b87fc34a41097a56a573aa668f8c9c2d3e83680446d10df69c84299237d5016c

Submit
Reports

Overview

overview

Static

static

xhs-live2.29.4x64.exe

windows11-21h2-x64

$PLUGINSDI...ls.dll

windows11-21h2-x64

$PLUGINSDI...em.dll

windows11-21h2-x64

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

$PLUGINSDI...ll.dll

windows11-21h2-x64

resources/app.js

windows11-21h2-x64

resources/elevate.exe

windows11-21h2-x64

resources/...er.dll

windows11-21h2-x64

resources/...xt.dll

windows11-21h2-x64

resources/...dk.dll

windows11-21h2-x64

resources/...v1.dll

windows11-21h2-x64

resources/...w3.dll

windows11-21h2-x64

resources/...ac.dll

windows11-21h2-x64

resources/...eg.dll

windows11-21h2-x64

resources/...ch.dll

windows11-21h2-x64

resources/...gc.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...1d.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...-x.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

$PLUGINSDI...gs.dll

windows11-21h2-x64

$PLUGINSDI...ec.dll

windows11-21h2-x64

$PLUGINSDI...ss.dll

windows11-21h2-x64

$PLUGINSDI...7z.dll

windows11-21h2-x64

Uninstall ...��.exe

windows11-21h2-x64

Analysis

max time kernel
71s
max time network
96s
platform
windows11-21h2_x64
resource
win11-20240214-en
resource tags

arch:x64arch:x86image:win11-20240214-enlocale:en-usos:windows11-21h2-x64system
submitted
20-03-2024 11:52

Sharing

Copy URL

Twitter E-mail

Static task

static1

irata

3 signatures

Behavioral task

behavioral1

Sample

xhs-live2.29.4x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win11-20240319-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

resources/app.js

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/elevate.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/extensions/agora-electron-sdk/AgoraRtcWrapper.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/extensions/agora-electron-sdk/agora_node_ext.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/extensions/agora-electron-sdk/av1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/extensions/agora-electron-sdk/glfw3.dll

Resource

win11-20240319-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/extensions/agora-electron-sdk/libagora-fdkaac.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/extensions/agora-electron-sdk/libagora-ffmpeg.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/extensions/agora-electron-sdk/libagora-soundtouch.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/extensions/agora-electron-sdk/libagora-wgc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/extensions/agora-electron-sdk/libagora_ai_noise_suppression_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/extensions/agora-electron-sdk/libagora_audio_beauty_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/extensions/agora-electron-sdk/libagora_clear_vision_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/extensions/agora-electron-sdk/libagora_content_inspect_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/extensions/agora-electron-sdk/libagora_dav1d.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/extensions/agora-electron-sdk/libagora_drm_loader_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/extensions/agora-electron-sdk/libagora_face_detection_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/extensions/agora-electron-sdk/libagora_screen_capture_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Uninstall 小红书直播助手.exe

Resource

win11-20240221-en

windows11-21h2-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll
Size

4.1MB
MD5

74096fd801182a11853215451b44fb63
SHA1

8aa8b50a7ca99bef56921f428cc6597b1a8006c2
SHA256

41edfe78051c80c85812b6b1e4cdf04ba01254e9f180605f8f4c3ce9b4f7d902
SHA512

4c73ac033b4ae088ed47818cbefe8a3d032bd219413fbc2747f4a2fb3ccb1e72ca0a6ed4df59e5864de869177c569acc3c99faec92bf288853eaa4ae91d7b8b6
SSDEEP

98304:97vRio8Y8bNp6hW27YGbPdaL9t3Yl+JfxjlOLfcYuhXXR3eSl4Dl:97B8Y8JpS7YGZa5t3Yl+JFMLEhXXRBy5

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\extensions\agora-electron-sdk\libagora_spatial_audio_extension.dll,#1
1⤵
PID:4456

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads