b87fc34a41097a56a573aa668f8c9c2d3e83680446d10df69c84299237d5016c

Submit
Reports

Overview

overview

Static

static

xhs-live2.29.4x64.exe

windows11-21h2-x64

$PLUGINSDI...ls.dll

windows11-21h2-x64

$PLUGINSDI...em.dll

windows11-21h2-x64

$PLUGINSDIR/UAC.dll

windows11-21h2-x64

$PLUGINSDI...ll.dll

windows11-21h2-x64

resources/app.js

windows11-21h2-x64

resources/elevate.exe

windows11-21h2-x64

resources/...er.dll

windows11-21h2-x64

resources/...xt.dll

windows11-21h2-x64

resources/...dk.dll

windows11-21h2-x64

resources/...v1.dll

windows11-21h2-x64

resources/...w3.dll

windows11-21h2-x64

resources/...ac.dll

windows11-21h2-x64

resources/...eg.dll

windows11-21h2-x64

resources/...ch.dll

windows11-21h2-x64

resources/...gc.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...1d.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

resources/...-x.dll

windows11-21h2-x64

resources/...on.dll

windows11-21h2-x64

$PLUGINSDI...gs.dll

windows11-21h2-x64

$PLUGINSDI...ec.dll

windows11-21h2-x64

$PLUGINSDI...ss.dll

windows11-21h2-x64

$PLUGINSDI...7z.dll

windows11-21h2-x64

Uninstall ...��.exe

windows11-21h2-x64

Analysis

max time kernel
69s
max time network
89s
platform
windows11-21h2_x64
resource
win11-20240214-en
resource tags

arch:x64arch:x86image:win11-20240214-enlocale:en-usos:windows11-21h2-x64system
submitted
20-03-2024 11:52

Sharing

Copy URL

Twitter E-mail

Static task

static1

irata

3 signatures

Behavioral task

behavioral1

Sample

xhs-live2.29.4x64.exe

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

$PLUGINSDIR/StdUtils.dll

Resource

win11-20240319-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/System.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/UAC.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/WinShell.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

resources/app.js

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

resources/elevate.exe

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

resources/extensions/agora-electron-sdk/AgoraRtcWrapper.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

resources/extensions/agora-electron-sdk/agora_node_ext.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

resources/extensions/agora-electron-sdk/agora_rtc_sdk.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

resources/extensions/agora-electron-sdk/av1.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

resources/extensions/agora-electron-sdk/glfw3.dll

Resource

win11-20240319-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

resources/extensions/agora-electron-sdk/libagora-fdkaac.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

resources/extensions/agora-electron-sdk/libagora-ffmpeg.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

resources/extensions/agora-electron-sdk/libagora-soundtouch.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

resources/extensions/agora-electron-sdk/libagora-wgc.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

resources/extensions/agora-electron-sdk/libagora_ai_echo_cancellation_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

resources/extensions/agora-electron-sdk/libagora_ai_noise_suppression_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

resources/extensions/agora-electron-sdk/libagora_audio_beauty_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

resources/extensions/agora-electron-sdk/libagora_clear_vision_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

resources/extensions/agora-electron-sdk/libagora_content_inspect_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

resources/extensions/agora-electron-sdk/libagora_dav1d.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

resources/extensions/agora-electron-sdk/libagora_drm_loader_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

resources/extensions/agora-electron-sdk/libagora_face_detection_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

resources/extensions/agora-electron-sdk/libagora_screen_capture_extension.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

resources/extensions/agora-electron-sdk/libagora_segmentation_extension-x.dll

Resource

win11-20240221-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

resources/extensions/agora-electron-sdk/libagora_spatial_audio_extension.dll

Resource

win11-20240214-en

windows11-21h2-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

$PLUGINSDIR/nsDialogs.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral29

Sample

$PLUGINSDIR/nsExec.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral30

Sample

$PLUGINSDIR/nsProcess.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral31

Sample

$PLUGINSDIR/nsis7z.dll

Resource

win11-20240221-en

windows11-21h2-x64

2 signatures

150 seconds

Behavioral task

behavioral32

Sample

Uninstall 小红书直播助手.exe

Resource

win11-20240221-en

windows11-21h2-x64

4 signatures

150 seconds

Report Analysis Logs

General

Target

resources/extensions/agora-electron-sdk/agora_node_ext.dll
Size

941KB
MD5

8e3d6f6c73b4da859cae3cebaf2d8a15
SHA1

18b6ccb953cb1cadd496d9dce975ebf81bb553ca
SHA256

01d2b9dccdb5d36dfa7bd304fd8bb24438c506c8f1048d372b76a0ca4045689a
SHA512

9cb4a32b3dc41c9d0ed01d614a78faecc4a310647b7aaa1bd13166fb073658cb980c5748f2e06fa5d811db6c18dd22f41262fe78bc0d09b5a565634b84551f0f
SSDEEP

12288:ekjMfBIvKgNsX0sjLcMH0zcYLTA72aGlRrVR6TSagKxAQcpZJvn6O6dmcowc2Ubt:eMMfB6NNn8TSmxF2Jvnwmc2b

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\resources\extensions\agora-electron-sdk\agora_node_ext.dll,#1
1⤵
PID:3944

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads