× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9b2afddc7a78714bd08d997a2f3d9aaab83d25a3ef4185d9a47e3d4237106450
File name: Osx_Uninstaller_Setup.dmg
Detection ratio: 0 / 54
Analysis date: 2016-11-03 09:02:20 UTC ( 2 years, 1 month ago ) View latest
Antivirus Result Update
Ad-Aware 20161103
AegisLab 20161103
AhnLab-V3 20161103
Alibaba 20161103
ALYac 20161103
Antiy-AVL 20161103
Arcabit 20161103
Avast 20161103
AVG 20161103
Avira (no cloud) 20161102
AVware 20161103
Baidu 20161103
BitDefender 20161103
Bkav 20161102
CAT-QuickHeal 20161103
ClamAV 20161103
CMC 20161103
Comodo 20161103
CrowdStrike Falcon (ML) 20161024
Cyren 20161103
DrWeb 20161103
Emsisoft 20161103
ESET-NOD32 20161103
F-Prot 20161103
F-Secure 20161103
Fortinet 20161103
GData 20161103
Ikarus 20161102
Sophos ML 20161018
Jiangmin 20161103
K7AntiVirus 20161103
K7GW 20161103
Kaspersky 20161103
Kingsoft 20161103
Malwarebytes 20161103
McAfee 20161103
McAfee-GW-Edition 20161103
Microsoft 20161103
eScan 20161103
NANO-Antivirus 20161103
nProtect 20161101
Panda 20161102
Qihoo-360 20161103
Rising 20161103
Sophos AV 20161103
SUPERAntiSpyware 20161103
Symantec 20161103
Tencent 20161103
TheHacker 20161101
TrendMicro 20161103
TrendMicro-HouseCall 20161103
VBA32 20161102
VIPRE 20161103
ViRobot 20161103
Yandex 20161102
Zillya 20161102
Zoner 20161103
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
File signature
Identifier com.AngularTech.OsxUninstaller
Format bundle with Mach-O thin (x86_64)
CDHash c327482830ceaba7161104d9506b73abb3cfa1f2
Signature size 8531
Authority Developer ID Application: AngularTech Inc. (K84RXEDN48)
Authority Developer ID Certification Authority
Authority Apple Root CA
Timestamp Jun 23, 2016, 6:06:29 AM
Info.plist entries 23
TeamIdentifier K84RXEDN48
Signature verification Valid Signature
Signing Certificates
[+] AngularTech Inc.
Status Valid
Issuer Apple Inc.
Valid from 11:12 AM 04/08/2016
Valid to 11:12 AM 04/09/2021
Valid usage Digital Signature, Code Signing
Algorithm sha256WithRSAEncryption
Thumbprint 380DB2385D46039F4C48CC4A1E8DF9F4B17EF5E6
Serial number 1C DB 08 F3 2C 43 5D 14
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 10:12 PM 02/01/2012
Valid to 10:12 PM 02/01/2027
Valid usage Digital Signature, Certificate Sign, CRL Sign
Algorithm sha256WithRSAEncryption
Thumbprint 3B166C3B7DC4B751C9FE2AFAB9135641E388E186
Serial number 18 7A A9 A8 C2 96 21 0C
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 09:40 PM 04/25/2006
Valid to 09:40 PM 02/09/2035
Valid usage Certificate Sign, CRL Sign
Algorithm sha1WithRSAEncryption
Thumbprint 611E5B662C593A08FF58D14AE22452D198DF6C60
Serial number 2
Main executable
Package path /Osx Uninstaller.app/Contents/MacOS/OsxUninstaller
Detection ratio 1 / 55 when this report was generated
File size 126208 Bytes
HFS File ID 31
DMG HFS Property List
CFBundleInfoDictionaryVersion 6.0
NSHumanReadableCopyright Copyright © 2016年 Aknold. All rights reserved.
DTXcodeBuild 6A317
CFBundleIdentifier com.AngularTech.OsxUninstaller
DTSDKName macosx10.9
DTSDKBuild 13F26
CFBundleShortVersionString 3.6.8.65
BuildMachineOSBuild 13F1603
CFBundleExecutable OsxUninstaller
LSMinimumSystemVersion 10.9
CFBundleVersion 1
CFBundleIconFile AppIcon
DTPlatformBuild 6A317
NSMainNibFile MainMenu
DTXcode 0600
CFBundleDevelopmentRegion en
LSApplicationCategoryType
DTCompiler com.apple.compilers.llvm.clang.1_0
CFBundleSignature ????
DTPlatformVersion GM
CFBundleName OsxUninstaller
CFBundlePackageType APPL
NSPrincipalClass NSApplication
Contained Mac OS X executables
Contained file bundles
BLKX Table
Entry Attributes
Ê雷∏™Á£ÅÁõòÔºàApple_HFSÔºö0Ôºâ 整个磁盘(Apple_HFS:0) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
4330631
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x4330631
XML length
3455
PLST keys
resource-fork
File identification
MD5 1bd97edf90ed7e29e0ffd5fb6d87af98
SHA1 a6433a130f49940d0545e201982b4946093524f9
SHA256 9b2afddc7a78714bd08d997a2f3d9aaab83d25a3ef4185d9a47e3d4237106450
ssdeep
98304:Gv5P6kj2rZZloPHNt4FUiLr79aBl82tFXV9GTyjdXyCUSE3d7qM:g6E2rhovPqUif79arzV95M+uO

File size 4.1 MB ( 4334598 bytes )
File type Macintosh Disk Image
Magic literal
VAX COFF executable - version 1111

TrID ZLIB compressed data (var. 1) (100.0%)
Tags
dmg

VirusTotal metadata
First submission 2016-10-28 15:10:20 UTC ( 2 years, 1 month ago )
Last submission 2017-12-19 15:55:29 UTC ( 12 months ago )
File names Osx_Uninstaller_Setup.dmg
Osx_Uninstaller_Setup.dmg
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Created processes
HTTP requests
DNS requests
TCP connections