× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6be03312017fdd6e360293f94d7a529aba65dc1d86b561fd2c3f35dc3e815247
File name: 7zX_1.7.1.dmg
Detection ratio: 0 / 57
Analysis date: 2017-04-26 19:15:47 UTC ( 6 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware 20170426
AegisLab 20170426
AhnLab-V3 20170426
Alibaba 20170426
ALYac 20170426
Antiy-AVL 20170426
Arcabit 20170426
Avast 20170426
AVG 20170426
Avira (no cloud) 20170426
AVware 20170426
Baidu 20170426
BitDefender 20170426
Bkav 20170426
CAT-QuickHeal 20170426
ClamAV 20170426
CMC 20170421
Comodo 20170426
CrowdStrike Falcon (ML) 20170130
Cyren 20170426
DrWeb 20170426
Emsisoft 20170426
Endgame 20170419
ESET-NOD32 20170426
F-Prot 20170426
F-Secure 20170426
Fortinet 20170426
GData 20170426
Ikarus 20170426
Sophos ML 20170413
Jiangmin 20170425
K7AntiVirus 20170426
K7GW 20170426
Kaspersky 20170426
Kingsoft 20170426
Malwarebytes 20170426
McAfee 20170426
McAfee-GW-Edition 20170426
Microsoft 20170426
eScan 20170426
NANO-Antivirus 20170426
nProtect 20170426
Palo Alto Networks (Known Signatures) 20170426
Panda 20170426
Qihoo-360 20170426
Rising 20170426
SentinelOne (Static ML) 20170330
Sophos AV 20170426
SUPERAntiSpyware 20170426
Symantec 20170426
Symantec Mobile Insight 20170426
Tencent 20170426
TheHacker 20170424
TotalDefense 20170426
TrendMicro 20170425
TrendMicro-HouseCall 20170426
Trustlook 20170426
VBA32 20170426
VIPRE 20170426
ViRobot 20170426
Webroot 20170426
WhiteArmor 20170409
Yandex 20170426
Zillya 20170426
ZoneAlarm by Check Point 20170426
Zoner 20170426
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
Main executable
Package path /7zX.app/Contents/MacOS/7zX
Detection ratio 0 / 58 when this report was generated
File size 69328 Bytes
HFS File ID 140
DMG HFS Property List
SmartCrashReports_EmailTicket SCR-C861C51EA6
CFBundleSignature Pash
CFBundleInfoDictionaryVersion 6.0
CFBundleIconFile AppIcon
NSMainNibFile MainMenu
CFBundleIdentifier net.bluem.Pashua
CFBundleDevelopmentRegion English
LSUIElement True
CFBundleExecutable Pashua
SmartCrashReports_CompanyName Carsten Blüm
CFBundlePackageType APPL
NSPrincipalClass NSApplication
CFBundleVersion 0.9.4
Contained Mac OS X executables
Contained file bundles
BLKX Table
Entry Attributes
Driver Descriptor Map (DDM : 0) 0x0050
Apple (Apple_partition_map : 1) 0x0050
disk image (Apple_HFS : 2) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
2401915
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x2401915
XML length
8390
PLST keys
resource-fork
File identification
MD5 86d346a6baca98edeeea660eb8eccc57
SHA1 5ec47834b13e0694040345af853401b5162d4ce4
SHA256 6be03312017fdd6e360293f94d7a529aba65dc1d86b561fd2c3f35dc3e815247
ssdeep
49152:Hojcz6EQi+3s0TXOKkQLHfdVKds6pm/+V32g9vYXum9W7QTBM:IYQ37e3QTfdVG3++G4vYXH9hF

File size 2.3 MB ( 2410817 bytes )
File type Macintosh Disk Image
Magic literal
VAX COFF executable not stripped

TrID ZLIB compressed data (var. 1) (100.0%)
Tags
software-collection dmg via-tor

VirusTotal metadata
First submission 2009-08-29 08:39:27 UTC ( 8 years, 2 months ago )
Last submission 2017-11-10 19:08:44 UTC ( 1 week ago )
File names 7zx_7zx_1.7.1_anglais_182922.dmg
7z938.dmg.1553.dr
7zX_1.7.1.dmg
7zX_1.7.1.5003b6dcbb4d8.dmg
file-3504677_dmg
7zip.dmg
7zX_1.7.1.-5003b6dcbb4d8.dmg
7zx.dmg
filename
7zx-1.7.1.dmg
7zx-1.7.1-883.dmg
7z938.dmg.839.dr

7zX_1.7.1.dmg
7z938.dmg.616.dr
7zX_1.7.1.dmg
7zX_1.7.1.dmg
file
7zX_1.7.1.dmg
7zx_7zx_1.7.1_anglais_182922.dmg
7z938.dmg.1550.dr
7zX_1.7.1.5003b6dcbb4d8.dmg
file-2465533_dmg
7zX.dmg
7z938.dmg.1549.dr
ExifTool file metadata
FileAccessDate
2015:02:12 15:56:53+01:00

FileCreateDate
2015:02:12 15:56:53+01:00

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Created processes
DNS requests