8870e6242e397575f54ac0acdfae13117dca54c01198c951537ddc228bb29c93 | Triage

Submit
Reports

Overview

overview

8

Static

static

4

8870e6242e...93.exe

windows7-x64

7

8870e6242e...93.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

AutoEncryptDemo.exe

windows7-x64

1

AutoEncryptDemo.exe

windows10-2004-x64

1

AutoFileCryptTool.exe

windows7-x64

8

AutoFileCryptTool.exe

windows10-2004-x64

8

Bin/win10x...lt.sys

windows10-2004-x64

1

Bin/win10x...mo.exe

windows7-x64

1

Bin/win10x...mo.exe

windows10-2004-x64

1

Bin/win10x...PI.dll

windows7-x64

1

Bin/win10x...PI.dll

windows10-2004-x64

1

Bin/win10x...lt.sys

windows10-2004-x64

1

Bin/win10x...mo.exe

windows7-x64

1

Bin/win10x...mo.exe

windows10-2004-x64

1

Bin/win10x...PI.dll

windows7-x64

3

Bin/win10x...PI.dll

windows10-2004-x64

3

Bin/win32/EaseFlt.sys

windows7-x64

1

Bin/win32/EaseFlt.sys

windows10-2004-x64

1

Bin/win32/...mo.exe

windows7-x64

1

Bin/win32/...mo.exe

windows10-2004-x64

1

Bin/win32/...PI.dll

windows7-x64

3

Bin/win32/...PI.dll

windows10-2004-x64

3

Bin/x64/EaseFlt.sys

windows7-x64

1

Bin/x64/EaseFlt.sys

windows10-2004-x64

1

Bin/x64/Ea...mo.exe

windows7-x64

1

Bin/x64/Ea...mo.exe

windows10-2004-x64

1

Bin/x64/FilterAPI.dll

windows7-x64

1

Bin/x64/FilterAPI.dll

windows10-2004-x64

1

Analysis

max time kernel
137s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
20/08/2024, 00:56

Sharing

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

8870e6242e397575f54ac0acdfae13117dca54c01198c951537ddc228bb29c93.exe

Resource

win7-20240708-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8870e6242e397575f54ac0acdfae13117dca54c01198c951537ddc228bb29c93.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win7-20240704-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral4

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/System.dll

Resource

win7-20240729-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/System.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral7

Sample

AutoEncryptDemo.exe

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

AutoEncryptDemo.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

AutoFileCryptTool.exe

Resource

win7-20240705-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral10

Sample

AutoFileCryptTool.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

8 signatures

150 seconds

Behavioral task

behavioral11

Sample

Bin/win10x64/EaseFlt.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Bin/win10x64/EaseFltCPPDemo.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Bin/win10x64/EaseFltCPPDemo.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Bin/win10x64/FilterAPI.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Bin/win10x64/FilterAPI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Bin/win10x86/EaseFlt.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Bin/win10x86/EaseFltCPPDemo.exe

Resource

win7-20240704-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Bin/win10x86/EaseFltCPPDemo.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Bin/win10x86/FilterAPI.dll

Resource

win7-20240729-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral20

Sample

Bin/win10x86/FilterAPI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral21

Sample

Bin/win32/EaseFlt.sys

Resource

win7-20240729-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Bin/win32/EaseFlt.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Bin/win32/EaseFltCPPDemo.exe

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Bin/win32/EaseFltCPPDemo.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Bin/win32/FilterAPI.dll

Resource

win7-20240704-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral26

Sample

Bin/win32/FilterAPI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral27

Sample

Bin/x64/EaseFlt.sys

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Bin/x64/EaseFlt.sys

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Bin/x64/EaseFltCPPDemo.exe

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Bin/x64/EaseFltCPPDemo.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Bin/x64/FilterAPI.dll

Resource

win7-20240705-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Bin/x64/FilterAPI.dll

Resource

win10v2004-20240802-en

windows10-2004-x64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Bin/win10x64/EaseFlt.sys
Size

205KB
MD5

76446142d3ceb8e77e3dcd7b274b4267
SHA1

5efac8e9a760ee530225cfac2db464fd6e66d197
SHA256

73f810c1f10726c983529bfcba6829fc0255849b39daf5b091a7d0bed1e8fc41
SHA512

aedfa62208d13ba24859270806ffaa1731d90f662f84d36fca1b26b2b6d18320421f4f1e87dcdd8b0fd1010eec23086f258018af4349eca889c99f27a2313437
SSDEEP

3072:mdNwVJehHIE4pLHDbq9XIYDj9EXG3Lpg0A8MGiqCnPpu1Ll0k25fAwCT:0IIhdML3qXfe4Wcfidwi4L

Score

1^/10

Malware Config

Signatures

Processes

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\Bin\win10x64\EaseFlt.sys
1⤵
PID:4892
- C:\Users\Admin\AppData\Local\Temp\Bin\win10x64\EaseFlt.sys
  C:\Users\Admin\AppData\Local\Temp\Bin\win10x64\EaseFlt.sys
  2⤵
  PID:2804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy