× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 942fc118b5eef202e2df90ae14c6c31f413f040557c6184be45684f66de0630a
Detection ratio: 0 / 60
Analysis date: 2018-06-15 08:36:03 UTC ( 8 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware 20180615
AegisLab 20180615
AhnLab-V3 20180615
Alibaba 20180615
ALYac 20180615
Antiy-AVL 20180615
Arcabit 20180615
Avast 20180615
Avast-Mobile 20180614
AVG 20180615
Avira (no cloud) 20180615
AVware 20180615
Babable 20180406
Baidu 20180615
BitDefender 20180615
Bkav 20180614
CAT-QuickHeal 20180615
ClamAV 20180615
CMC 20180614
Comodo 20180615
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
Cylance 20180615
Cyren 20180615
DrWeb 20180615
eGambit 20180615
Emsisoft 20180615
Endgame 20180612
ESET-NOD32 20180615
F-Prot 20180615
F-Secure 20180615
Fortinet 20180615
GData 20180615
Ikarus 20180615
Sophos ML 20180601
Jiangmin 20180615
K7AntiVirus 20180615
K7GW 20180615
Kaspersky 20180615
Kingsoft 20180615
Malwarebytes 20180615
MAX 20180615
McAfee 20180615
McAfee-GW-Edition 20180615
Microsoft 20180615
eScan 20180615
NANO-Antivirus 20180615
Palo Alto Networks (Known Signatures) 20180615
Panda 20180614
Qihoo-360 20180615
Rising 20180615
SentinelOne (Static ML) 20180225
Sophos AV 20180615
SUPERAntiSpyware 20180614
Symantec 20180615
Symantec Mobile Insight 20180614
TACHYON 20180614
Tencent 20180615
TheHacker 20180613
TotalDefense 20180615
TrendMicro 20180615
TrendMicro-HouseCall 20180615
Trustlook 20180615
VBA32 20180614
VIPRE 20180615
ViRobot 20180615
Webroot 20180615
Yandex 20180614
Zillya 20180614
ZoneAlarm by Check Point 20180615
Zoner 20180614
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
Main executable
Package path /Shockwave_Uninstaller.app/Contents/MacOS/ShockwaveUninstaller
Detection ratio 0 / 56 when this report was generated
File size 18752 Bytes
HFS File ID 26
DMG HFS Property List
CFBundleInfoDictionaryVersion 6.0
NSHumanReadableCopyright Copyright © 1985-2013 Adobe Systems, Inc. All rights reserved.
DTXcodeBuild 4D502
CFBundleIdentifier com.adobe.shockwave_12_0.application
DTSDKName macosx10.7
DTSDKBuild 11C63
CFBundleShortVersionString 12.0
BuildMachineOSBuild 11D50b
CFBundleExecutable ShockwaveUninstaller
LSMinimumSystemVersion 10.7
CFBundleVersion 12.0
CFBundleIconFile shockwaveuninstall.icns
DTPlatformBuild 4D502
NSMainNibFile MainMenu
DTXcode 0421
CFBundleDevelopmentRegion en
DTCompiler com.apple.compilers.llvm.clang.1_0
CFBundleSignature ????
DTPlatformVersion GM
CFBundleName Shockwave
CFBundlePackageType APPL
NSPrincipalClass NSApplication
Contained Mac OS X executables
Contained file bundles
BLKX Table
Entry Attributes
Driver Descriptor Map (DDM : 0) 0x0050
Apple (Apple_partition_map : 1) 0x0050
disk image (Apple_HFS : 2) 0x0050
(Apple_Free : 3) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
18761384
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x18761384
XML length
9927
PLST keys
resource-fork
Compressed bundles
File identification
MD5 381b23d9d1b21fbe448f912181021216
SHA1 cb02b046cc03174e6de59fe976c1d9acdab0c10f
SHA256 942fc118b5eef202e2df90ae14c6c31f413f040557c6184be45684f66de0630a
ssdeep
393216:9vAbKFEvT4h4pd4Khu4XuIUaWiHmEGuDYB0EoU6id6iFWEQ:9vAuFEvT24Fhu4+IUaWivS6UzdzwE

File size 17.9 MB ( 18771823 bytes )
File type Macintosh Disk Image
Magic literal
VAX COFF executable not stripped - version 376

TrID ZLIB compressed data (var. 1) (100.0%)
Tags
dmg

VirusTotal metadata
First submission 2016-10-03 05:54:24 UTC ( 2 years, 4 months ago )
Last submission 2018-07-25 13:20:52 UTC ( 6 months, 4 weeks ago )
File names Shockwave Player V. 12.2.8.198__Mac OSX__[siblah.blogspot.com].dmg
Shockwave_Installer_Full_64bit.dmg
AdobeShockwavePlayer.dmg
adobeshockwaveplayer_12.2.7.197_mac.dmg
916145
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Created processes
DNS requests
TCP connections