home

hjuixaxc.exe

UNINFO SISTEMAS LTDA ME

The application hjuixaxc.exe by UNINFO SISTEMASA ME has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
UNINFO SISTEMAS LTDA ME  (signed and verified)

MD5:
4ec896db59f5eda7aceecc492bd3f113

SHA-1:
bc99a6bcbb38888d376140018a6ce8f0e9e4e0dd

SHA-256:
faa609ba41d334bc25e5f482863205e003c9626265e7b1656a785e52a8268f8b

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
11/15/2024 7:54:37 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.UNINFOSISTEMASAME (M)
16.2.10.15

File size:
13.1 MB (13,712,904 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\users\{user}\appdata\roaming\microsoft\windows\start menu\programs\startup\hjuixaxc.exe

Digital Signature
Signed by:
UNINFO SISTEMAS LTDA ME

Authority:
thawte, Inc.

Valid from:
12/7/2015 10:00:00 PM

Valid to:
9/24/2016 8:59:59 PM

Subject:
CN=UNINFO SISTEMAS LTDA ME, O=UNINFO SISTEMAS LTDA ME, L=chapeco, S=santa catarina, C=BR

Issuer:
CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US

Serial number:
0BDA51D61C80F17A49E30410A43ACF35

File PE Metadata
Compilation timestamp:
12/21/2015 11:26:23 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
98304:06AD3+ikVcgSdJPVupKf326sfQCideGZuW+5xlllWP06cfVKg+7888qb8888twiB:0x+0DDsfQC6ZZaD4rsAWdFcpWu4rcW

Entry address:
0x375728

Entry point:
55, 8B, EC, 83, C4, F0, B8, F4, 7C, 76, 00, E8, 7C, 97, C9, FF, A1, 6C, 53, 78, 00, 8B, 00, E8, 58, 5F, E4, FF, A1, 6C, 53, 78, 00, 8B, 00, C6, 40, 6F, 00, 8B, 0D, 9C, 4F, 78, 00, A1, 6C, 53, 78, 00, 8B, 00, 8B, 15, 84, 2D, 75, 00, E8, 4D, 5F, E4, FF, A1, 6C, 53, 78, 00, 8B, 00, E8, 9D, 60, E4, FF, E8, E8, 4B, C9, FF, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Developed / compiled with:
Microsoft Visual C++

Code size:
3.5 MB (3,620,864 bytes)

User Start Menu Item
Name:
hjuixaxc.exe


Remove hjuixaxc.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.