b87fc34a41097a56a573aa668f8c9c2d3e83680446d10df69c84299237d5016c

Submit
Reports

Overview

overview

Static

static

xhs-live2.29.4x64.exe

windows11-21h2-x64

$PLUGINSDI...ls.dll

windows11-21h2-x64

$PLUGINSDI...em.dll

windows11-21h2-x64

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

$PLUGINSDI...ll.dll

windows11-21h2-x64

resources/app.js

windows11-21h2-x64

resources/elevate.exe

windows11-21h2-x64

resources/...er.dll

windows11-21h2-x64

resources/...xt.dll

windows11-21h2-x64

resources/...dk.dll

windows11-21h2-x64

resources/...v1.dll

windows11-21h2-x64

resources/...w3.dll

windows11-21h2-x64

resources/...ac.dll

windows11-21h2-x64

resources/...eg.dll

windows11-21h2-x64

resources/...ch.dll

windows11-21h2-x64

resources/...gc.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...1d.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...-x.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

$PLUGINSDI...gs.dll

windows11-21h2-x64

$PLUGINSDI...ec.dll

windows11-21h2-x64

$PLUGINSDI...ss.dll

windows11-21h2-x64

$PLUGINSDI...7z.dll

windows11-21h2-x64

Uninstall ...��.exe

windows11-21h2-x64

Analysis

max time kernel
72s
max time network
101s
platform
windows11-21h2_x64
resource
win11-20240221-en
resource tags

arch:x64arch:x86image:win11-20240221-enlocale:en-usos:windows11-21h2-x64system
submitted
20-03-2024 11:52

Sharing

Copy URL

Twitter E-mail

Static task

static1

irata

3 signatures

Behavioral task

behavioral1

Sample

xhs-live2.29.4x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win11-20240319-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

resources/app.js

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/elevate.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/extensions/agora-electron-sdk/AgoraRtcWrapper.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/extensions/agora-electron-sdk/agora_node_ext.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/extensions/agora-electron-sdk/av1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/extensions/agora-electron-sdk/glfw3.dll

Resource

win11-20240319-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/extensions/agora-electron-sdk/libagora-fdkaac.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/extensions/agora-electron-sdk/libagora-ffmpeg.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/extensions/agora-electron-sdk/libagora-soundtouch.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/extensions/agora-electron-sdk/libagora-wgc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/extensions/agora-electron-sdk/libagora_ai_noise_suppression_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/extensions/agora-electron-sdk/libagora_audio_beauty_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/extensions/agora-electron-sdk/libagora_clear_vision_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/extensions/agora-electron-sdk/libagora_content_inspect_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/extensions/agora-electron-sdk/libagora_dav1d.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/extensions/agora-electron-sdk/libagora_drm_loader_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/extensions/agora-electron-sdk/libagora_face_detection_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/extensions/agora-electron-sdk/libagora_screen_capture_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Uninstall 小红书直播助手.exe

Resource

win11-20240221-en

windows11-21h2-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll
Size

3.5MB
MD5

b97e3003e94a625d5b499e9dc6f8b0b6
SHA1

26da19d04148788c3e9cfc9662e624f9d77ee82a
SHA256

77145b40921db87a96caec5bc3b2da014c7584fbd92d3e2600330456eb860c6f
SHA512

490027b0cbbd275380608ba228b94484347f6dceb5c07c0ac2f2763f3bcb9a9ae5444efe0215e0544f8c2a239f78e66dfb2258f3b4ca2c64f290dab5b5338a1a
SSDEEP

98304:O4ji8xUfS5bV3nSu6ndPk0FRtxAKs+uiBSQ:OilxUK5BfUPTXPl0i

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\extensions\agora-electron-sdk\libagora_segmentation_extension-x.dll,#1
1⤵
PID:1488

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads