× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 62ac33539e3170e9f5a54202ad11140f9730e8d746a370639ae50ba4a011d5f4
File name: 596614
Detection ratio: 0 / 56
Analysis date: 2016-04-03 08:42:03 UTC ( 2 years, 11 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160403
AegisLab 20160403
AhnLab-V3 20160402
Alibaba 20160401
ALYac 20160403
Antiy-AVL 20160403
Arcabit 20160403
Avast 20160403
AVG 20160403
AVware 20160403
Baidu 20160402
Baidu-International 20160402
BitDefender 20160403
Bkav 20160402
CAT-QuickHeal 20160402
ClamAV 20160402
CMC 20160401
Comodo 20160402
Cyren 20160403
DrWeb 20160403
Emsisoft 20160403
ESET-NOD32 20160403
F-Prot 20160403
F-Secure 20160403
Fortinet 20160403
GData 20160403
Ikarus 20160403
Jiangmin 20160403
K7AntiVirus 20160403
K7GW 20160403
Kaspersky 20160403
Kingsoft 20160403
Malwarebytes 20160403
McAfee 20160403
McAfee-GW-Edition 20160403
Microsoft 20160403
eScan 20160403
NANO-Antivirus 20160403
nProtect 20160401
Panda 20160402
Qihoo-360 20160403
Rising 20160403
Sophos AV 20160403
SUPERAntiSpyware 20160403
Symantec 20160331
Tencent 20160403
TheHacker 20160403
TotalDefense 20160402
TrendMicro 20160403
TrendMicro-HouseCall 20160403
VBA32 20160401
VIPRE 20160403
ViRobot 20160402
Yandex 20160316
Zillya 20160402
Zoner 20160403
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
BLKX Table
Entry Attributes
Driver Descriptor Map (DDM : 0) 0x0050
Apple (Apple_partition_map : 1) 0x0050
disk image (Apple_HFS : 2) 0x0050
(Apple_Free : 3) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
10530362
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x10530362
XML length
13369
PLST keys
resource-fork
File identification
MD5 2b5c11729f3b4fd18ce0b7abf2f7cdee
SHA1 ecef4f42ee4b32cd334ac22a50a23fba00c2648f
SHA256 62ac33539e3170e9f5a54202ad11140f9730e8d746a370639ae50ba4a011d5f4
ssdeep
196608:Mu4ceEL3DVc0M1ctaIyeoIIdSEKWgN9Hst398DtsQqWbEJc4TSt0fqjrRooS:MfLE2bclXoIIEogN923JQyZq

File size 10.1 MB ( 10544243 bytes )
File type Macintosh Disk Image
Magic literal
VAX COFF executable not stripped - version 376

TrID Macintosh Disk image (BZlib compressed) (97.6%)
ZLIB compressed data (var. 1) (2.3%)
Tags
dmg

VirusTotal metadata
First submission 2015-07-08 15:32:34 UTC ( 3 years, 8 months ago )
Last submission 2016-03-07 00:31:21 UTC ( 3 years ago )
File names 596614
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
HTTP requests
DNS requests
TCP connections