81a79f
SSDEEP

98304:OPVNUCJqyYme634JyeVJXnKCqS5ESTmpF:uV+CJPT7XCN6STs

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\extensions\agora-electron-sdk\libagora_ai_echo_cancellation_extension.dll,#1
1⤵
PID:2560

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads