HRJS[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

HRJS.exe
Size

2.9MB
MD5

8f18d355d39b27093b88a0c0ad2fdc5c
SHA1

e8e0df4222f3a805eae8fde34060e8bcd22d1db7
SHA256

33d99a6e9aef460b18fc9b624e2d158756adfca03c6a8da095b22d750daecb9d
SHA512

76cd2058a5f5bfcdae09da4dde52fa06e78361f1d534a39a6673390c074ce64a7b7eba1173322f6181a33881f9caae81e30d45ac1b6dd88ad9a71ceeab3702c7
SSDEEP

24576:X1ojUL/jRwr2ylBZZhM65WXstoEf0RJq1j/QYs2gFCpf5f1YIpFNQTjZh3hc:wU3yyfX3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
HRJS.exe

Files

HRJS.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ