4adfeb9a9f584c7039a6aa3b0121f7ed6c17b5ff85479b6a7246a28d619a669a

Submit
Reports

Overview

overview

Static

static

Natro Macr...re.dll

macos-10.15-amd64

Natro Macr...fe.dll

macos-10.15-amd64

Natro Macr...er.dll

macos-10.15-amd64

Natro Macr...ed.dll

macos-10.15-amd64

Natro Macr...re.dll

macos-10.15-amd64

Natro Macr...mo.dll

macos-10.15-amd64

Natro Macr...ta.dll

macos-10.15-amd64

Natro Macr...ay.dll

macos-10.15-amd64

Natro Macr...na.dll

macos-10.15-amd64

Natro Macr...ce.dll

macos-10.15-amd64

Natro Macr...ts.dll

macos-10.15-amd64

Natro Macr...us.dll

macos-10.15-amd64

Natro Macr...n3.dll

macos-10.15-amd64

Natro Macr...al.dll

macos-10.15-amd64

Natro Macr...eo.dll

macos-10.15-amd64

Natro Macr...NK.dll

macos-10.15-amd64

Natro Macr...er.dll

macos-10.15-amd64

Natro Macr...GV.dll

macos-10.15-amd64

Natro Macr...se.dll

macos-10.15-amd64

Natro Macr...AS.dll

macos-10.15-amd64

Natro Macr...x3.dll

macos-10.15-amd64

Natro Macr...mp.dll

macos-10.15-amd64

Natro Macr...in.dll

macos-10.15-amd64

Natro Macr...S7.dll

macos-10.15-amd64

Natro Macr...ay.dll

macos-10.15-amd64

Natro Macr...rk.dll

macos-10.15-amd64

Natro Macr...32.exe

macos-10.15-amd64

Natro Macr...64.exe

macos-10.15-amd64

Natro Macr...or.vbs

macos-10.15-amd64

Natro Macr...us.ps1

macos-10.15-amd64

Natro Macr...und.js

macos-10.15-amd64

Natro Macr...ro.vbs

macos-10.15-amd64

Resubmissions

01/09/2024, 14:08

240901-rfv8datbph 4

01/09/2024, 13:57

240901-q9ddzssdrm 3

Analysis

max time kernel
90s
max time network
154s
platform
macos-10.15_amd64
resource
macos-20240711.1-en
resource tags

arch:amd64arch:i386image:macos-20240711.1-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
01/09/2024, 14:08

Sharing

Copy URL Twitter E-mail

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Allure.dll

Resource

macos-20240711.1-en

discovery evasion

macos-10.15-amd64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Ayofe.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/BluePaper.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Concaved.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Core.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Cosmo.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Fanta.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Graygray.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Hana.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Invoice.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Lakrits.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Luminous.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/MacLion3.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Minimal.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Museo.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/PINK.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Panther.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/PaperAGV.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/SNAS.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Simplex3.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Stomp.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/USkin.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/VS7.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/WhiteGray.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Natro Macro v1.0.0.2/nm_image_assets/Styles/Woodwork.dll

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral27

Sample

Natro Macro v1.0.0.2/submacros/AutoHotkey32.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral28

Sample

Natro Macro v1.0.0.2/submacros/AutoHotkey64.exe

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral29

Sample

Natro Macro v1.0.0.2/submacros/StatMonitor.vbs

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral30

Sample

Natro Macro v1.0.0.2/submacros/Status.ps1

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral31

Sample

Natro Macro v1.0.0.2/submacros/background.js

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral32

Sample

Natro Macro v1.0.0.2/submacros/natro_macro.vbs

Resource

macos-20240711.1-en

macos-10.15-amd64

0 signatures

150 seconds

Report Analysis Logs

General

Target

Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll
Size

5.9MB
MD5

2dc98f65afb1da057f664432f6edb717
SHA1

7e73f15bb56402ba7d80c4960cb30db6d496baf6
SHA256

27040c8b6123d1dbde2113459aec6206574f7bbdb9743b175c87807330bae238
SHA512

33165a97a50135a5409da4b9eeeba7f6bfbb7f2d5ab77e0a3937f4adb56f17f2d3d97737f2eeba5ebdafb1abd9cf27cb714af9acf243b969407132caf1c946d3
SSDEEP

12288:aBSoDedbIyyLqIdzB/js70ytXvjWGUSN4fT8PsyF4GSocOF8bdyLVwl82AjscMaD:q75EjTNe0OwdlId

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll\""
1⤵
PID:490

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll\""
1⤵
PID:490

/usr/bin/sudo
sudo /bin/zsh -c "/Users/run/Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll"
1⤵
PID:490
- /bin/zsh
  /bin/zsh -c "/Users/run/Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll"
  2⤵
  PID:491
- /Users/run/Natro
  /Users/run/Natro Macro v1.0.0.2/nm_image_assets/Styles/Relapse.dll
  2⤵
  PID:491

/usr/libexec/xpcproxy
xpcproxy com.apple.audio.AudioComponentRegistrar
1⤵
PID:512

/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar
/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon
1⤵
PID:512

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads