7664bacc64c66942935a1737adcf7ffb58d874c95d4b0c5bdfeacd74a0fde027 | Triage

Submit
Reports

Overview

overview

3

Static

static

1

FreeOTFE-v...FE.exe

windows7-x64

3

FreeOTFE-v...FE.exe

windows10-2004-x64

3

FreeOTFE-v...FE.sys

windows7-x64

1

FreeOTFE-v...FE.sys

windows10-2004-x64

1

FreeOTFE-v...tc.sys

windows7-x64

1

FreeOTFE-v...tc.sys

windows10-2004-x64

1

FreeOTFE-v...sh.sys

windows7-x64

1

FreeOTFE-v...sh.sys

windows10-2004-x64

1

FreeOTFE-v...T5.sys

windows7-x64

1

FreeOTFE-v...T5.sys

windows10-2004-x64

1

FreeOTFE-v...an.sys

windows7-x64

1

FreeOTFE-v...an.sys

windows10-2004-x64

1

FreeOTFE-v...ES.sys

windows7-x64

1

FreeOTFE-v...ES.sys

windows10-2004-x64

1

FreeOTFE-v...an.sys

windows7-x64

1

FreeOTFE-v...an.sys

windows10-2004-x64

1

FreeOTFE-v...tc.sys

windows7-x64

1

FreeOTFE-v...tc.sys

windows10-2004-x64

1

FreeOTFE-v...an.sys

windows7-x64

1

FreeOTFE-v...an.sys

windows10-2004-x64

1

FreeOTFE-v...tc.sys

windows7-x64

1

FreeOTFE-v...tc.sys

windows10-2004-x64

1

FreeOTFE-v...MD.sys

windows7-x64

1

FreeOTFE-v...MD.sys

windows10-2004-x64

1

FreeOTFE-v...MD.sys

windows7-x64

1

FreeOTFE-v...MD.sys

windows10-2004-x64

1

FreeOTFE-v...HA.sys

windows7-x64

1

FreeOTFE-v...HA.sys

windows10-2004-x64

1

FreeOTFE-v...er.sys

windows7-x64

1

FreeOTFE-v...er.sys

windows10-2004-x64

1

FreeOTFE-v...ol.sys

windows7-x64

1

FreeOTFE-v...ol.sys

windows10-2004-x64

1

Analysis

max time kernel
137s
max time network
110s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
19/08/2024, 18:44

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

FreeOTFE-v4.40/FreeOTFE.exe

Resource

win7-20240729-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

FreeOTFE-v4.40/FreeOTFE.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral3

Sample

FreeOTFE-v4.40/amd64/FreeOTFE.sys

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

FreeOTFE-v4.40/amd64/FreeOTFE.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherAES_ltc.sys

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherAES_ltc.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherBlowfish.sys

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherBlowfish.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherCAST5.sys

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherCAST5.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherCAST6_Gladman.sys

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherCAST6_Gladman.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherDES.sys

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherDES.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherMARS_Gladman.sys

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherMARS_Gladman.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherRC6_ltc.sys

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherRC6_ltc.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherSerpent_Gladman.sys

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherSerpent_Gladman.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherTwofish_ltc.sys

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

FreeOTFE-v4.40/amd64/FreeOTFECypherTwofish_ltc.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashMD.sys

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashMD.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashRIPEMD.sys

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashRIPEMD.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashSHA.sys

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashSHA.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashTiger.sys

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashTiger.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashWhirlpool.sys

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

FreeOTFE-v4.40/amd64/FreeOTFEHashWhirlpool.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

FreeOTFE-v4.40/amd64/FreeOTFECypherDES.sys
Size

58KB
MD5

4737262477b00518439f7fcfbad55504
SHA1

2e097b4ad50033ad271070a32ba16ed1f355996d
SHA256

1b22187c0ce5f2a1acc1d13884e56eb1d88ced5dc1f1483fb6339725bdb5328d
SHA512

593c9fcb527cbdb8056e8a38f88197c441b0b381b51e485fef60b717defc57f584f26969538f4a53d79b272b1290ec350631d63c57ef1299bb1b09e0907da215
SSDEEP

768:dTDWBJlvjwqUg3IOrP3Ypr6K3GeVU6TwiLE:xWBwF0Ypr6/rSwi4

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\FreeOTFE-v4.40\amd64\FreeOTFECypherDES.sys
1⤵
PID:5016
- C:\Users\Admin\AppData\Local\Temp\FreeOTFE-v4.40\amd64\FreeOTFECypherDES.sys
  C:\Users\Admin\AppData\Local\Temp\FreeOTFE-v4.40\amd64\FreeOTFECypherDES.sys
  2⤵
  PID:3888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3888-0-0x0000000000010000-0x0000000000024000-memory.dmp

Filesize
80KB

Download

© 2018-2025

Terms | Privacy