File name:

1 (26)

Full analysis: https://app.any.run/tasks/1e28181c-b763-48e3-9312-d1bf3117ba21
Verdict: Malicious activity
Analysis date: March 24, 2025, 18:44:37
OS: Windows 10 Professional (build: 19045, 64 bit)
Indicators:
MIME: application/vnd.microsoft.portable-executable
File info: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 3 sections
MD5:

0CB7616511FC30E49BC8D776A7B677C0

SHA1:

5048290197F3D79BA156D49DD2DDBB8F21978B3C

SHA256:

6AF3347F45DDC46DDF27E5737E3966D930868ACF0F8901D8C88B06E1EF21C16D

SSDEEP:

6144:+7K0fswJvDoHA5l3fpevRsLx/tBtlvJGBH/Wye6Egk/8SwjwpyAvEh8ifEB0si/a:++irqHA5tfoSBPhaHOye6Eox4DxmDsR

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    No malicious indicators.

  • SUSPICIOUS

    • Executable content was dropped or overwritten

      • Unicorn-54638.exe (PID: 4880)
      • 1 (26).exe (PID: 4208)
      • Unicorn-2469.exe (PID: 6388)
      • Unicorn-48141.exe (PID: 3900)
      • Unicorn-20512.exe (PID: 4244)
      • Unicorn-36294.exe (PID: 6564)
      • Unicorn-44244.exe (PID: 5256)
      • Unicorn-19639.exe (PID: 6800)
      • Unicorn-44462.exe (PID: 5048)
      • Unicorn-55737.exe (PID: 5376)
      • Unicorn-7295.exe (PID: 728)
      • Unicorn-24186.exe (PID: 5640)
      • Unicorn-65219.exe (PID: 1228)
      • Unicorn-5157.exe (PID: 2140)
      • Unicorn-13325.exe (PID: 6644)
      • Unicorn-17144.exe (PID: 5504)
      • Unicorn-47342.exe (PID: 6512)
      • Unicorn-47897.exe (PID: 1532)
      • Unicorn-55510.exe (PID: 5984)
      • Unicorn-25338.exe (PID: 5756)
      • Unicorn-41120.exe (PID: 5260)
      • Unicorn-1960.exe (PID: 2240)
      • Unicorn-61540.exe (PID: 6592)
      • Unicorn-27698.exe (PID: 5360)
      • Unicorn-62116.exe (PID: 5228)
      • Unicorn-50419.exe (PID: 960)
      • Unicorn-4747.exe (PID: 6436)
      • Unicorn-38166.exe (PID: 2040)
      • Unicorn-19138.exe (PID: 1912)
      • Unicorn-64154.exe (PID: 6656)
      • Unicorn-51016.exe (PID: 4608)
      • Unicorn-28458.exe (PID: 6540)
      • Unicorn-42272.exe (PID: 6480)
      • Unicorn-30574.exe (PID: 6228)
      • Unicorn-61130.exe (PID: 7200)
      • Unicorn-12021.exe (PID: 7176)
      • Unicorn-5899.exe (PID: 4696)
      • Unicorn-53517.exe (PID: 7212)
      • Unicorn-40518.exe (PID: 7252)
      • Unicorn-4856.exe (PID: 7300)
      • Unicorn-16014.exe (PID: 7220)
      • Unicorn-63616.exe (PID: 7308)
      • Unicorn-309.exe (PID: 7576)
      • Unicorn-57486.exe (PID: 7316)
      • Unicorn-45889.exe (PID: 7292)
      • Unicorn-33658.exe (PID: 7656)
      • Unicorn-2355.exe (PID: 7560)
      • Unicorn-14030.exe (PID: 7448)
      • Unicorn-8504.exe (PID: 7440)
      • Unicorn-47472.exe (PID: 7528)
      • Unicorn-26567.exe (PID: 7364)
      • Unicorn-22584.exe (PID: 7336)
      • Unicorn-46486.exe (PID: 7744)
      • Unicorn-62054.exe (PID: 7424)
      • Unicorn-34788.exe (PID: 7768)
      • Unicorn-44877.exe (PID: 7324)
      • Unicorn-3294.exe (PID: 7412)
      • Unicorn-52900.exe (PID: 7924)
      • Unicorn-30128.exe (PID: 7696)
      • Unicorn-10414.exe (PID: 7836)
      • Unicorn-32698.exe (PID: 7380)
      • Unicorn-11099.exe (PID: 7688)
      • Unicorn-45718.exe (PID: 7396)
      • Unicorn-43004.exe (PID: 7348)
      • Unicorn-57076.exe (PID: 7892)
      • Unicorn-51727.exe (PID: 7388)
      • Unicorn-48624.exe (PID: 7984)
      • Unicorn-42018.exe (PID: 7860)
      • Unicorn-45562.exe (PID: 8244)
      • Unicorn-53455.exe (PID: 7968)
      • Unicorn-35002.exe (PID: 8224)
      • Unicorn-40740.exe (PID: 7876)
      • Unicorn-31690.exe (PID: 7540)
      • Unicorn-42210.exe (PID: 7816)
      • Unicorn-22152.exe (PID: 7868)
      • Unicorn-12945.exe (PID: 7404)
      • Unicorn-31587.exe (PID: 7244)
      • Unicorn-64887.exe (PID: 7932)
      • Unicorn-51504.exe (PID: 8832)
      • Unicorn-62054.exe (PID: 7432)
      • Unicorn-17248.exe (PID: 8872)
      • Unicorn-30983.exe (PID: 8864)
      • Unicorn-23138.exe (PID: 7356)
      • Unicorn-29740.exe (PID: 8428)
      • Unicorn-37944.exe (PID: 6740)
      • Unicorn-63424.exe (PID: 7372)
      • Unicorn-30896.exe (PID: 7976)
      • Unicorn-34353.exe (PID: 8068)
      • Unicorn-21188.exe (PID: 8296)
      • Unicorn-50486.exe (PID: 7828)
      • Unicorn-60850.exe (PID: 8548)
      • Unicorn-54337.exe (PID: 7884)
      • Unicorn-62199.exe (PID: 7996)
      • Unicorn-49584.exe (PID: 8120)
      • Unicorn-55406.exe (PID: 7888)
      • Unicorn-53429.exe (PID: 8768)
      • Unicorn-50497.exe (PID: 8988)
      • Unicorn-44083.exe (PID: 9100)
      • Unicorn-46552.exe (PID: 8532)
      • Unicorn-14171.exe (PID: 8712)
      • Unicorn-3289.exe (PID: 8364)
      • Unicorn-1627.exe (PID: 8476)
      • Unicorn-6579.exe (PID: 9116)
      • Unicorn-40648.exe (PID: 7912)
      • Unicorn-47591.exe (PID: 8684)
      • Unicorn-62002.exe (PID: 9044)
      • Unicorn-32454.exe (PID: 8784)
      • Unicorn-63934.exe (PID: 8316)
      • Unicorn-48432.exe (PID: 7788)
      • Unicorn-54026.exe (PID: 8980)
      • Unicorn-23139.exe (PID: 8604)
      • Unicorn-27300.exe (PID: 9360)
      • Unicorn-58032.exe (PID: 856)
      • Unicorn-19408.exe (PID: 9188)
      • Unicorn-31596.exe (PID: 9912)
      • Unicorn-28373.exe (PID: 9932)
      • Unicorn-39832.exe (PID: 6972)
      • Unicorn-53621.exe (PID: 8728)
      • Unicorn-29714.exe (PID: 9160)
      • Unicorn-17976.exe (PID: 10016)
      • Unicorn-10497.exe (PID: 5576)
      • Unicorn-20730.exe (PID: 9264)
      • Unicorn-32646.exe (PID: 8668)
      • Unicorn-13159.exe (PID: 10716)
      • Unicorn-50928.exe (PID: 8792)
      • Unicorn-55334.exe (PID: 9372)
      • Unicorn-36708.exe (PID: 11208)
      • Unicorn-51800.exe (PID: 11224)
      • Unicorn-165.exe (PID: 8916)
      • Unicorn-30612.exe (PID: 10188)
      • Unicorn-53621.exe (PID: 8736)
      • Unicorn-57664.exe (PID: 9540)
      • Unicorn-54529.exe (PID: 8104)
      • Unicorn-14493.exe (PID: 9320)
      • Unicorn-54628.exe (PID: 8588)
      • Unicorn-7093.exe (PID: 9592)
      • Unicorn-38458.exe (PID: 9284)
      • Unicorn-15235.exe (PID: 10544)
      • Unicorn-2911.exe (PID: 8500)
      • Unicorn-36730.exe (PID: 8676)
      • Unicorn-39640.exe (PID: 10740)
      • Unicorn-30294.exe (PID: 8440)
      • Unicorn-53429.exe (PID: 8468)
      • Unicorn-26733.exe (PID: 8004)
      • Unicorn-21078.exe (PID: 9428)
      • Unicorn-52080.exe (PID: 6668)
      • Unicorn-15131.exe (PID: 8964)
      • Unicorn-9677.exe (PID: 8092)
      • Unicorn-65536.exe (PID: 8020)
      • Unicorn-14455.exe (PID: 8972)
      • Unicorn-1550.exe (PID: 12384)
      • Unicorn-65209.exe (PID: 9860)
      • Unicorn-18477.exe (PID: 9380)
      • Unicorn-8743.exe (PID: 8340)
      • Unicorn-59780.exe (PID: 12392)
      • Unicorn-28208.exe (PID: 12428)
      • Unicorn-19526.exe (PID: 1676)
      • Unicorn-51416.exe (PID: 10468)
      • Unicorn-55702.exe (PID: 7708)
      • Unicorn-31406.exe (PID: 9692)
      • Unicorn-14638.exe (PID: 9940)
      • Unicorn-51229.exe (PID: 8420)
      • Unicorn-45775.exe (PID: 9348)
      • Unicorn-41778.exe (PID: 10644)
      • Unicorn-28749.exe (PID: 13724)
      • Unicorn-27465.exe (PID: 13716)
      • Unicorn-56709.exe (PID: 13732)
      • Unicorn-20590.exe (PID: 3124)
      • Unicorn-41982.exe (PID: 12592)
      • Unicorn-53860.exe (PID: 8324)
      • Unicorn-10641.exe (PID: 11660)
      • Unicorn-63860.exe (PID: 10416)
      • Unicorn-43636.exe (PID: 9388)
      • Unicorn-28692.exe (PID: 9404)
      • Unicorn-54130.exe (PID: 10552)
      • Unicorn-1872.exe (PID: 4152)
      • Unicorn-12754.exe (PID: 9248)
      • Unicorn-7596.exe (PID: 9952)
      • Unicorn-62905.exe (PID: 13220)
      • Unicorn-3345.exe (PID: 13932)
      • Unicorn-29512.exe (PID: 13700)
      • Unicorn-22906.exe (PID: 13592)
      • Unicorn-65438.exe (PID: 720)
      • Unicorn-28042.exe (PID: 10668)
      • Unicorn-7643.exe (PID: 10972)
      • Unicorn-65183.exe (PID: 5556)
      • Unicorn-52464.exe (PID: 4932)
      • Unicorn-41778.exe (PID: 10684)
      • Unicorn-32047.exe (PID: 11108)
      • Unicorn-30986.exe (PID: 15484)
      • Unicorn-57628.exe (PID: 15468)
      • Unicorn-8427.exe (PID: 15504)
      • Unicorn-9271.exe (PID: 12560)
      • Unicorn-18448.exe (PID: 8640)
      • Unicorn-38431.exe (PID: 11168)
      • Unicorn-3974.exe (PID: 13324)
      • Unicorn-26894.exe (PID: 10848)
      • Unicorn-2049.exe (PID: 9412)
      • Unicorn-53580.exe (PID: 9532)
      • Unicorn-4254.exe (PID: 11644)
      • Unicorn-51416.exe (PID: 10456)
      • Unicorn-22060.exe (PID: 10024)
      • Unicorn-49231.exe (PID: 10964)
      • Unicorn-61483.exe (PID: 11008)
      • Unicorn-30154.exe (PID: 11912)
      • Unicorn-61441.exe (PID: 12684)
      • Unicorn-42558.exe (PID: 13280)
      • Unicorn-41717.exe (PID: 12640)
      • Unicorn-28831.exe (PID: 4572)
      • Unicorn-25161.exe (PID: 12292)
      • Unicorn-59283.exe (PID: 10528)
      • Unicorn-62988.exe (PID: 8508)
      • Unicorn-13123.exe (PID: 9636)
      • Unicorn-9402.exe (PID: 9772)
      • Unicorn-29844.exe (PID: 9832)
      • Unicorn-9681.exe (PID: 10992)
      • Unicorn-46631.exe (PID: 11988)
      • Unicorn-6377.exe (PID: 13628)
      • Unicorn-55220.exe (PID: 12272)
      • Unicorn-26632.exe (PID: 5308)
      • Unicorn-35058.exe (PID: 9996)
      • Unicorn-49854.exe (PID: 10752)
      • Unicorn-1732.exe (PID: 11140)
      • Unicorn-55033.exe (PID: 9656)
      • Unicorn-3895.exe (PID: 15592)
      • Unicorn-46351.exe (PID: 9708)
      • Unicorn-53533.exe (PID: 9972)
      • Unicorn-49541.exe (PID: 7900)
      • Unicorn-3481.exe (PID: 8556)
      • Unicorn-57809.exe (PID: 10204)
      • Unicorn-3968.exe (PID: 10660)
      • Unicorn-48738.exe (PID: 11132)
      • Unicorn-38474.exe (PID: 13272)
      • Unicorn-7643.exe (PID: 10976)
      • Unicorn-27570.exe (PID: 12448)
      • Unicorn-26894.exe (PID: 10856)
      • Unicorn-11715.exe (PID: 8276)
      • Unicorn-49728.exe (PID: 11456)
      • Unicorn-63926.exe (PID: 11636)
      • Unicorn-53668.exe (PID: 8128)
      • Unicorn-52490.exe (PID: 8352)
      • Unicorn-21846.exe (PID: 9664)
      • Unicorn-14249.exe (PID: 11180)
      • Unicorn-48024.exe (PID: 17396)
      • Unicorn-57286.exe (PID: 9724)
      • Unicorn-30958.exe (PID: 14736)
      • Unicorn-51343.exe (PID: 12172)
      • Unicorn-56159.exe (PID: 17404)
      • Unicorn-10153.exe (PID: 9232)
      • Unicorn-14851.exe (PID: 5408)
      • Unicorn-54240.exe (PID: 13212)
      • Unicorn-27514.exe (PID: 9620)
      • Unicorn-54234.exe (PID: 12568)
      • Unicorn-24189.exe (PID: 16312)
      • Unicorn-39766.exe (PID: 10084)
      • Unicorn-43881.exe (PID: 11968)
      • Unicorn-21930.exe (PID: 8268)
      • Unicorn-18343.exe (PID: 1088)

    • Starts itself from another location

      • 1 (26).exe (PID: 4208)
      • Unicorn-2469.exe (PID: 6388)
      • Unicorn-54638.exe (PID: 4880)
      • Unicorn-48141.exe (PID: 3900)
      • Unicorn-20512.exe (PID: 4244)
      • Unicorn-44244.exe (PID: 5256)
      • Unicorn-19639.exe (PID: 6800)
      • Unicorn-44462.exe (PID: 5048)
      • Unicorn-55737.exe (PID: 5376)
      • Unicorn-7295.exe (PID: 728)
      • Unicorn-36294.exe (PID: 6564)
      • Unicorn-65219.exe (PID: 1228)
      • Unicorn-5157.exe (PID: 2140)
      • Unicorn-13325.exe (PID: 6644)
      • Unicorn-24186.exe (PID: 5640)
      • Unicorn-17144.exe (PID: 5504)
      • Unicorn-47342.exe (PID: 6512)
      • Unicorn-47897.exe (PID: 1532)
      • Unicorn-55510.exe (PID: 5984)
      • Unicorn-41120.exe (PID: 5260)
      • Unicorn-1960.exe (PID: 2240)
      • Unicorn-61540.exe (PID: 6592)
      • Unicorn-62116.exe (PID: 5228)
      • Unicorn-58032.exe (PID: 856)
      • Unicorn-27698.exe (PID: 5360)
      • Unicorn-38166.exe (PID: 2040)
      • Unicorn-19138.exe (PID: 1912)
      • Unicorn-64154.exe (PID: 6656)
      • Unicorn-4747.exe (PID: 6436)
      • Unicorn-65438.exe (PID: 720)
      • Unicorn-42272.exe (PID: 6480)
      • Unicorn-30574.exe (PID: 6228)
      • Unicorn-51016.exe (PID: 4608)
      • Unicorn-28458.exe (PID: 6540)
      • Unicorn-61130.exe (PID: 7200)
      • Unicorn-5899.exe (PID: 4696)
      • Unicorn-31587.exe (PID: 7244)
      • Unicorn-53517.exe (PID: 7212)
      • Unicorn-40518.exe (PID: 7252)
      • Unicorn-50419.exe (PID: 960)
      • Unicorn-4856.exe (PID: 7300)
      • Unicorn-16014.exe (PID: 7220)
      • Unicorn-63616.exe (PID: 7308)
      • Unicorn-25338.exe (PID: 5756)
      • Unicorn-57486.exe (PID: 7316)
      • Unicorn-45889.exe (PID: 7292)
      • Unicorn-33658.exe (PID: 7656)
      • Unicorn-309.exe (PID: 7576)
      • Unicorn-2355.exe (PID: 7560)
      • Unicorn-14030.exe (PID: 7448)
      • Unicorn-8504.exe (PID: 7440)
      • Unicorn-47472.exe (PID: 7528)
      • Unicorn-26567.exe (PID: 7364)
      • Unicorn-46486.exe (PID: 7744)
      • Unicorn-62054.exe (PID: 7424)
      • Unicorn-22584.exe (PID: 7336)
      • Unicorn-44877.exe (PID: 7324)
      • Unicorn-3294.exe (PID: 7412)
      • Unicorn-32698.exe (PID: 7380)
      • Unicorn-30128.exe (PID: 7696)
      • Unicorn-34788.exe (PID: 7768)
      • Unicorn-52900.exe (PID: 7924)
      • Unicorn-11099.exe (PID: 7688)
      • Unicorn-45718.exe (PID: 7396)
      • Unicorn-43004.exe (PID: 7348)
      • Unicorn-10414.exe (PID: 7836)
      • Unicorn-57076.exe (PID: 7892)
      • Unicorn-51727.exe (PID: 7388)
      • Unicorn-45562.exe (PID: 8244)
      • Unicorn-48624.exe (PID: 7984)
      • Unicorn-42018.exe (PID: 7860)
      • Unicorn-53455.exe (PID: 7968)
      • Unicorn-35002.exe (PID: 8224)
      • Unicorn-12945.exe (PID: 7404)
      • Unicorn-55702.exe (PID: 7708)
      • Unicorn-42210.exe (PID: 7816)
      • Unicorn-22152.exe (PID: 7868)
      • Unicorn-64887.exe (PID: 7932)
      • Unicorn-51504.exe (PID: 8832)
      • Unicorn-30983.exe (PID: 8864)
      • Unicorn-62054.exe (PID: 7432)
      • Unicorn-17248.exe (PID: 8872)
      • Unicorn-23138.exe (PID: 7356)
      • Unicorn-29740.exe (PID: 8428)
      • Unicorn-63424.exe (PID: 7372)
      • Unicorn-30896.exe (PID: 7976)
      • Unicorn-21188.exe (PID: 8296)
      • Unicorn-34353.exe (PID: 8068)
      • Unicorn-37944.exe (PID: 6740)
      • Unicorn-2911.exe (PID: 8500)
      • Unicorn-60850.exe (PID: 8548)
      • Unicorn-31690.exe (PID: 7540)
      • Unicorn-26733.exe (PID: 8004)
      • Unicorn-53668.exe (PID: 8128)
      • Unicorn-55406.exe (PID: 7888)
      • Unicorn-49584.exe (PID: 8120)
      • Unicorn-50497.exe (PID: 8988)
      • Unicorn-14455.exe (PID: 8972)
      • Unicorn-53429.exe (PID: 8768)
      • Unicorn-46552.exe (PID: 8532)
      • Unicorn-62199.exe (PID: 7996)
      • Unicorn-50486.exe (PID: 7828)
      • Unicorn-44083.exe (PID: 9100)
      • Unicorn-3289.exe (PID: 8364)
      • Unicorn-18343.exe (PID: 1088)
      • Unicorn-1627.exe (PID: 8476)
      • Unicorn-62002.exe (PID: 9044)
      • Unicorn-6885.exe (PID: 7848)
      • Unicorn-47591.exe (PID: 8684)
      • Unicorn-9677.exe (PID: 8092)
      • Unicorn-14171.exe (PID: 8712)
      • Unicorn-6579.exe (PID: 9116)
      • Unicorn-63934.exe (PID: 8316)
      • Unicorn-23139.exe (PID: 8604)
      • Unicorn-54026.exe (PID: 8980)
      • Unicorn-27300.exe (PID: 9360)
      • Unicorn-40740.exe (PID: 7876)
      • Unicorn-48432.exe (PID: 7788)
      • Unicorn-40648.exe (PID: 7912)
      • Unicorn-19408.exe (PID: 9188)
      • Unicorn-31596.exe (PID: 9912)
      • Unicorn-12021.exe (PID: 7176)
      • Unicorn-39832.exe (PID: 6972)
      • Unicorn-165.exe (PID: 8916)
      • Unicorn-53621.exe (PID: 8728)
      • Unicorn-32454.exe (PID: 8784)
      • Unicorn-17976.exe (PID: 10016)
      • Unicorn-10497.exe (PID: 5576)
      • Unicorn-29714.exe (PID: 9160)
      • Unicorn-20730.exe (PID: 9264)
      • Unicorn-36708.exe (PID: 11208)
      • Unicorn-51800.exe (PID: 11224)
      • Unicorn-13159.exe (PID: 10716)
      • Unicorn-57664.exe (PID: 9540)
      • Unicorn-55334.exe (PID: 9372)
      • Unicorn-50928.exe (PID: 8792)
      • Unicorn-53621.exe (PID: 8736)
      • Unicorn-14493.exe (PID: 9320)
      • Unicorn-54628.exe (PID: 8588)
      • Unicorn-15235.exe (PID: 10544)
      • Unicorn-38458.exe (PID: 9284)
      • Unicorn-54529.exe (PID: 8104)
      • Unicorn-36730.exe (PID: 8676)
      • Unicorn-7093.exe (PID: 9592)
      • Unicorn-32646.exe (PID: 8668)
      • Unicorn-39640.exe (PID: 10740)
      • Unicorn-30294.exe (PID: 8440)
      • Unicorn-53429.exe (PID: 8468)
      • Unicorn-21078.exe (PID: 9428)
      • Unicorn-11715.exe (PID: 8276)
      • Unicorn-52080.exe (PID: 6668)
      • Unicorn-65209.exe (PID: 9860)
      • Unicorn-18477.exe (PID: 9380)
      • Unicorn-65536.exe (PID: 8020)
      • Unicorn-1550.exe (PID: 12384)
      • Unicorn-8743.exe (PID: 8340)
      • Unicorn-19526.exe (PID: 1676)
      • Unicorn-51416.exe (PID: 10468)
      • Unicorn-28208.exe (PID: 12428)
      • Unicorn-28373.exe (PID: 9932)
      • Unicorn-14638.exe (PID: 9940)
      • Unicorn-51229.exe (PID: 8420)
      • Unicorn-31406.exe (PID: 9692)
      • Unicorn-45775.exe (PID: 9348)
      • Unicorn-41778.exe (PID: 10644)
      • Unicorn-27465.exe (PID: 13716)
      • Unicorn-28749.exe (PID: 13724)
      • Unicorn-56709.exe (PID: 13732)
      • Unicorn-41982.exe (PID: 12592)
      • Unicorn-53860.exe (PID: 8324)
      • Unicorn-10641.exe (PID: 11660)
      • Unicorn-63860.exe (PID: 10416)
      • Unicorn-43636.exe (PID: 9388)
      • Unicorn-28692.exe (PID: 9404)
      • Unicorn-54130.exe (PID: 10552)
      • Unicorn-1872.exe (PID: 4152)
      • Unicorn-12754.exe (PID: 9248)
      • Unicorn-7596.exe (PID: 9952)
      • Unicorn-62905.exe (PID: 13220)
      • Unicorn-3345.exe (PID: 13932)
      • Unicorn-29512.exe (PID: 13700)
      • Unicorn-22906.exe (PID: 13592)
      • Unicorn-28042.exe (PID: 10668)
      • Unicorn-7643.exe (PID: 10972)
      • Unicorn-59780.exe (PID: 12392)
      • Unicorn-65183.exe (PID: 5556)
      • Unicorn-52464.exe (PID: 4932)
      • Unicorn-30986.exe (PID: 15484)
      • Unicorn-57628.exe (PID: 15468)
      • Unicorn-8427.exe (PID: 15504)
      • Unicorn-9271.exe (PID: 12560)
      • Unicorn-30612.exe (PID: 10188)
      • Unicorn-18448.exe (PID: 8640)
      • Unicorn-51416.exe (PID: 10456)
      • Unicorn-38431.exe (PID: 11168)
      • Unicorn-26894.exe (PID: 10848)
      • Unicorn-4254.exe (PID: 11644)
      • Unicorn-32047.exe (PID: 11108)

    • Executes application which crashes

      • Unicorn-55692.exe (PID: 5156)

  • INFO

    • The sample compiled with chinese language support

      • 1 (26).exe (PID: 4208)

    • Checks supported languages

      • 1 (26).exe (PID: 4208)
      • Unicorn-54638.exe (PID: 4880)
      • Unicorn-48141.exe (PID: 3900)
      • Unicorn-2469.exe (PID: 6388)
      • Unicorn-20512.exe (PID: 4244)
      • Unicorn-44462.exe (PID: 5048)
      • Unicorn-44244.exe (PID: 5256)
      • Unicorn-55737.exe (PID: 5376)
      • Unicorn-47342.exe (PID: 6512)
      • Unicorn-65219.exe (PID: 1228)
      • Unicorn-5157.exe (PID: 2140)
      • Unicorn-13325.exe (PID: 6644)
      • Unicorn-17144.exe (PID: 5504)
      • Unicorn-24186.exe (PID: 5640)
      • Unicorn-55510.exe (PID: 5984)
      • Unicorn-25338.exe (PID: 5756)
      • Unicorn-1960.exe (PID: 2240)
      • Unicorn-41120.exe (PID: 5260)
      • Unicorn-61540.exe (PID: 6592)
      • Unicorn-27698.exe (PID: 5360)
      • Unicorn-65438.exe (PID: 720)
      • Unicorn-19138.exe (PID: 1912)
      • Unicorn-58032.exe (PID: 856)
      • Unicorn-64154.exe (PID: 6656)
      • Unicorn-4747.exe (PID: 6436)
      • Unicorn-50419.exe (PID: 960)
      • Unicorn-42272.exe (PID: 6480)
      • Unicorn-30574.exe (PID: 6228)
      • Unicorn-51016.exe (PID: 4608)
      • Unicorn-12021.exe (PID: 7176)
      • Unicorn-5899.exe (PID: 4696)
      • Unicorn-28458.exe (PID: 6540)
      • Unicorn-61130.exe (PID: 7200)
      • Unicorn-53517.exe (PID: 7212)
      • Unicorn-31587.exe (PID: 7244)
      • Unicorn-40518.exe (PID: 7252)
      • Unicorn-4856.exe (PID: 7300)
      • Unicorn-45889.exe (PID: 7292)
      • Unicorn-22584.exe (PID: 7336)
      • Unicorn-44877.exe (PID: 7324)
      • Unicorn-23138.exe (PID: 7356)
      • Unicorn-45718.exe (PID: 7396)
      • Unicorn-26567.exe (PID: 7364)
      • Unicorn-63424.exe (PID: 7372)
      • Unicorn-32698.exe (PID: 7380)
      • Unicorn-51727.exe (PID: 7388)
      • Unicorn-62054.exe (PID: 7424)
      • Unicorn-62054.exe (PID: 7432)
      • Unicorn-63616.exe (PID: 7308)
      • Unicorn-2355.exe (PID: 7560)
      • Unicorn-309.exe (PID: 7576)
      • Unicorn-47472.exe (PID: 7528)
      • Unicorn-33658.exe (PID: 7656)
      • Unicorn-8504.exe (PID: 7440)
      • Unicorn-14030.exe (PID: 7448)
      • Unicorn-30128.exe (PID: 7696)
      • Unicorn-34788.exe (PID: 7768)
      • Unicorn-48432.exe (PID: 7788)
      • Unicorn-31690.exe (PID: 7540)
      • Unicorn-10414.exe (PID: 7836)
      • Unicorn-50486.exe (PID: 7828)
      • Unicorn-6885.exe (PID: 7848)
      • Unicorn-57076.exe (PID: 7892)
      • Unicorn-42018.exe (PID: 7860)
      • Unicorn-64887.exe (PID: 7932)
      • Unicorn-53455.exe (PID: 7968)
      • Unicorn-30896.exe (PID: 7976)
      • Unicorn-26733.exe (PID: 8004)
      • Unicorn-65536.exe (PID: 8020)
      • Unicorn-22152.exe (PID: 7868)
      • Unicorn-34353.exe (PID: 8068)
      • Unicorn-49584.exe (PID: 8120)
      • Unicorn-39832.exe (PID: 6972)
      • Unicorn-45562.exe (PID: 8244)
      • Unicorn-53668.exe (PID: 8128)
      • Unicorn-37944.exe (PID: 6740)
      • Unicorn-35002.exe (PID: 8224)
      • Unicorn-63934.exe (PID: 8316)
      • Unicorn-21188.exe (PID: 8296)
      • Unicorn-3289.exe (PID: 8364)
      • Unicorn-10497.exe (PID: 5576)
      • Unicorn-53860.exe (PID: 8324)
      • Unicorn-8743.exe (PID: 8340)
      • Unicorn-51229.exe (PID: 8420)
      • Unicorn-30294.exe (PID: 8440)
      • Unicorn-29740.exe (PID: 8428)
      • Unicorn-11576.exe (PID: 8484)
      • Unicorn-60850.exe (PID: 8548)
      • Unicorn-2911.exe (PID: 8500)
      • Unicorn-23139.exe (PID: 8604)
      • Unicorn-3481.exe (PID: 8556)
      • Unicorn-18448.exe (PID: 8640)
      • Unicorn-53429.exe (PID: 8468)
      • Unicorn-51504.exe (PID: 8832)
      • Unicorn-62988.exe (PID: 8508)
      • Unicorn-53621.exe (PID: 8736)
      • Unicorn-47591.exe (PID: 8684)
      • Unicorn-14171.exe (PID: 8712)
      • Unicorn-32454.exe (PID: 8784)
      • Unicorn-32646.exe (PID: 8668)
      • Unicorn-50497.exe (PID: 8988)
      • Unicorn-53429.exe (PID: 8768)
      • Unicorn-62002.exe (PID: 9044)
      • Unicorn-44083.exe (PID: 9100)
      • Unicorn-50928.exe (PID: 8792)
      • Unicorn-46552.exe (PID: 8532)
      • Unicorn-165.exe (PID: 8916)
      • Unicorn-54628.exe (PID: 8588)
      • Unicorn-14455.exe (PID: 8972)
      • Unicorn-54026.exe (PID: 8980)
      • Unicorn-6579.exe (PID: 9116)
      • Unicorn-29714.exe (PID: 9160)
      • Unicorn-19408.exe (PID: 9188)
      • Unicorn-54529.exe (PID: 8104)
      • Unicorn-11715.exe (PID: 8276)
      • Unicorn-54337.exe (PID: 7884)
      • Unicorn-55406.exe (PID: 7888)
      • Unicorn-5301.exe (PID: 9224)
      • Unicorn-19526.exe (PID: 1676)
      • Unicorn-1872.exe (PID: 4152)
      • Unicorn-12754.exe (PID: 9248)
      • Unicorn-38458.exe (PID: 9284)
      • Unicorn-14493.exe (PID: 9320)
      • Unicorn-44458.exe (PID: 9340)
      • Unicorn-45775.exe (PID: 9348)
      • Unicorn-10153.exe (PID: 9232)
      • Unicorn-18477.exe (PID: 9380)
      • Unicorn-27300.exe (PID: 9360)
      • Unicorn-55334.exe (PID: 9372)
      • Unicorn-21078.exe (PID: 9428)
      • Unicorn-2049.exe (PID: 9412)
      • Unicorn-20730.exe (PID: 9264)
      • Unicorn-52464.exe (PID: 4932)
      • Unicorn-20867.exe (PID: 9472)
      • Unicorn-579.exe (PID: 9480)
      • Unicorn-31596.exe (PID: 9912)
      • Unicorn-21930.exe (PID: 8268)
      • Unicorn-28373.exe (PID: 9932)
      • Unicorn-53580.exe (PID: 9532)
      • Unicorn-22475.exe (PID: 9700)
      • Unicorn-7093.exe (PID: 9592)
      • Unicorn-39766.exe (PID: 9612)
      • Unicorn-43636.exe (PID: 9388)
      • Unicorn-27514.exe (PID: 9620)
      • Unicorn-55033.exe (PID: 9656)
      • Unicorn-13123.exe (PID: 9636)
      • Unicorn-21846.exe (PID: 9664)
      • Unicorn-11540.exe (PID: 9684)
      • Unicorn-57664.exe (PID: 9540)
      • Unicorn-29844.exe (PID: 9840)
      • Unicorn-57286.exe (PID: 9724)
      • Unicorn-9402.exe (PID: 9772)
      • Unicorn-29844.exe (PID: 9832)
      • Unicorn-15453.exe (PID: 9852)
      • Unicorn-65209.exe (PID: 9860)
      • Unicorn-1731.exe (PID: 9964)
      • Unicorn-53533.exe (PID: 9972)
      • Unicorn-35058.exe (PID: 9996)
      • Unicorn-46351.exe (PID: 9708)
      • Unicorn-1255.exe (PID: 9800)
      • Unicorn-17976.exe (PID: 10016)
      • Unicorn-30.exe (PID: 9548)
      • Unicorn-64462.exe (PID: 9580)
      • Unicorn-65183.exe (PID: 5556)
      • Unicorn-33545.exe (PID: 10144)
      • Unicorn-29050.exe (PID: 3896)
      • Unicorn-16776.exe (PID: 6988)
      • Unicorn-62900.exe (PID: 10072)
      • Unicorn-30612.exe (PID: 10188)
      • Unicorn-55692.exe (PID: 5156)
      • Unicorn-14851.exe (PID: 5408)
      • Unicorn-63860.exe (PID: 10416)
      • Unicorn-51416.exe (PID: 10468)
      • Unicorn-59283.exe (PID: 10528)
      • Unicorn-15235.exe (PID: 10544)
      • Unicorn-54130.exe (PID: 10552)
      • Unicorn-31572.exe (PID: 10580)
      • Unicorn-28042.exe (PID: 10668)
      • Unicorn-39640.exe (PID: 10740)
      • Unicorn-28042.exe (PID: 10700)
      • Unicorn-7596.exe (PID: 9952)
      • Unicorn-51800.exe (PID: 11224)
      • Unicorn-39283.exe (PID: 10816)
      • Unicorn-26894.exe (PID: 10848)
      • Unicorn-26894.exe (PID: 10856)
      • Unicorn-13159.exe (PID: 10716)
      • Unicorn-56268.exe (PID: 10920)
      • Unicorn-49231.exe (PID: 10964)
      • Unicorn-7643.exe (PID: 10972)
      • Unicorn-7643.exe (PID: 10976)
      • Unicorn-15546.exe (PID: 11000)
      • Unicorn-34840.exe (PID: 11024)
      • Unicorn-49854.exe (PID: 10752)
      • Unicorn-36708.exe (PID: 11208)
      • Unicorn-38978.exe (PID: 10692)
      • Unicorn-41778.exe (PID: 10684)
      • Unicorn-18312.exe (PID: 11076)
      • Unicorn-49039.exe (PID: 11092)
      • Unicorn-32047.exe (PID: 11108)
      • Unicorn-48738.exe (PID: 11132)
      • Unicorn-1732.exe (PID: 11140)
      • Unicorn-14249.exe (PID: 11180)
      • Unicorn-38431.exe (PID: 11168)
      • Unicorn-20590.exe (PID: 3124)
      • Unicorn-29778.exe (PID: 11084)
      • Unicorn-36786.exe (PID: 11360)
      • Unicorn-10641.exe (PID: 2416)
      • Unicorn-10833.exe (PID: 11476)
      • Unicorn-46429.exe (PID: 5008)
      • Unicorn-10833.exe (PID: 11464)
      • Unicorn-4135.exe (PID: 11376)
      • Unicorn-14441.exe (PID: 11312)
      • Unicorn-30154.exe (PID: 11912)
      • Unicorn-35246.exe (PID: 11596)
      • Unicorn-63926.exe (PID: 11628)
      • Unicorn-46631.exe (PID: 11988)
      • Unicorn-59780.exe (PID: 12392)
      • Unicorn-7212.exe (PID: 11520)
      • Unicorn-4711.exe (PID: 11440)
      • Unicorn-5406.exe (PID: 12112)
      • Unicorn-15126.exe (PID: 12200)
      • Unicorn-26646.exe (PID: 11920)
      • Unicorn-62278.exe (PID: 12184)
      • Unicorn-41598.exe (PID: 5452)
      • Unicorn-51343.exe (PID: 12148)
      • Unicorn-33984.exe (PID: 5232)
      • Unicorn-28861.exe (PID: 12216)
      • Unicorn-22116.exe (PID: 12600)
      • Unicorn-9271.exe (PID: 12560)
      • Unicorn-34644.exe (PID: 12008)
      • Unicorn-40217.exe (PID: 12084)
      • Unicorn-16993.exe (PID: 6248)
      • Unicorn-6787.exe (PID: 4452)
      • Unicorn-34351.exe (PID: 12092)
      • Unicorn-5406.exe (PID: 12120)
      • Unicorn-51343.exe (PID: 12164)
      • Unicorn-45742.exe (PID: 12132)
      • Unicorn-28831.exe (PID: 4572)
      • Unicorn-8795.exe (PID: 11448)
      • Unicorn-2791.exe (PID: 11116)
      • Unicorn-57373.exe (PID: 11932)
      • Unicorn-27570.exe (PID: 12448)
      • Unicorn-44758.exe (PID: 12020)
      • Unicorn-46704.exe (PID: 12048)
      • Unicorn-8221.exe (PID: 11940)
      • Unicorn-58510.exe (PID: 12844)
      • Unicorn-56180.exe (PID: 12864)
      • Unicorn-2987.exe (PID: 12940)
      • Unicorn-27465.exe (PID: 13716)
      • Unicorn-46621.exe (PID: 12996)
      • Unicorn-59879.exe (PID: 13084)
      • Unicorn-34368.exe (PID: 12740)
      • Unicorn-63507.exe (PID: 12140)
      • Unicorn-22116.exe (PID: 12616)
      • Unicorn-15842.exe (PID: 13172)
      • Unicorn-9977.exe (PID: 13180)
      • Unicorn-16108.exe (PID: 13188)
      • Unicorn-54240.exe (PID: 13212)
      • Unicorn-11426.exe (PID: 12300)
      • Unicorn-54234.exe (PID: 12568)
      • Unicorn-37898.exe (PID: 12632)
      • Unicorn-40217.exe (PID: 12076)
      • Unicorn-20616.exe (PID: 12100)
      • Unicorn-13154.exe (PID: 11976)
      • Unicorn-62656.exe (PID: 12436)
      • Unicorn-3016.exe (PID: 12728)
      • Unicorn-58318.exe (PID: 12780)
      • Unicorn-55220.exe (PID: 12272)
      • Unicorn-3974.exe (PID: 13324)
      • Unicorn-43688.exe (PID: 13392)
      • Unicorn-50726.exe (PID: 13292)
      • Unicorn-42558.exe (PID: 13280)
      • Unicorn-28831.exe (PID: 4284)
      • Unicorn-41598.exe (PID: 12676)
      • Unicorn-35459.exe (PID: 13256)
      • Unicorn-19486.exe (PID: 12608)
      • Unicorn-25161.exe (PID: 12292)
      • Unicorn-38474.exe (PID: 13272)
      • Unicorn-27160.exe (PID: 13568)
      • Unicorn-61441.exe (PID: 12684)
      • Unicorn-37104.exe (PID: 13636)
      • Unicorn-49388.exe (PID: 12988)
      • Unicorn-41550.exe (PID: 13428)
      • Unicorn-466.exe (PID: 13852)
      • Unicorn-25044.exe (PID: 13552)
      • Unicorn-64738.exe (PID: 13440)
      • Unicorn-53803.exe (PID: 13448)
      • Unicorn-62905.exe (PID: 13220)
      • Unicorn-40896.exe (PID: 13464)
      • Unicorn-58292.exe (PID: 14020)
      • Unicorn-65208.exe (PID: 14108)
      • Unicorn-29512.exe (PID: 13700)
      • Unicorn-8193.exe (PID: 13584)
      • Unicorn-30882.exe (PID: 13684)
      • Unicorn-16108.exe (PID: 13952)
      • Unicorn-15313.exe (PID: 14028)
      • Unicorn-44094.exe (PID: 13988)
      • Unicorn-56709.exe (PID: 13740)
      • Unicorn-13102.exe (PID: 13996)
      • Unicorn-64090.exe (PID: 13748)
      • Unicorn-3345.exe (PID: 13932)
      • Unicorn-57628.exe (PID: 15468)
      • Unicorn-30986.exe (PID: 15484)
      • Unicorn-8427.exe (PID: 15504)
      • Unicorn-11129.exe (PID: 13692)
      • Unicorn-2107.exe (PID: 14512)
      • Unicorn-34150.exe (PID: 14504)
      • Unicorn-17814.exe (PID: 14520)
      • Unicorn-34150.exe (PID: 13780)
      • Unicorn-41738.exe (PID: 14900)
      • Unicorn-43108.exe (PID: 14880)
      • Unicorn-53990.exe (PID: 14912)
      • Unicorn-17042.exe (PID: 14924)
      • Unicorn-24754.exe (PID: 14944)
      • Unicorn-45244.exe (PID: 15224)
      • Unicorn-3895.exe (PID: 15592)
      • Unicorn-46185.exe (PID: 15072)
      • Unicorn-61780.exe (PID: 15192)
      • Unicorn-1940.exe (PID: 15572)
      • Unicorn-54728.exe (PID: 15548)
      • Unicorn-56247.exe (PID: 15400)
      • Unicorn-45244.exe (PID: 15232)
      • Unicorn-45184.exe (PID: 15580)
      • Unicorn-7919.exe (PID: 15112)
      • Unicorn-9257.exe (PID: 15208)
      • Unicorn-35878.exe (PID: 15124)
      • Unicorn-46206.exe (PID: 15140)
      • Unicorn-60404.exe (PID: 15252)
      • Unicorn-7290.exe (PID: 15060)
      • Unicorn-7896.exe (PID: 15604)
      • Unicorn-33378.exe (PID: 14976)
      • Unicorn-19611.exe (PID: 15564)
      • Unicorn-4908.exe (PID: 15184)
      • Unicorn-50845.exe (PID: 15176)
      • Unicorn-4986.exe (PID: 13616)
      • Unicorn-54728.exe (PID: 15556)
      • Unicorn-50512.exe (PID: 16356)
      • Unicorn-34150.exe (PID: 13788)
      • Unicorn-1006.exe (PID: 16292)
      • Unicorn-53890.exe (PID: 14960)
      • Unicorn-21131.exe (PID: 14920)
      • Unicorn-25137.exe (PID: 15300)
      • Unicorn-10772.exe (PID: 15384)
      • Unicorn-56237.exe (PID: 16180)
      • Unicorn-53890.exe (PID: 14956)
      • Unicorn-2595.exe (PID: 16368)
      • Unicorn-20606.exe (PID: 16248)
      • Unicorn-11941.exe (PID: 16240)
      • Unicorn-24189.exe (PID: 16312)
      • Unicorn-54920.exe (PID: 16188)
      • Unicorn-57058.exe (PID: 16164)
      • Unicorn-32319.exe (PID: 15644)
      • Unicorn-1006.exe (PID: 16256)
      • Unicorn-20606.exe (PID: 16204)
      • Unicorn-56377.exe (PID: 15980)
      • Unicorn-1966.exe (PID: 14752)
      • Unicorn-23869.exe (PID: 16548)
      • Unicorn-1966.exe (PID: 16416)
      • Unicorn-40233.exe (PID: 16760)
      • Unicorn-34367.exe (PID: 16744)
      • Unicorn-1006.exe (PID: 16300)
      • Unicorn-47712.exe (PID: 16624)
      • Unicorn-26470.exe (PID: 16632)
      • Unicorn-12901.exe (PID: 1072)
      • Unicorn-63803.exe (PID: 16704)
      • Unicorn-52842.exe (PID: 16732)
      • Unicorn-23705.exe (PID: 16804)
      • Unicorn-56377.exe (PID: 3760)
      • Unicorn-40398.exe (PID: 16796)
      • Unicorn-9671.exe (PID: 16788)
      • Unicorn-50512.exe (PID: 16376)
      • Unicorn-26632.exe (PID: 5308)

    • Reads the computer name

      • Unicorn-54638.exe (PID: 4880)
      • 1 (26).exe (PID: 4208)
      • Unicorn-2469.exe (PID: 6388)
      • Unicorn-48141.exe (PID: 3900)
      • Unicorn-36294.exe (PID: 6564)
      • Unicorn-44462.exe (PID: 5048)
      • Unicorn-44244.exe (PID: 5256)
      • Unicorn-19639.exe (PID: 6800)
      • Unicorn-65219.exe (PID: 1228)
      • Unicorn-24186.exe (PID: 5640)
      • Unicorn-47342.exe (PID: 6512)
      • Unicorn-25338.exe (PID: 5756)
      • Unicorn-38166.exe (PID: 2040)
      • Unicorn-41120.exe (PID: 5260)
      • Unicorn-61540.exe (PID: 6592)
      • Unicorn-27698.exe (PID: 5360)
      • Unicorn-19138.exe (PID: 1912)
      • Unicorn-55510.exe (PID: 5984)
      • Unicorn-62116.exe (PID: 5228)
      • Unicorn-4747.exe (PID: 6436)
      • Unicorn-64154.exe (PID: 6656)
      • Unicorn-58032.exe (PID: 856)
      • Unicorn-50419.exe (PID: 960)
      • Unicorn-65438.exe (PID: 720)
      • Unicorn-42272.exe (PID: 6480)
      • Unicorn-28458.exe (PID: 6540)
      • Unicorn-51016.exe (PID: 4608)
      • Unicorn-12021.exe (PID: 7176)
      • Unicorn-31587.exe (PID: 7244)
      • Unicorn-53517.exe (PID: 7212)
      • Unicorn-61130.exe (PID: 7200)
      • Unicorn-5899.exe (PID: 4696)
      • Unicorn-4856.exe (PID: 7300)
      • Unicorn-16014.exe (PID: 7220)
      • Unicorn-40518.exe (PID: 7252)
      • Unicorn-57486.exe (PID: 7316)
      • Unicorn-309.exe (PID: 7576)
      • Unicorn-2355.exe (PID: 7560)
      • Unicorn-14030.exe (PID: 7448)
      • Unicorn-33658.exe (PID: 7656)
      • Unicorn-62054.exe (PID: 7424)
      • Unicorn-22584.exe (PID: 7336)
      • Unicorn-46486.exe (PID: 7744)
      • Unicorn-8504.exe (PID: 7440)
      • Unicorn-47472.exe (PID: 7528)
      • Unicorn-26567.exe (PID: 7364)
      • Unicorn-34788.exe (PID: 7768)
      • Unicorn-52900.exe (PID: 7924)
      • Unicorn-30128.exe (PID: 7696)
      • Unicorn-44877.exe (PID: 7324)
      • Unicorn-32698.exe (PID: 7380)
      • Unicorn-45718.exe (PID: 7396)
      • Unicorn-51727.exe (PID: 7388)
      • Unicorn-57076.exe (PID: 7892)
      • Unicorn-42018.exe (PID: 7860)
      • Unicorn-48624.exe (PID: 7984)
      • Unicorn-40740.exe (PID: 7876)
      • Unicorn-12945.exe (PID: 7404)
      • Unicorn-35002.exe (PID: 8224)
      • Unicorn-22152.exe (PID: 7868)
      • Unicorn-31690.exe (PID: 7540)
      • Unicorn-17248.exe (PID: 8872)
      • Unicorn-62054.exe (PID: 7432)
      • Unicorn-30983.exe (PID: 8864)
      • Unicorn-29740.exe (PID: 8428)
      • Unicorn-14455.exe (PID: 8972)
      • Unicorn-30896.exe (PID: 7976)
      • Unicorn-62199.exe (PID: 7996)
      • Unicorn-53668.exe (PID: 8128)
      • Unicorn-63424.exe (PID: 7372)
      • Unicorn-34353.exe (PID: 8068)
      • Unicorn-2911.exe (PID: 8500)
      • Unicorn-26733.exe (PID: 8004)
      • Unicorn-54337.exe (PID: 7884)
      • Unicorn-55406.exe (PID: 7888)
      • Unicorn-60850.exe (PID: 8548)
      • Unicorn-3289.exe (PID: 8364)
      • Unicorn-50497.exe (PID: 8988)
      • Unicorn-53429.exe (PID: 8768)
      • Unicorn-49584.exe (PID: 8120)
      • Unicorn-19408.exe (PID: 9188)
      • Unicorn-46552.exe (PID: 8532)
      • Unicorn-18343.exe (PID: 1088)
      • Unicorn-32454.exe (PID: 8784)
      • Unicorn-6579.exe (PID: 9116)
      • Unicorn-47591.exe (PID: 8684)
      • Unicorn-1627.exe (PID: 8476)
      • Unicorn-63934.exe (PID: 8316)
      • Unicorn-48432.exe (PID: 7788)
      • Unicorn-9677.exe (PID: 8092)
      • Unicorn-40648.exe (PID: 7912)
      • Unicorn-165.exe (PID: 8916)
      • Unicorn-23139.exe (PID: 8604)
      • Unicorn-54026.exe (PID: 8980)
      • Unicorn-14638.exe (PID: 9940)
      • Unicorn-50928.exe (PID: 8792)
      • Unicorn-10497.exe (PID: 5576)
      • Unicorn-53621.exe (PID: 8728)
      • Unicorn-7093.exe (PID: 9592)
      • Unicorn-29714.exe (PID: 9160)
      • Unicorn-21078.exe (PID: 9428)
      • Unicorn-54628.exe (PID: 8588)
      • Unicorn-57664.exe (PID: 9540)
      • Unicorn-38458.exe (PID: 9284)
      • Unicorn-53621.exe (PID: 8736)
      • Unicorn-32047.exe (PID: 11108)
      • Unicorn-36730.exe (PID: 8676)
      • Unicorn-55334.exe (PID: 9372)
      • Unicorn-39640.exe (PID: 10740)
      • Unicorn-15131.exe (PID: 8964)
      • Unicorn-15235.exe (PID: 10544)
      • Unicorn-21930.exe (PID: 8268)
      • Unicorn-18477.exe (PID: 9380)
      • Unicorn-19526.exe (PID: 1676)
      • Unicorn-1550.exe (PID: 12384)
      • Unicorn-65209.exe (PID: 9860)
      • Unicorn-28208.exe (PID: 12428)
      • Unicorn-41778.exe (PID: 10644)
      • Unicorn-28749.exe (PID: 13724)
      • Unicorn-12754.exe (PID: 9248)
      • Unicorn-53580.exe (PID: 9532)
      • Unicorn-10641.exe (PID: 11660)
      • Unicorn-54130.exe (PID: 10552)
      • Unicorn-1872.exe (PID: 4152)
      • Unicorn-41982.exe (PID: 12592)
      • Unicorn-62905.exe (PID: 13220)
      • Unicorn-29512.exe (PID: 13700)
      • Unicorn-52464.exe (PID: 4932)
      • Unicorn-3974.exe (PID: 13324)
      • Unicorn-41778.exe (PID: 10684)
      • Unicorn-26894.exe (PID: 10848)
      • Unicorn-18448.exe (PID: 8640)
      • Unicorn-51416.exe (PID: 10456)
      • Unicorn-30986.exe (PID: 15484)
      • Unicorn-3481.exe (PID: 8556)
      • Unicorn-22060.exe (PID: 10024)
      • Unicorn-35246.exe (PID: 11596)

    • Create files in a temporary directory

      • 1 (26).exe (PID: 4208)
      • Unicorn-48141.exe (PID: 3900)
      • Unicorn-36294.exe (PID: 6564)
      • Unicorn-44462.exe (PID: 5048)
      • Unicorn-2469.exe (PID: 6388)
      • Unicorn-5157.exe (PID: 2140)
      • Unicorn-13325.exe (PID: 6644)
      • Unicorn-20512.exe (PID: 4244)
      • Unicorn-55737.exe (PID: 5376)
      • Unicorn-17144.exe (PID: 5504)
      • Unicorn-25338.exe (PID: 5756)
      • Unicorn-7295.exe (PID: 728)
      • Unicorn-1960.exe (PID: 2240)
      • Unicorn-61540.exe (PID: 6592)
      • Unicorn-54638.exe (PID: 4880)
      • Unicorn-65219.exe (PID: 1228)
      • Unicorn-27698.exe (PID: 5360)
      • Unicorn-62116.exe (PID: 5228)
      • Unicorn-4747.exe (PID: 6436)
      • Unicorn-50419.exe (PID: 960)
      • Unicorn-19138.exe (PID: 1912)
      • Unicorn-47342.exe (PID: 6512)
      • Unicorn-30574.exe (PID: 6228)
      • Unicorn-44244.exe (PID: 5256)
      • Unicorn-42272.exe (PID: 6480)
      • Unicorn-47897.exe (PID: 1532)
      • Unicorn-55510.exe (PID: 5984)
      • Unicorn-41120.exe (PID: 5260)
      • Unicorn-53517.exe (PID: 7212)
      • Unicorn-4856.exe (PID: 7300)
      • Unicorn-63616.exe (PID: 7308)
      • Unicorn-40518.exe (PID: 7252)
      • Unicorn-57486.exe (PID: 7316)
      • Unicorn-309.exe (PID: 7576)
      • Unicorn-45889.exe (PID: 7292)
      • Unicorn-51016.exe (PID: 4608)
      • Unicorn-2355.exe (PID: 7560)
      • Unicorn-12021.exe (PID: 7176)
      • Unicorn-47472.exe (PID: 7528)
      • Unicorn-62054.exe (PID: 7424)
      • Unicorn-14030.exe (PID: 7448)
      • Unicorn-46486.exe (PID: 7744)
      • Unicorn-22584.exe (PID: 7336)
      • Unicorn-24186.exe (PID: 5640)
      • Unicorn-44877.exe (PID: 7324)
      • Unicorn-61130.exe (PID: 7200)
      • Unicorn-19639.exe (PID: 6800)
      • Unicorn-52900.exe (PID: 7924)
      • Unicorn-30128.exe (PID: 7696)
      • Unicorn-34788.exe (PID: 7768)
      • Unicorn-32698.exe (PID: 7380)
      • Unicorn-43004.exe (PID: 7348)
      • Unicorn-45718.exe (PID: 7396)
      • Unicorn-10414.exe (PID: 7836)
      • Unicorn-11099.exe (PID: 7688)
      • Unicorn-48624.exe (PID: 7984)
      • Unicorn-57076.exe (PID: 7892)
      • Unicorn-42018.exe (PID: 7860)
      • Unicorn-16014.exe (PID: 7220)
      • Unicorn-35002.exe (PID: 8224)
      • Unicorn-12945.exe (PID: 7404)
      • Unicorn-53455.exe (PID: 7968)
      • Unicorn-31690.exe (PID: 7540)
      • Unicorn-22152.exe (PID: 7868)
      • Unicorn-42210.exe (PID: 7816)
      • Unicorn-31587.exe (PID: 7244)
      • Unicorn-64887.exe (PID: 7932)
      • Unicorn-51504.exe (PID: 8832)
      • Unicorn-38166.exe (PID: 2040)
      • Unicorn-33658.exe (PID: 7656)
      • Unicorn-17248.exe (PID: 8872)
      • Unicorn-30983.exe (PID: 8864)
      • Unicorn-64154.exe (PID: 6656)
      • Unicorn-62054.exe (PID: 7432)
      • Unicorn-28458.exe (PID: 6540)
      • Unicorn-23138.exe (PID: 7356)
      • Unicorn-29740.exe (PID: 8428)
      • Unicorn-37944.exe (PID: 6740)
      • Unicorn-63424.exe (PID: 7372)
      • Unicorn-34353.exe (PID: 8068)
      • Unicorn-21188.exe (PID: 8296)
      • Unicorn-30896.exe (PID: 7976)
      • Unicorn-62199.exe (PID: 7996)
      • Unicorn-50486.exe (PID: 7828)
      • Unicorn-60850.exe (PID: 8548)
      • Unicorn-54337.exe (PID: 7884)
      • Unicorn-5899.exe (PID: 4696)
      • Unicorn-55406.exe (PID: 7888)
      • Unicorn-50497.exe (PID: 8988)
      • Unicorn-14171.exe (PID: 8712)
      • Unicorn-44083.exe (PID: 9100)
      • Unicorn-46552.exe (PID: 8532)
      • Unicorn-3289.exe (PID: 8364)
      • Unicorn-6579.exe (PID: 9116)
      • Unicorn-47591.exe (PID: 8684)
      • Unicorn-62002.exe (PID: 9044)
      • Unicorn-48432.exe (PID: 7788)
      • Unicorn-23139.exe (PID: 8604)
      • Unicorn-63934.exe (PID: 8316)
      • Unicorn-31596.exe (PID: 9912)
      • Unicorn-8504.exe (PID: 7440)
      • Unicorn-27300.exe (PID: 9360)
      • Unicorn-32454.exe (PID: 8784)
      • Unicorn-58032.exe (PID: 856)
      • Unicorn-28373.exe (PID: 9932)
      • Unicorn-40740.exe (PID: 7876)
      • Unicorn-39832.exe (PID: 6972)
      • Unicorn-26567.exe (PID: 7364)
      • Unicorn-17976.exe (PID: 10016)
      • Unicorn-32646.exe (PID: 8668)
      • Unicorn-36708.exe (PID: 11208)
      • Unicorn-3294.exe (PID: 7412)
      • Unicorn-51800.exe (PID: 11224)
      • Unicorn-13159.exe (PID: 10716)
      • Unicorn-50928.exe (PID: 8792)
      • Unicorn-57664.exe (PID: 9540)
      • Unicorn-54529.exe (PID: 8104)
      • Unicorn-49584.exe (PID: 8120)
      • Unicorn-7093.exe (PID: 9592)
      • Unicorn-15235.exe (PID: 10544)
      • Unicorn-21078.exe (PID: 9428)
      • Unicorn-26733.exe (PID: 8004)
      • Unicorn-53429.exe (PID: 8468)
      • Unicorn-52080.exe (PID: 6668)
      • Unicorn-1627.exe (PID: 8476)
      • Unicorn-9677.exe (PID: 8092)
      • Unicorn-1550.exe (PID: 12384)
      • Unicorn-18477.exe (PID: 9380)
      • Unicorn-19526.exe (PID: 1676)
      • Unicorn-51416.exe (PID: 10468)
      • Unicorn-28208.exe (PID: 12428)
      • Unicorn-55702.exe (PID: 7708)
      • Unicorn-14638.exe (PID: 9940)
      • Unicorn-51229.exe (PID: 8420)
      • Unicorn-45775.exe (PID: 9348)
      • Unicorn-28749.exe (PID: 13724)
      • Unicorn-27465.exe (PID: 13716)
      • Unicorn-56709.exe (PID: 13732)
      • Unicorn-41982.exe (PID: 12592)
      • Unicorn-53860.exe (PID: 8324)
      • Unicorn-43636.exe (PID: 9388)
      • Unicorn-28692.exe (PID: 9404)
      • Unicorn-40648.exe (PID: 7912)
      • Unicorn-1872.exe (PID: 4152)
      • Unicorn-12754.exe (PID: 9248)
      • Unicorn-3345.exe (PID: 13932)
      • Unicorn-29512.exe (PID: 13700)
      • Unicorn-22906.exe (PID: 13592)
      • Unicorn-65438.exe (PID: 720)
      • Unicorn-28042.exe (PID: 10668)
      • Unicorn-19408.exe (PID: 9188)
      • Unicorn-59780.exe (PID: 12392)
      • Unicorn-65183.exe (PID: 5556)
      • Unicorn-52464.exe (PID: 4932)
      • Unicorn-41778.exe (PID: 10684)
      • Unicorn-8743.exe (PID: 8340)
      • Unicorn-32047.exe (PID: 11108)
      • Unicorn-30986.exe (PID: 15484)
      • Unicorn-8427.exe (PID: 15504)
      • Unicorn-9271.exe (PID: 12560)
      • Unicorn-18448.exe (PID: 8640)
      • Unicorn-65209.exe (PID: 9860)

    • Reads the software policy settings

      • slui.exe (PID: 5960)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | Win32 Executable Microsoft Visual Basic 6 (90.6)
.exe | Win32 Executable (generic) (4.9)
.exe | Generic Win/DOS Executable (2.2)
.exe | DOS Executable Generic (2.2)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2019:01:20 00:32:00+00:00
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit, No debug, Removable run from swap, Net run from swap, Uniprocessor only, Bytes reversed hi
PEType: PE32
LinkerVersion: 6
CodeSize: 176128
InitializedDataSize: 299008
UninitializedDataSize: -
EntryPoint: 0x13d4
OSVersion: 4
ImageVersion: 1
SubsystemVersion: 4
Subsystem: Windows GUI
FileVersionNumber: 1.0.0.0
ProductVersionNumber: 1.0.0.0
FileFlagsMask: 0x003f
FileFlags: (none)
FileOS: Win32
ObjectFileType: Executable application
FileSubtype: -
LanguageCode: Chinese (Simplified)
CharacterSet: Unicode
CompanyName: UEFI
ProductName: Kawaii-Unicorn
FileVersion: 1
ProductVersion: 1
InternalName: Kawaii-Unicorn
OriginalFileName: Kawaii-Unicorn.exe
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
698
Monitored processes
564
Malicious processes
82
Suspicious processes
70

Behavior graph

Click at the process to see the details
start 1 (26).exe sppextcomobj.exe no specs slui.exe unicorn-54638.exe unicorn-2469.exe unicorn-48141.exe unicorn-36294.exe unicorn-20512.exe unicorn-55737.exe unicorn-44462.exe unicorn-44244.exe unicorn-19639.exe unicorn-7295.exe unicorn-65219.exe unicorn-5157.exe unicorn-13325.exe unicorn-17144.exe unicorn-24186.exe unicorn-47342.exe unicorn-55510.exe unicorn-47897.exe unicorn-1960.exe unicorn-41120.exe unicorn-25338.exe unicorn-61540.exe unicorn-27698.exe unicorn-19138.exe unicorn-38166.exe unicorn-58032.exe unicorn-62116.exe unicorn-64154.exe unicorn-4747.exe unicorn-65438.exe unicorn-50419.exe unicorn-42272.exe unicorn-30574.exe unicorn-51016.exe unicorn-28458.exe unicorn-5899.exe unicorn-12021.exe unicorn-61130.exe unicorn-53517.exe unicorn-16014.exe unicorn-31587.exe unicorn-40518.exe unicorn-45889.exe unicorn-4856.exe unicorn-63616.exe unicorn-57486.exe unicorn-44877.exe unicorn-22584.exe unicorn-43004.exe unicorn-23138.exe unicorn-26567.exe unicorn-63424.exe unicorn-32698.exe unicorn-51727.exe unicorn-45718.exe unicorn-12945.exe unicorn-3294.exe unicorn-62054.exe unicorn-62054.exe unicorn-8504.exe unicorn-14030.exe unicorn-47472.exe unicorn-31690.exe unicorn-2355.exe unicorn-309.exe unicorn-33658.exe unicorn-11099.exe unicorn-30128.exe unicorn-55702.exe unicorn-46486.exe unicorn-34788.exe unicorn-48432.exe unicorn-42210.exe unicorn-50486.exe unicorn-10414.exe unicorn-6885.exe no specs unicorn-42018.exe unicorn-22152.exe unicorn-40740.exe unicorn-57076.exe unicorn-40648.exe unicorn-52900.exe unicorn-64887.exe unicorn-53455.exe unicorn-30896.exe unicorn-48624.exe unicorn-62199.exe unicorn-26733.exe unicorn-65536.exe unicorn-34353.exe unicorn-49584.exe unicorn-53668.exe unicorn-37944.exe unicorn-18343.exe unicorn-39832.exe unicorn-10497.exe unicorn-35002.exe unicorn-45562.exe unicorn-21188.exe unicorn-63934.exe unicorn-53860.exe unicorn-8743.exe unicorn-52490.exe unicorn-3289.exe unicorn-51229.exe unicorn-29740.exe unicorn-30294.exe unicorn-53429.exe unicorn-1627.exe unicorn-11576.exe no specs unicorn-2911.exe unicorn-62988.exe unicorn-46552.exe unicorn-60850.exe unicorn-3481.exe unicorn-54628.exe unicorn-23139.exe unicorn-18448.exe unicorn-32646.exe unicorn-36730.exe unicorn-47591.exe unicorn-14171.exe unicorn-53621.exe unicorn-53621.exe unicorn-53429.exe unicorn-32454.exe unicorn-50928.exe unicorn-51504.exe unicorn-30983.exe unicorn-17248.exe unicorn-165.exe unicorn-15131.exe unicorn-14455.exe unicorn-54026.exe unicorn-50497.exe unicorn-62002.exe unicorn-44083.exe unicorn-6579.exe unicorn-29714.exe unicorn-19408.exe unicorn-52080.exe unicorn-54529.exe unicorn-9677.exe unicorn-11715.exe unicorn-21930.exe unicorn-49541.exe unicorn-55406.exe unicorn-54337.exe unicorn-19526.exe unicorn-1872.exe unicorn-52464.exe unicorn-5301.exe no specs unicorn-10153.exe unicorn-12754.exe unicorn-20730.exe unicorn-38458.exe unicorn-195.exe no specs unicorn-14493.exe unicorn-44458.exe no specs unicorn-45775.exe unicorn-27300.exe unicorn-55334.exe unicorn-18477.exe unicorn-43636.exe unicorn-28692.exe unicorn-2049.exe unicorn-21078.exe unicorn-20867.exe no specs unicorn-579.exe no specs unicorn-53580.exe unicorn-57664.exe unicorn-30.exe no specs unicorn-64462.exe no specs unicorn-7093.exe unicorn-39766.exe no specs unicorn-27514.exe unicorn-13123.exe unicorn-55033.exe unicorn-21846.exe unicorn-11540.exe no specs unicorn-31406.exe unicorn-22475.exe no specs unicorn-46351.exe unicorn-60086.exe no specs unicorn-57286.exe unicorn-9402.exe unicorn-1255.exe no specs unicorn-29844.exe unicorn-29844.exe no specs unicorn-15453.exe no specs unicorn-65209.exe unicorn-31596.exe unicorn-28373.exe unicorn-14638.exe unicorn-7596.exe unicorn-1731.exe no specs unicorn-53533.exe unicorn-35058.exe unicorn-17976.exe unicorn-22060.exe unicorn-62900.exe no specs unicorn-39766.exe unicorn-33545.exe no specs unicorn-30612.exe unicorn-57809.exe unicorn-16776.exe no specs unicorn-14851.exe unicorn-29050.exe no specs unicorn-65183.exe unicorn-55692.exe unicorn-63860.exe unicorn-51416.exe unicorn-51416.exe unicorn-32942.exe no specs unicorn-59283.exe unicorn-15235.exe unicorn-54130.exe unicorn-31572.exe no specs unicorn-47643.exe no specs unicorn-41778.exe unicorn-49532.exe no specs unicorn-3968.exe unicorn-28042.exe unicorn-41778.exe unicorn-38978.exe no specs unicorn-28042.exe no specs unicorn-39640.exe unicorn-49854.exe unicorn-51800.exe no specs unicorn-39283.exe no specs unicorn-26894.exe unicorn-26894.exe unicorn-56268.exe no specs unicorn-1613.exe no specs unicorn-49231.exe unicorn-7643.exe unicorn-7643.exe unicorn-9681.exe unicorn-15546.exe no specs unicorn-61483.exe unicorn-6881.exe no specs unicorn-34840.exe no specs unicorn-38978.exe no specs unicorn-18312.exe no specs unicorn-29778.exe no specs unicorn-49039.exe no specs unicorn-32047.exe no specs unicorn-32047.exe unicorn-2791.exe no specs unicorn-48738.exe unicorn-1732.exe unicorn-61404.exe no specs unicorn-38431.exe no specs unicorn-38431.exe unicorn-14249.exe unicorn-36708.exe unicorn-51800.exe unicorn-13159.exe unicorn-20590.exe unicorn-10641.exe no specs unicorn-46429.exe no specs unicorn-14441.exe no specs unicorn-36786.exe no specs unicorn-4135.exe no specs unicorn-4711.exe no specs unicorn-8795.exe no specs unicorn-49728.exe unicorn-10833.exe no specs unicorn-10833.exe no specs unicorn-7212.exe no specs unicorn-7212.exe no specs unicorn-35246.exe no specs unicorn-63926.exe no specs unicorn-63926.exe unicorn-4254.exe unicorn-10641.exe unicorn-30154.exe unicorn-26646.exe no specs unicorn-57373.exe no specs unicorn-8221.exe no specs unicorn-43881.exe unicorn-13154.exe no specs unicorn-46631.exe unicorn-50980.exe no specs unicorn-34644.exe no specs unicorn-44758.exe no specs unicorn-46704.exe no specs unicorn-60637.exe no specs unicorn-52826.exe no specs unicorn-40217.exe no specs unicorn-40217.exe no specs unicorn-34351.exe no specs unicorn-20616.exe no specs unicorn-5406.exe no specs unicorn-5406.exe no specs unicorn-45742.exe no specs unicorn-63507.exe no specs unicorn-51343.exe no specs unicorn-51343.exe no specs unicorn-51343.exe no specs unicorn-51343.exe unicorn-62278.exe no specs unicorn-65078.exe no specs unicorn-15126.exe no specs unicorn-28861.exe no specs unicorn-28861.exe no specs unicorn-55220.exe unicorn-26632.exe unicorn-41598.exe no specs unicorn-6787.exe no specs unicorn-33984.exe no specs unicorn-16993.exe no specs unicorn-22859.exe no specs unicorn-48432.exe no specs unicorn-28831.exe no specs unicorn-28831.exe unicorn-25161.exe unicorn-11426.exe no specs unicorn-41498.exe no specs unicorn-1550.exe unicorn-59780.exe unicorn-28208.exe unicorn-62656.exe no specs unicorn-27570.exe unicorn-9271.exe unicorn-54234.exe unicorn-41982.exe unicorn-22116.exe no specs unicorn-19486.exe no specs unicorn-22116.exe no specs unicorn-3149.exe no specs unicorn-37898.exe no specs unicorn-41717.exe unicorn-41598.exe no specs unicorn-61441.exe unicorn-3016.exe no specs unicorn-34368.exe no specs unicorn-29346.exe no specs unicorn-58318.exe no specs unicorn-58510.exe no specs unicorn-56180.exe no specs unicorn-2987.exe no specs unicorn-3642.exe no specs unicorn-49388.exe no specs unicorn-46621.exe no specs unicorn-59879.exe no specs unicorn-19542.exe no specs unicorn-7071.exe no specs unicorn-15842.exe no specs unicorn-9977.exe no specs unicorn-16108.exe no specs unicorn-16108.exe no specs unicorn-54240.exe unicorn-62905.exe unicorn-26313.exe no specs unicorn-35459.exe no specs unicorn-38474.exe unicorn-42558.exe unicorn-50726.exe no specs unicorn-30951.exe no specs unicorn-49911.exe no specs unicorn-3974.exe unicorn-2193.exe no specs unicorn-43688.exe no specs unicorn-41550.exe no specs unicorn-64738.exe no specs unicorn-53803.exe no specs unicorn-38095.exe no specs unicorn-40896.exe no specs unicorn-50845.exe no specs unicorn-5178.exe no specs unicorn-25044.exe no specs unicorn-27160.exe no specs unicorn-27160.exe no specs unicorn-8193.exe no specs unicorn-22906.exe unicorn-4986.exe no specs unicorn-6377.exe unicorn-37104.exe no specs unicorn-30882.exe no specs unicorn-11129.exe no specs unicorn-29512.exe unicorn-31549.exe no specs unicorn-27465.exe unicorn-28749.exe unicorn-56709.exe unicorn-56709.exe no specs unicorn-64090.exe no specs unicorn-34150.exe no specs unicorn-34150.exe no specs unicorn-466.exe no specs unicorn-3345.exe unicorn-16108.exe no specs unicorn-44094.exe no specs unicorn-13102.exe no specs unicorn-58292.exe no specs unicorn-15313.exe no specs unicorn-35826.exe no specs unicorn-9183.exe no specs unicorn-38540.exe no specs unicorn-21435.exe no specs unicorn-65208.exe no specs unicorn-48562.exe no specs unicorn-34150.exe no specs unicorn-2107.exe no specs unicorn-17814.exe no specs unicorn-37415.exe no specs unicorn-4907.exe no specs unicorn-55552.exe no specs werfault.exe no specs unicorn-28910.exe no specs unicorn-63720.exe no specs unicorn-8389.exe no specs unicorn-43108.exe no specs unicorn-41738.exe no specs unicorn-53990.exe no specs unicorn-17042.exe no specs unicorn-43684.exe no specs unicorn-24754.exe no specs unicorn-53890.exe no specs unicorn-53890.exe no specs unicorn-53890.exe no specs unicorn-33378.exe no specs slui.exe no specs unicorn-7290.exe no specs unicorn-46185.exe no specs unicorn-7919.exe no specs unicorn-35878.exe no specs unicorn-46206.exe no specs unicorn-62542.exe no specs unicorn-50845.exe no specs unicorn-4908.exe no specs unicorn-61780.exe no specs unicorn-40779.exe no specs unicorn-9257.exe no specs unicorn-45244.exe no specs unicorn-45244.exe no specs unicorn-45244.exe no specs unicorn-64580.exe no specs unicorn-60404.exe no specs unicorn-22064.exe no specs unicorn-25137.exe no specs unicorn-29797.exe no specs unicorn-23931.exe no specs unicorn-21131.exe no specs unicorn-11587.exe no specs unicorn-10772.exe no specs unicorn-56247.exe no specs unicorn-22369.exe no specs unicorn-57628.exe unicorn-30986.exe unicorn-8427.exe unicorn-12511.exe no specs unicorn-43793.exe no specs unicorn-54728.exe no specs unicorn-54728.exe no specs unicorn-19611.exe no specs unicorn-1940.exe no specs unicorn-45184.exe no specs unicorn-3895.exe unicorn-7896.exe no specs unicorn-32319.exe no specs unicorn-186.exe no specs unicorn-40522.exe no specs unicorn-57058.exe no specs unicorn-56237.exe no specs unicorn-54920.exe no specs unicorn-20606.exe no specs unicorn-20606.exe no specs unicorn-11941.exe no specs unicorn-20606.exe no specs unicorn-1006.exe no specs unicorn-18739.exe no specs unicorn-20606.exe no specs unicorn-1006.exe no specs unicorn-1006.exe no specs unicorn-24189.exe unicorn-50512.exe no specs unicorn-2595.exe no specs unicorn-50512.exe no specs unicorn-56377.exe no specs unicorn-50512.exe no specs unicorn-12901.exe no specs unicorn-47712.exe no specs unicorn-56377.exe no specs unicorn-56377.exe no specs unicorn-1966.exe no specs unicorn-1966.exe no specs unicorn-21566.exe no specs unicorn-1966.exe no specs unicorn-23869.exe no specs unicorn-47712.exe no specs unicorn-26470.exe no specs unicorn-63803.exe no specs unicorn-30554.exe no specs unicorn-52842.exe no specs unicorn-34367.exe no specs unicorn-20632.exe no specs unicorn-40233.exe no specs unicorn-9671.exe no specs unicorn-40398.exe no specs unicorn-23705.exe no specs unicorn-53326.exe no specs unicorn-53504.exe no specs unicorn-5971.exe no specs unicorn-57410.exe no specs unicorn-11836.exe no specs unicorn-21400.exe no specs unicorn-15370.exe no specs unicorn-44535.exe no specs unicorn-30574.exe no specs unicorn-36558.exe no specs unicorn-47494.exe no specs unicorn-48024.exe unicorn-56159.exe unicorn-30958.exe unicorn-50294.exe no specs unicorn-63830.exe no specs unicorn-52895.exe no specs unicorn-54286.exe no specs unicorn-27644.exe no specs unicorn-42829.exe no specs unicorn-1093.exe no specs unicorn-46526.exe no specs unicorn-6958.exe no specs unicorn-6958.exe no specs unicorn-21422.exe no specs unicorn-6958.exe no specs unicorn-36174.exe no specs unicorn-41218.exe no specs unicorn-41218.exe no specs unicorn-41218.exe no specs unicorn-33290.exe no specs unicorn-63055.exe no specs unicorn-16853.exe no specs unicorn-52319.exe no specs unicorn-54597.exe no specs unicorn-41458.exe no specs unicorn-14550.exe no specs unicorn-36776.exe no specs unicorn-3171.exe no specs unicorn-22024.exe no specs unicorn-3932.exe no specs unicorn-9532.exe no specs unicorn-36174.exe no specs unicorn-5448.exe no specs unicorn-48427.exe no specs unicorn-39704.exe no specs unicorn-48427.exe no specs unicorn-30913.exe no specs unicorn-48427.exe no specs unicorn-2490.exe no specs unicorn-2490.exe no specs unicorn-33674.exe no specs unicorn-47388.exe no specs unicorn-58270.exe no specs unicorn-47110.exe no specs unicorn-10631.exe no specs unicorn-62162.exe no specs unicorn-50586.exe no specs unicorn-9288.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
632C:\Users\admin\AppData\Local\Temp\Unicorn-52895.exeC:\Users\admin\AppData\Local\Temp\Unicorn-52895.exeUnicorn-41778.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
720C:\Users\admin\AppData\Local\Temp\Unicorn-65438.exeC:\Users\admin\AppData\Local\Temp\Unicorn-65438.exe
1 (26).exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-65438.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
728C:\Users\admin\AppData\Local\Temp\Unicorn-7295.exeC:\Users\admin\AppData\Local\Temp\Unicorn-7295.exe
Unicorn-36294.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-7295.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
856C:\Users\admin\AppData\Local\Temp\Unicorn-58032.exeC:\Users\admin\AppData\Local\Temp\Unicorn-58032.exe
Unicorn-13325.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-58032.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
896C:\Users\admin\AppData\Local\Temp\Unicorn-21566.exeC:\Users\admin\AppData\Local\Temp\Unicorn-21566.exeUnicorn-4856.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-21566.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
960C:\Users\admin\AppData\Local\Temp\Unicorn-50419.exeC:\Users\admin\AppData\Local\Temp\Unicorn-50419.exe
Unicorn-55737.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-50419.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1072C:\Users\admin\AppData\Local\Temp\Unicorn-12901.exeC:\Users\admin\AppData\Local\Temp\Unicorn-12901.exeUnicorn-61540.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-12901.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1088C:\Users\admin\AppData\Local\Temp\Unicorn-18343.exeC:\Users\admin\AppData\Local\Temp\Unicorn-18343.exe
Unicorn-30574.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-18343.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1128C:\Users\admin\AppData\Local\Temp\Unicorn-54286.exeC:\Users\admin\AppData\Local\Temp\Unicorn-54286.exeUnicorn-30986.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
1188C:\Users\admin\AppData\Local\Temp\Unicorn-50512.exeC:\Users\admin\AppData\Local\Temp\Unicorn-50512.exeUnicorn-45562.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-50512.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
Total events
12 677
Read events
12 677
Write events
0
Delete events
0

Modification events

No data
Executable files
818
Suspicious files
3
Text files
1
Unknown types
0

Dropped files

PID
Process
Filename
Type
4880Unicorn-54638.exeC:\Users\admin\AppData\Local\Temp\Unicorn-2469.exeexecutable
MD5:731BC31CA227CE8DA1340150D837A384
SHA256:31CD0373A9CE9F86CDE51F15E60B5CDB4E61333A3C4C85FF043105CA7A50E58A
42081 (26).exeC:\Users\admin\AppData\Local\Temp\Unicorn-54638.exeexecutable
MD5:B0E46AC17A828D08147A83627F50269A
SHA256:3E22DC3A8EBB25C75A549730F227D7C5EBA74462F8DCA313FA47F3761F593C94
6388Unicorn-2469.exeC:\Users\admin\AppData\Local\Temp\Unicorn-36294.exeexecutable
MD5:3AB81F754B7327CB33F65F906E295321
SHA256:5CDC5D0383D8910989C6BF6C713FFAFB7994ADC0AE758410E85EB978965BE577
42081 (26).exeC:\Users\admin\AppData\Local\Temp\Unicorn-55737.exeexecutable
MD5:0CA437986AB3421C9551C3FA407D229C
SHA256:153D23FD44C2394EDFE606D408C7CE0C340A3EB5A58111A0B5404BA481A3DCEF
4880Unicorn-54638.exeC:\Users\admin\AppData\Local\Temp\Unicorn-20512.exeexecutable
MD5:0B09059C514DB360B9BD149C0048621D
SHA256:BAC82EA7C382FDE06D6FBC67332C55B62D77763EF7BF7F0707734ACFA3CA7EF4
4244Unicorn-20512.exeC:\Users\admin\AppData\Local\Temp\Unicorn-44244.exeexecutable
MD5:D747B0D3D999F8FBDF20C7DE58732E49
SHA256:CAC6AB6748F03F4976D061BF5D856C12D32183DED83D5278821EF331181C6B4B
4880Unicorn-54638.exeC:\Users\admin\AppData\Local\Temp\Unicorn-19639.exeexecutable
MD5:34892D4E815BECAA85C070649309EA1F
SHA256:633B5E2D7A4DB55D1B8A4E7F8404C376C7BCB879E44C63B5BD73B1C425FA369D
3900Unicorn-48141.exeC:\Users\admin\AppData\Local\Temp\Unicorn-44462.exeexecutable
MD5:39F64C658A464B5DF89EAF7164EDA7F0
SHA256:FE4B237D65917A31A9F652BA697400C360E3A77EF83C518BB5F084A8EA17BEC6
4244Unicorn-20512.exeC:\Users\admin\AppData\Local\Temp\Unicorn-47897.exeexecutable
MD5:095FA9549528FED0B0BFC335234F71FC
SHA256:8B9A118B73AC04BD3C6158850B2E414E69CE6E14F6F96BB1C3B421A55976360E
6564Unicorn-36294.exeC:\Users\admin\AppData\Local\Temp\Unicorn-7295.exeexecutable
MD5:78C5CDE9570897AA4111C552FE147C23
SHA256:FD90CD903CE1E0671EF58B6C12C9B6AADE62ABC04CAEA685EF2F666F10C6586A
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
4
TCP/UDP connections
22
DNS requests
13
Threats
0

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
6544
svchost.exe
GET
200
2.23.77.188:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
8060
SIHClient.exe
GET
200
184.30.21.171:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Product%20Root%20Certificate%20Authority%202018.crl
unknown
whitelisted
8060
SIHClient.exe
GET
200
184.30.21.171:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Update%20Secure%20Server%20CA%202.1.crl
unknown
whitelisted
6108
backgroundTaskHost.exe
GET
200
2.23.77.188:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAUZZSZEml49Gjh0j13P68w%3D
unknown
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4.231.128.59:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
4
System
192.168.100.255:137
whitelisted
2104
svchost.exe
4.231.128.59:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
4
System
192.168.100.255:138
whitelisted
3216
svchost.exe
20.197.71.89:443
client.wns.windows.com
MICROSOFT-CORP-MSN-AS-BLOCK
SG
whitelisted
6544
svchost.exe
40.126.31.69:443
login.live.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
6544
svchost.exe
2.23.77.188:80
ocsp.digicert.com
AKAMAI-AS
DE
whitelisted
2112
svchost.exe
4.231.128.59:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
6108
backgroundTaskHost.exe
20.31.169.57:443
arc.msn.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
6108
backgroundTaskHost.exe
2.23.77.188:80
ocsp.digicert.com
AKAMAI-AS
DE
whitelisted

DNS requests

Domain
IP
Reputation
client.wns.windows.com
  • 20.197.71.89
whitelisted
login.live.com
  • 40.126.31.69
  • 40.126.31.0
  • 40.126.31.1
  • 40.126.31.3
  • 20.190.159.128
  • 20.190.159.130
  • 40.126.31.67
  • 20.190.159.73
whitelisted
ocsp.digicert.com
  • 2.23.77.188
whitelisted
settings-win.data.microsoft.com
  • 4.231.128.59
  • 51.104.136.2
whitelisted
arc.msn.com
  • 20.31.169.57
whitelisted
slscr.update.microsoft.com
  • 20.109.210.53
whitelisted
www.microsoft.com
  • 184.30.21.171
whitelisted
fe3cr.delivery.mp.microsoft.com
  • 13.85.23.206
whitelisted
activation-v2.sls.microsoft.com
  • 40.91.76.224
whitelisted
nexusrules.officeapps.live.com
  • 52.111.229.19
whitelisted

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
1 (26)