a5f9a71a53bbcc21831984b95c9b69a99af6140afe33ec3345d0accb99889f22

Submit
Reports

Overview

overview

Static

static

Tuxera NTF...19.dmg

macos-10.15-amd64

Microsoft ...a_ntfs

ubuntu-18.04-amd64

Microsoft ...a_ntfs

debian-9-armhf

Microsoft ...a_ntfs

debian-9-mips

Microsoft ...a_ntfs

debian-9-mipsel

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ll Tux

ubuntu-18.04-amd64

Microsoft ...ll Tux

debian-9-armhf

Microsoft ...ll Tux

debian-9-mips

Microsoft ...ll Tux

debian-9-mipsel

Microsoft ...ll Tux

ubuntu-18.04-amd64

Microsoft ...ll Tux

debian-9-armhf

Microsoft ...ll Tux

debian-9-mips

Microsoft ...ll Tux

debian-9-mipsel

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ll Tux

ubuntu-18.04-amd64

Microsoft ...ll Tux

debian-9-armhf

Microsoft ...ll Tux

debian-9-mips

Microsoft ...ll Tux

debian-9-mipsel

Microsoft ...ll Tux

macos-10.15-amd64

Microsoft ...ll Tux

macos-10.15-amd64

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ux.rtf

windows7-x64

Microsoft ...ux.rtf

windows10-2004-x64

Microsoft ...ux.rtf

windows7-x64

Analysis

max time kernel
0s
max time network
130s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240508-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240508-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
28/06/2024, 14:05

Sharing

Copy URL

Twitter E-mail

Static task

static1

pdf link

2 signatures

Behavioral task

behavioral1

Sample

Tuxera NTFS 2019/tuxerantfs_2019.dmg

Resource

macos-20240611-en

discovery evasion

macos-10.15-amd64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/MacOS/install_tuxera_ntfs

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/MacOS/install_tuxera_ntfs

Resource

debian9-armhf-20240418-en

debian-9-armhf

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/MacOS/install_tuxera_ntfs

Resource

debian9-mipsbe-20240418-en

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/MacOS/install_tuxera_ntfs

Resource

debian9-mipsel-20240226-en

debian-9-mipsel

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral7

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral9

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-armhf-20240418-en

debian-9-armhf

1 signatures

150 seconds

Behavioral task

behavioral10

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsbe-20240611-en

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral11

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsel-20240418-en

debian-9-mipsel

1 signatures

150 seconds

Behavioral task

behavioral12

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

ubuntu1804-amd64-20240611-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-armhf-20240611-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsbe-20240418-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240508-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral17

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral18

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

ubuntu1804-amd64-20240508-en

ubuntu-18.04-amd64

1 signatures

150 seconds

Behavioral task

behavioral19

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-armhf-20240611-en

debian-9-armhf

1 signatures

150 seconds

Behavioral task

behavioral20

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsbe-20240418-en

debian-9-mips

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

debian9-mipsel-20240611-en

debian-9-mipsel

1 signatures

150 seconds

Behavioral task

behavioral22

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

macos-20240611-en

evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral23

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux

Resource

macos-20240611-en

evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral24

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral25

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240508-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral26

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240508-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral27

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240226-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral28

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20231129-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral29

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240611-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral30

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral31

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win10v2004-20240611-en

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral32

Sample

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux.rtf

Resource

win7-20240508-en

windows7-x64

7 signatures

150 seconds

Report Analysis Logs

General

Target

Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux
Size

2KB
MD5

f2f7f5811ac825b9c4638572ded20a8a
SHA1

f89de3f414ae7438968d51127a0866869194b57f
SHA256

6e4a4c5e9e62e31d9e16b4e77881b47f1ea3b571079867ebb0a2a846bd8ebae5
SHA512

918ee0c90a10b2db2eb6c0ad1487e15c264852b4047dfad5d49e62a67bbc4f5152991d50c62c617d4bc2fc5e59d39ba646207ebc869d8b9c5b9b4f790c3aa260

Score

3^/10

Malware Config

Signatures

Reads runtime system information 1 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/filesystems	mkdir

Processes

/tmp/Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux
"/tmp/Microsoft NTFS by Tuxera 2019/Install Tuxera NTFS.app/Contents/Resources/Packages/Bundle/Install Tux"
1⤵
PID:1528
- /bin/mkdir
  mkdir -p "/Library/Application Support/Tuxera NTFS"
  2⤵
  - Reads runtime system information
  PID:1529
- /bin/chmod
  chmod 0755 "/Library/Application Support/Tuxera NTFS"
  2⤵
  PID:1531
- /bin/mktemp
  mktemp -d /tmp/tuxera_ntfs_for_mac_installer_XXXXXX
  2⤵
  PID:1532
- /bin/rm
  rm -rf /tmp/tuxera_ntfs_for_mac_installer_Rbfwgr
  2⤵
  PID:1534

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads