× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c816a8037fa0b61e468354ea06139228bc25f829b09b353f309eebbdecab8b09
File name: Mumble-1.3.0~2569~gd196a4b~snapshot.dmg
Detection ratio: 0 / 57
Analysis date: 2018-01-02 20:07:25 UTC ( 7 months, 1 week ago ) View latest
Antivirus Result Update
Ad-Aware 20171225
AegisLab 20180102
AhnLab-V3 20180102
Alibaba 20180102
ALYac 20180102
Antiy-AVL 20180102
Arcabit 20180102
Avast 20180102
Avast-Mobile 20180102
AVG 20180102
Avira (no cloud) 20180102
AVware 20180102
Baidu 20180102
BitDefender 20180102
Bkav 20180102
CAT-QuickHeal 20180102
ClamAV 20180102
CMC 20180102
Comodo 20180102
CrowdStrike Falcon (ML) 20171016
Cybereason None
Cylance 20180102
Cyren 20180102
DrWeb 20180102
eGambit 20180102
Emsisoft 20180102
Endgame 20171130
ESET-NOD32 20180102
F-Prot 20180102
F-Secure 20180102
Fortinet 20180102
GData 20180102
Sophos ML 20170914
Jiangmin 20180102
K7AntiVirus 20180102
K7GW 20180102
Kaspersky 20180102
Kingsoft 20180102
Malwarebytes 20180102
MAX 20180102
McAfee 20180102
McAfee-GW-Edition 20180102
Microsoft 20180102
eScan 20180102
NANO-Antivirus 20180102
nProtect 20180102
Palo Alto Networks (Known Signatures) 20180102
Panda 20180102
Qihoo-360 20180102
Rising 20171230
SentinelOne (Static ML) 20171224
Sophos AV 20180102
SUPERAntiSpyware 20180102
Symantec 20180102
Tencent 20180102
TheHacker 20180102
TrendMicro-HouseCall 20180102
Trustlook 20180102
VBA32 20171229
VIPRE 20180102
ViRobot 20180102
Webroot 20180102
WhiteArmor 20171226
Yandex 20171229
Zillya 20180102
ZoneAlarm by Check Point 20180102
Zoner 20180102
The file being studied is an Apple Disk Image! More specifically it follows the Universal Disk Image Format, commonly found with the DMG extension.
File signature
Identifier net.sourceforge.mumble.Mumble
Format bundle with Mach-O universal (i386 x86_64)
CDHash 5916415193da29ca3a3d399ae34d3335ae36928c
Signature size 8914
Authority Developer ID Application: Mikkel Krautz (CXBDCLUHDT)
Authority Developer ID Certification Authority
Authority Apple Root CA
Timestamp Aug 7, 2017, 3:47:13 AM
Info.plist entries 12
TeamIdentifier CXBDCLUHDT
Signature verification Valid Signature
Signing Certificates
[+] Mikkel Krautz
Status Valid
Issuer Apple Inc.
Valid from 08:32 PM 04/13/2017
Valid to 08:32 PM 04/14/2022
Valid usage Digital Signature, Code Signing
Algorithm sha256WithRSAEncryption
Thumbprint C9F8B5B977908B8F36949044D48523A456AE197E
Serial number 1C 78 B2 A2 E4 9C 96 06
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 10:12 PM 02/01/2012
Valid to 10:12 PM 02/01/2027
Valid usage Digital Signature, Certificate Sign, CRL Sign
Algorithm sha256WithRSAEncryption
Thumbprint 3B166C3B7DC4B751C9FE2AFAB9135641E388E186
Serial number 18 7A A9 A8 C2 96 21 0C
[+] Apple Inc.
Status Valid
Issuer Apple Inc.
Valid from 09:40 PM 04/25/2006
Valid to 09:40 PM 02/09/2035
Valid usage Certificate Sign, CRL Sign
Algorithm sha1WithRSAEncryption
Thumbprint 611E5B662C593A08FF58D14AE22452D198DF6C60
Serial number 2
Main executable
Package path /Mumble.app/Contents/MacOS/Mumble
Detection ratio Unknown when this report was generated
File size 43640400 Bytes
HFS File ID 32
DMG HFS Property List
CFBundleSignature MBLE
CFBundleIconFile mumble.icns
NSHumanReadableCopyright Copyright (c) 2005-2017 The Mumble Developers
CFBundleGetInfoString An open source, low-latency, high quality voice chat software primarily intended for use while gaming.
CFBundleIdentifier net.sourceforge.mumble.Mumble
CFBundleExecutable Mumble
LSMinimumSystemVersion 10.6.0
CFBundlePackageType APPL
NSPrincipalClass NSApplication
CFBundleVersion 1.3.0~2569~gd196a4b~snapshot
NSHighResolutionCapable True
CFBundleURLTypes {u'CFBundleURLName': u'Mumble Server URL', u'CFBundleURLSchemes': [u'mumble']}
Contained Mac OS X executables
Contained file bundles
BLKX Table
Entry Attributes
Protective Master Boot Record (MBR : 0) 0x0050
GPT Header (Primary GPT Header : 1) 0x0050
GPT Partition Data (Primary GPT Table : 2) 0x0050
(Apple_Free : 3) 0x0050
disk image (Apple_HFS : 4) 0x0050
(Apple_Free : 5) 0x0050
GPT Partition Data (Backup GPT Table : 6) 0x0050
GPT Header (Backup GPT Header : 7) 0x0050
DMG XML Property List
Entry Attributes
ID:0 0x0050
DMG structural properties
DMG version
4
Data fork offset
0x0
Data fork length
19332963
Resource fork offset
0x0
Resource fork length
0
Resource fork keys
blkx, plst
Running data fork offset
0x0
XML offset
0x19332963
XML length
11057
PLST keys
resource-fork
File identification
MD5 e3a6c3cf68eb3750643c7f242b55ab47
SHA1 ec4d6ff3260ab2457fb70332ff86266b9208b869
SHA256 c816a8037fa0b61e468354ea06139228bc25f829b09b353f309eebbdecab8b09
ssdeep
393216:bnJVHrQ0KE02xl8NCooqVAAYxJ0BjWTGVuPFBOGk8JW0XEbvh6JLJn+GNQ:LQ0KFwCCoo3NxJkjGGwOUJWvbvh6JLJn

File size 18.5 MB ( 19353999 bytes )
File type Macintosh Disk Image
Magic literal
bzip2 compressed data, block size = 100k

TrID Macintosh Disk image (BZ2 compressed) (96.3%)
bzip2 compressed archive (3.6%)
Tags
dmg

VirusTotal metadata
First submission 2018-01-02 20:07:25 UTC ( 7 months, 1 week ago )
Last submission 2018-01-02 20:07:25 UTC ( 7 months, 1 week ago )
File names Mumble-1.3.0~2569~gd196a4b~snapshot.dmg
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Condensed report! The following is a condensed report of the behaviour of the file when executed in a controlled environment. The actions and events described were either performed by the file itself or by any other process launched by the executed file or subjected to code injection by the executed file.
Opened files
Read files
Written files
Moved files
Created processes
HTTP requests
DNS requests
TCP connections