× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6be03312017fdd6e360293f94d7a529aba65dc1d86b561fd2c3f35dc3e815247
File name: 7zX_1.7.1.dmg
Detection ratio: 0 / 57
Analysis date: 2017-07-25 16:40:33 UTC ( 3 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware 20170725
AegisLab 20170725
AhnLab-V3 20170725
Alibaba 20170725
ALYac 20170725
Antiy-AVL 20170725
Arcabit 20170725
Avast 20170725
AVG 20170725
Avira (no cloud) 20170725
AVware 20170721
Baidu 20170725
BitDefender 20170725
Bkav 20170725
CAT-QuickHeal 20170725
ClamAV 20170725
CMC 20170725
Comodo 20170725
CrowdStrike Falcon (ML) 20170710
Cylance 20170725
Cyren 20170725
DrWeb 20170725
Emsisoft 20170725
Endgame 20170721
ESET-NOD32 20170725
F-Prot 20170725
F-Secure 20170725
Fortinet 20170725
GData 20170725
Ikarus 20170725
Sophos ML 20170607
Jiangmin 20170725
K7AntiVirus 20170725
K7GW 20170725
Kaspersky 20170725
Kingsoft 20170725
Malwarebytes 20170725
MAX 20170725
McAfee 20170723
McAfee-GW-Edition 20170725
Microsoft 20170725
eScan 20170725
NANO-Antivirus 20170725
nProtect 20170725
Palo Alto Networks (Known Signatures) 20170725
Panda 20170725
Qihoo-360 20170725
Rising 20170725
SentinelOne (Static ML) 20170718
Sophos AV 20170725
SUPERAntiSpyware 20170725
Symantec 20170725
Symantec Mobile Insight 20170725
Tencent 20170725
TheHacker 20170724
TrendMicro 20170725
TrendMicro-HouseCall 20170725
Trustlook 20170725
VBA32 20170725
VIPRE 20170725
ViRobot 20170725
Webroot 20170725
WhiteArmor 20170725
Yandex 20170724
Zillya 20170725
ZoneAlarm by Check Point 20170725
Zoner 20170725
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
Main executable
Package path /7zX.app/Contents/MacOS/7zX
Detection ratio 0 / 58 when this report was generated
File size 69328 Bytes
HFS File ID 140
DMG HFS Property List
SmartCrashReports_EmailTicket SCR-C861C51EA6
CFBundleSignature Pash
CFBundleInfoDictionaryVersion 6.0
CFBundleIconFile AppIcon
NSMainNibFile MainMenu
CFBundleIdentifier net.bluem.Pashua
CFBundleDevelopmentRegion English
LSUIElement True
CFBundleExecutable Pashua
SmartCrashReports_CompanyName Carsten Blüm
CFBundlePackageType APPL
NSPrincipalClass NSApplication
CFBundleVersion 0.9.4
Contained Mac OS X executables
Contained file bundles
BLKX Table
Entry Attributes
Driver Descriptor Map (DDM : 0) 0x0050
Apple (Apple_partition_map : 1) 0x0050
disk image (Apple_HFS : 2) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
2401915
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x2401915
XML length
8390
PLST keys
resource-fork
File identification
MD5 86d346a6baca98edeeea660eb8eccc57
SHA1 5ec47834b13e0694040345af853401b5162d4ce4
SHA256 6be03312017fdd6e360293f94d7a529aba65dc1d86b561fd2c3f35dc3e815247
ssdeep
49152:Hojcz6EQi+3s0TXOKkQLHfdVKds6pm/+V32g9vYXum9W7QTBM:IYQ37e3QTfdVG3++G4vYXH9hF

File size 2.3 MB ( 2410817 bytes )
File type Macintosh Disk Image
Magic literal
VAX COFF executable not stripped

TrID ZLIB compressed data (var. 1) (100.0%)
Tags
software-collection dmg via-tor

VirusTotal metadata
First submission 2009-08-29 08:39:27 UTC ( 8 years, 2 months ago )
Last submission 2017-11-10 19:08:44 UTC ( 1 week ago )
File names 7zx_7zx_1.7.1_anglais_182922.dmg
7z938.dmg.1553.dr
7zX_1.7.1.dmg
7zX_1.7.1.5003b6dcbb4d8.dmg
file-3504677_dmg
7zip.dmg
7zX_1.7.1.-5003b6dcbb4d8.dmg
7zx.dmg
filename
7zx-1.7.1.dmg
7zx-1.7.1-883.dmg
7z938.dmg.839.dr

7zX_1.7.1.dmg
7z938.dmg.616.dr
7zX_1.7.1.dmg
7zX_1.7.1.dmg
file
7zX_1.7.1.dmg
7zx_7zx_1.7.1_anglais_182922.dmg
7z938.dmg.1550.dr
7zX_1.7.1.5003b6dcbb4d8.dmg
file-2465533_dmg
7zX.dmg
7z938.dmg.1549.dr
ExifTool file metadata
FileAccessDate
2015:02:12 15:56:53+01:00

FileCreateDate
2015:02:12 15:56:53+01:00

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Created processes
DNS requests