I analyzed a similar sample ( Deep_Unfreezer_v6.epub ) in a sandbox environment: It dropped winlogonhelper.exe in %AppData%\Roaming , established persistence via a Run registry key, and beaconed to a .ru domain. It was a variant of Agent Tesla keylogger.
While primarily documented as a bypass tool, version 6.62.020 is often associated with several core functions: Anti Deep Freeze 6.62.020.epub
Deep Freeze Enterprise Tutorials: How to Uninstall Deep Freeze I analyzed a similar sample ( Deep_Unfreezer_v6