| File Name | OpenNet.Red32n |
| File Type |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
| Scanner Version | 1.0.218.174 |
| Database Version | 2025-06-21 09:00:29 UTC |
Malware family: Heuristic
| Hash Type | Value | Action |
|---|---|---|
| MD5 |
50c1e25486b4d1e1f8002c0793f43367
|
|
| SHA1 |
730253d2886f8acafd7f67899796ad3a783d592c
|
|
| SHA256 |
1c67c1b51acb95326662f192efce7c15ed4a0f2b779c1f33443d048bae1b09c2
|
|
| SHA512 |
6d6ffaf1bbf5c802f7471466e909e2ef1486a511905ab82874815d54bd8989c992d5817f908a6a6b025ba3b975981a7bb86560fd246a39146438d5deebd42b5d
|
|
| ImpHash |
104181d5ff93d66e5774dc385882b26b
|
| Image Base | 0x10000000 |
| Entry Point | 0x1038e7cc |
| Compilation Time | 2015-08-18 00:48:30 |
| Checksum | 0x00000000 (Actual: 0x0019101c) |
| OS Version | 6.0 |
| PEiD Signatures |
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
| PDB Path | C:\Users\maurice\Documents\GitHub\OpenNet\OpenNet\Bin\Release\OpenNet.pdb |
| Digital Signature | No valid SignedData structure was found. |
| Imports |
6 libraries
KERNEL32, USER32, WS2_32, dbghelp, WININET, SHLWAPI |
| Exports | 9 functions |
| Resources | 0 Resources |
| Sections | 11 Sections |
| Name | Virtual Address | Virtual Size | Raw Size | Entropy | Characteristics | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
716,067 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.text1 |
0x000b0000 |
8,928 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.rdata |
0x000b3000 |
162,540 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.data |
0x000db000 |
123,484 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.data1 |
0x000fa000 |
34,408 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.debug_o |
0x00103000 |
76,827 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.trace |
0x00116000 |
1,596 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
_RDATA |
0x00117000 |
1,344 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
D41D8CD98F00B204E9800998ECF8427E |
.vmp0 |
0x00118000 |
1,104,475 bytes | 0 bytes | 0.00 (Normal) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.vmp1 |
0x00226000 |
1,608,304 bytes | 1,608,704 bytes | 7.93 (Packed/Encrypted) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
B8D69E83F8DC37D7C86514CF00F4EDF6 |
.reloc |
0x003af000 |
204 bytes | 512 bytes | 2.27 (Normal) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
09A5CE9AB4658D6B011FCB0F29D98F54 |
1 section(s) with high entropy (≥7.5) detected - possible packing/encryption
This file is not digitally signed.
⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources
No valid SignedData structure was found.
Recommendation: Verify the file source and ensure it comes from a trusted publisher.
Gridinsoft has the capability to identify and eliminate Trojan.Heur!.032120A0 without requiring further user intervention.
Download Anti-MalwareFollow these steps to completely remove the threat from your system
