Hello,
Recently I was attempting to bring up a new PC in our design lab and attempted to install the latest NI-VISA from here: https://www.ni.com/en/support/downloads/drivers/download.ni-visa.html#544206
The installation is being blocked due to a specific file, "data.tar.gz". When I contacted the network admins about this they pointed me to a report by virustotal which flagged this as malicious https://www.virustotal.com/gui/file/c7c6f620946dd8895223358620624d01ffd3ee0075e17e8680d6e9ec179766cc...
The network admins recommended contacting the vendor and notifying them that their installation file has been compromised. I find it hard to believe that NI would be sloppy enough to allow one of their tools to be compromised, then again any intrusion issue has to start somewhere.
Does anyone have a recommendation on this? Is this a false positive that others have run into? Is there really something malicious? If there is not something malicious what could be the cause that I could feedback to the admins to help get this resolved?
I am not a security or IS expert so I am somewhat at a loss on how to prove/disprove and communicate back to my admins. Any help would be appreciated.
