home

msnsusii.exe

Betriebssystem Microsoft Windows 2000

Test Company

While the file properties state the file is developed by 'Microsoft Corporation', this is not the case and it is designed just to look like a legitimate Microsoft system file. The application msnsusii.exe, “Win32 Cabinet Self-Extractor ” by Test Company has been detected as a potentially unwanted program by 1 anti-malware scanner with very strong indications that the file is a potential threat.
Publisher:
Microsoft Corporation  (signed by Test Company)

Product:
Betriebssystem Microsoft(R) Windows (R) 2000

Description:
Win32 Cabinet Self-Extractor

Version:
5.50.4134.600

MD5:
9bf7d1688e9c13a7bf0e05686d16dd0f

SHA-1:
f79973d7cb6660bd94ecef31c38dad8b5918afa8

Scanner detections:
1 / 68

Status:
Potentially unwanted

Analysis date:
4/26/2024 5:27:38 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.TestCompany (M)
16.2.15.7

File size:
961.7 KB (984,792 bytes)

Product version:
5.50.4134.600

Copyright:
Copyright (C) Microsoft Corp. 1981-2000

Original file name:
WEXTRACT.EXE

File type:
Executable application (Win32 EXE)

Language:
German (Germany)

Common path:
C:\Program Files\msn\msncorefiles\install\msnsusii.exe

Digital Signature
Signed by:
Test Company

Authority:
Root Agency

Valid from:
4/5/2001 12:11:27 AM

Valid to:
1/1/2040 12:59:59 AM

Subject:
CN=Test Company

Issuer:
CN=Root Agency

Serial number:
B00160C2D80DAC824AC6A36808C3F360

File PE Metadata
Compilation timestamp:
6/6/2000 10:43:56 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
5.12

CTPH (ssdeep):
24576:7QR5dcRUuheGvHPjPwWLRCi6Kr9NYdjNqzOQamRCiuM4qQ6:7i4heGvbPwURCi6e7TqdqQ6

Entry address:
0x2891

Entry point:
0B, EF, F2, FF, CE, 1C, 53, 80, EF, 23, 69, F5, E3, B8, F0, B0, 8D, 05, 56, 82, CD, 4B, F6, C6, D2, 0F, AF, D2, 86, F5, E8, 66, 00, 00, 00, 69, F8, 72, 67, A9, 05, 03, D8, F2, 83, E1, 00, 00, DA, 8A, C6, 81, C1, FA, 10, 00, 00, F2, 0B, FF, 81, E9, 8B, 05, 00, 00, 74, 03, 08, CA, F2, F2, 23, C3, 0F, AF, FD, C6, C3, E9, 81, E9, 31, 0D, 00, 00, B3, A3, 43, F6, C1, E0, 81, C1, 30, 0D, 00, 00, 8D, 15, 4B, 1D, 4D, 5E, 89, D8, 89, C0, 8B, DB, F6, C2, AB, 80, E7, C5, 69, F6, 1F, A4, 01, A4, 0F, B7, F5, 81, F9, DE...
 
[+]

Code size:
34 KB (34,816 bytes)

Remove msnsusii.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.