home

analog.sys

The file analog.sys has been detected as malware by 1 anti-virus scanner. It runs as a Windows 64-bit kernel mode device driver named “analog”. Additionally, the file is typically installed by a number of programs including OpenNI2 2.1.0.4 for Windows by PrimeSense and FastPlayer by SoftForce LLC. The file has been seen being downloaded from d24u51ac8ybaqu.cloudfront.net.
MD5:
820a81e0916bac82838fd7e74ab29b15

SHA-1:
0b20ec23b5bd55be44c01d4dbaac241d1e757805

SHA-256:
5309e677c79cffae49a65728c61b436d3cdc2a2bab4c81bf0038415f74a56880

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
4/25/2024 12:30:57 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
(M)
16.6.6.1

File size:
11 KB (11,264 bytes)

File type:
Driver (Win64 SYS)

Common path:
C:\Windows\System32\drivers\analog.sys

File PE Metadata
OS bitness:
Win64

4 Drivers
Display name:
analog

Type:
Kernel device driver (KernelDriver)

Display name:
EIO

Type:
Kernel device driver (KernelDriver)

Display name:
Compatible HID-compliant Mouse Driver

Service name:
Amusbprt

Type:
Kernel device driver (KernelDriver)

Group:
Pointer Port

Display name:
SFF Storage Class Driver

Service name:
sffdisk

Type:
Kernel device driver (KernelDriver)


The file analog.sys has been discovered within the following programs.

FastPlayer  by SoftForce LLC
About 58% of users remove it
OpenNI2 2.1.0.4 for Windows  by PrimeSense
About 3% of users remove it
 
Powered by Should I Remove It?

The file analog.sys has been seen being distributed by the following URL.

https://d24u51ac8ybaqu.cloudfront.net/.../setup_888555.exe

Remove analog.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.