File name:

1 (1116)

Full analysis: https://app.any.run/tasks/30c3616d-b1ec-4b9e-a70a-24765bbceaa0
Verdict: Malicious activity
Analysis date: March 24, 2025, 09:22:42
OS: Windows 10 Professional (build: 19045, 64 bit)
Indicators:
MIME: application/vnd.microsoft.portable-executable
File info: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 3 sections
MD5:

2124132EE360EB018BD40009CF31B9B0

SHA1:

D7A47EA4DF39C265BB7B2B409BA6D37A66EBAD1B

SHA256:

7089B889C963086ED59912EC6C9167036893507140F3924E9912EC5D3AF78CC5

SSDEEP:

6144:S7Lpf7IteD+wA57rzYe+/ofxotBQHvJGB3/WyeOmFk/8SwjwpyAvEhgDufXEsqha:SvhMNwA5/zT0B4ha3OyeOmAx4DxmDsR

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    No malicious indicators.

  • SUSPICIOUS

    • Starts itself from another location

      • Unicorn-16610.exe (PID: 3240)
      • 1 (1116).exe (PID: 3020)
      • Unicorn-54011.exe (PID: 2140)
      • Unicorn-42728.exe (PID: 1272)
      • Unicorn-45495.exe (PID: 5256)
      • Unicorn-31619.exe (PID: 6644)
      • Unicorn-40399.exe (PID: 1804)
      • Unicorn-20244.exe (PID: 6488)
      • Unicorn-54307.exe (PID: 6540)
      • Unicorn-1577.exe (PID: 5112)
      • Unicorn-60804.exe (PID: 4200)
      • Unicorn-54674.exe (PID: 6372)
      • Unicorn-49107.exe (PID: 632)
      • Unicorn-23093.exe (PID: 1388)
      • Unicorn-34764.exe (PID: 5892)
      • Unicorn-17669.exe (PID: 3008)
      • Unicorn-46580.exe (PID: 5204)
      • Unicorn-34882.exe (PID: 1240)
      • Unicorn-48618.exe (PID: 736)
      • Unicorn-1271.exe (PID: 5344)
      • Unicorn-37705.exe (PID: 4880)
      • Unicorn-38028.exe (PID: 6132)
      • Unicorn-30222.exe (PID: 4488)
      • Unicorn-45931.exe (PID: 4988)
      • Unicorn-43958.exe (PID: 5116)
      • Unicorn-37836.exe (PID: 4608)
      • Unicorn-25584.exe (PID: 6824)
      • Unicorn-21500.exe (PID: 6228)
      • Unicorn-45236.exe (PID: 4464)
      • Unicorn-29018.exe (PID: 7224)
      • Unicorn-3767.exe (PID: 7240)
      • Unicorn-12298.exe (PID: 7360)
      • Unicorn-3575.exe (PID: 7344)
      • Unicorn-30117.exe (PID: 7376)
      • Unicorn-17533.exe (PID: 7512)
      • Unicorn-32024.exe (PID: 6676)
      • Unicorn-24622.exe (PID: 1228)
      • Unicorn-22001.exe (PID: 7448)
      • Unicorn-7337.exe (PID: 7272)
      • Unicorn-30618.exe (PID: 7744)
      • Unicorn-32164.exe (PID: 7368)
      • Unicorn-19720.exe (PID: 7396)
      • Unicorn-65145.exe (PID: 7808)
      • Unicorn-56668.exe (PID: 7388)
      • Unicorn-46646.exe (PID: 7296)
      • Unicorn-6624.exe (PID: 7736)
      • Unicorn-60554.exe (PID: 7600)
      • Unicorn-64322.exe (PID: 7404)
      • Unicorn-293.exe (PID: 7924)
      • Unicorn-51009.exe (PID: 7528)
      • Unicorn-30723.exe (PID: 7468)
      • Unicorn-5088.exe (PID: 7556)
      • Unicorn-57288.exe (PID: 8044)
      • Unicorn-54865.exe (PID: 7416)
      • Unicorn-8087.exe (PID: 8056)
      • Unicorn-60987.exe (PID: 7424)
      • Unicorn-38263.exe (PID: 8156)
      • Unicorn-10796.exe (PID: 7576)
      • Unicorn-51274.exe (PID: 7536)
      • Unicorn-39773.exe (PID: 7704)
      • Unicorn-15294.exe (PID: 7568)
      • Unicorn-54980.exe (PID: 7476)
      • Unicorn-11263.exe (PID: 7584)
      • Unicorn-9312.exe (PID: 8100)
      • Unicorn-17463.exe (PID: 1512)
      • Unicorn-43521.exe (PID: 7256)
      • Unicorn-3417.exe (PID: 7592)
      • Unicorn-39821.exe (PID: 3896)
      • Unicorn-27647.exe (PID: 7548)
      • Unicorn-56385.exe (PID: 7892)
      • Unicorn-57148.exe (PID: 7936)
      • Unicorn-23463.exe (PID: 7864)
      • Unicorn-11211.exe (PID: 7252)
      • Unicorn-49089.exe (PID: 7608)
      • Unicorn-13541.exe (PID: 4268)
      • Unicorn-11860.exe (PID: 7816)
      • Unicorn-5913.exe (PID: 8136)
      • Unicorn-46925.exe (PID: 8036)
      • Unicorn-64377.exe (PID: 7696)
      • Unicorn-1315.exe (PID: 8164)
      • Unicorn-38337.exe (PID: 7460)
      • Unicorn-1315.exe (PID: 7432)
      • Unicorn-40209.exe (PID: 8764)
      • Unicorn-47522.exe (PID: 6324)
      • Unicorn-26473.exe (PID: 8776)
      • Unicorn-25156.exe (PID: 8792)
      • Unicorn-8580.exe (PID: 4436)
      • Unicorn-20958.exe (PID: 9268)
      • Unicorn-11558.exe (PID: 9220)
      • Unicorn-14854.exe (PID: 7684)
      • Unicorn-55114.exe (PID: 8144)
      • Unicorn-56127.exe (PID: 8200)
      • Unicorn-54512.exe (PID: 8464)
      • Unicorn-37377.exe (PID: 6584)
      • Unicorn-48529.exe (PID: 8208)
      • Unicorn-57471.exe (PID: 8428)
      • Unicorn-23509.exe (PID: 9336)
      • Unicorn-10551.exe (PID: 8728)
      • Unicorn-5119.exe (PID: 8236)
      • Unicorn-36609.exe (PID: 9000)
      • Unicorn-13610.exe (PID: 9312)
      • Unicorn-2487.exe (PID: 9720)
      • Unicorn-39960.exe (PID: 8308)
      • Unicorn-14221.exe (PID: 8748)
      • Unicorn-7996.exe (PID: 10200)
      • Unicorn-56291.exe (PID: 9240)
      • Unicorn-37813.exe (PID: 8396)
      • Unicorn-59503.exe (PID: 8280)
      • Unicorn-14564.exe (PID: 9284)
      • Unicorn-65306.exe (PID: 8904)
      • Unicorn-29131.exe (PID: 7316)
      • Unicorn-31838.exe (PID: 9120)
      • Unicorn-18103.exe (PID: 7908)
      • Unicorn-18841.exe (PID: 9260)
      • Unicorn-54533.exe (PID: 8572)
      • Unicorn-61616.exe (PID: 7840)
      • Unicorn-21233.exe (PID: 9156)
      • Unicorn-50885.exe (PID: 9904)
      • Unicorn-58212.exe (PID: 8248)
      • Unicorn-25207.exe (PID: 9816)
      • Unicorn-28825.exe (PID: 8936)
      • Unicorn-39519.exe (PID: 9748)
      • Unicorn-36203.exe (PID: 8916)
      • Unicorn-36784.exe (PID: 8000)
      • Unicorn-56313.exe (PID: 10464)
      • Unicorn-56313.exe (PID: 10404)
      • Unicorn-40522.exe (PID: 9492)
      • Unicorn-62509.exe (PID: 8376)
      • Unicorn-45950.exe (PID: 9644)
      • Unicorn-51025.exe (PID: 8520)
      • Unicorn-32046.exe (PID: 10476)
      • Unicorn-39732.exe (PID: 3032)
      • Unicorn-48285.exe (PID: 8756)
      • Unicorn-63559.exe (PID: 9940)
      • Unicorn-43521.exe (PID: 7284)
      • Unicorn-895.exe (PID: 9784)
      • Unicorn-64730.exe (PID: 8672)
      • Unicorn-37678.exe (PID: 8988)
      • Unicorn-54621.exe (PID: 8080)
      • Unicorn-24439.exe (PID: 9792)
      • Unicorn-15665.exe (PID: 8216)
      • Unicorn-11751.exe (PID: 9980)
      • Unicorn-8181.exe (PID: 10440)
      • Unicorn-3796.exe (PID: 8352)
      • Unicorn-46090.exe (PID: 8300)
      • Unicorn-11558.exe (PID: 6208)
      • Unicorn-33822.exe (PID: 8812)
      • Unicorn-1356.exe (PID: 8588)
      • Unicorn-1824.exe (PID: 8532)
      • Unicorn-22030.exe (PID: 9704)
      • Unicorn-22629.exe (PID: 8692)
      • Unicorn-27267.exe (PID: 8700)
      • Unicorn-35265.exe (PID: 8628)
      • Unicorn-31019.exe (PID: 9920)
      • Unicorn-41897.exe (PID: 8412)
      • Unicorn-36900.exe (PID: 12524)
      • Unicorn-5924.exe (PID: 11932)
      • Unicorn-51902.exe (PID: 8544)
      • Unicorn-147.exe (PID: 12532)
      • Unicorn-58181.exe (PID: 9100)
      • Unicorn-22866.exe (PID: 12516)
      • Unicorn-32385.exe (PID: 7880)
      • Unicorn-27896.exe (PID: 9712)
      • Unicorn-53703.exe (PID: 10504)
      • Unicorn-27865.exe (PID: 10496)
      • Unicorn-58617.exe (PID: 8580)
      • Unicorn-20938.exe (PID: 1276)
      • Unicorn-24237.exe (PID: 12488)
      • Unicorn-55893.exe (PID: 12096)
      • Unicorn-12503.exe (PID: 9064)
      • Unicorn-63988.exe (PID: 12064)
      • Unicorn-39903.exe (PID: 9876)
      • Unicorn-27653.exe (PID: 12440)
      • Unicorn-46028.exe (PID: 13656)
      • Unicorn-33029.exe (PID: 13680)
      • Unicorn-18021.exe (PID: 10012)
      • Unicorn-1486.exe (PID: 668)
      • Unicorn-8181.exe (PID: 10432)
      • Unicorn-34897.exe (PID: 11896)
      • Unicorn-24237.exe (PID: 11872)
      • Unicorn-27792.exe (PID: 13772)
      • Unicorn-25643.exe (PID: 11172)
      • Unicorn-37704.exe (PID: 9096)
      • Unicorn-18544.exe (PID: 12464)
      • Unicorn-25416.exe (PID: 12956)
      • Unicorn-64922.exe (PID: 8620)
      • Unicorn-27782.exe (PID: 10372)
      • Unicorn-27305.exe (PID: 12088)
      • Unicorn-37258.exe (PID: 12268)
      • Unicorn-29207.exe (PID: 10316)
      • Unicorn-7771.exe (PID: 15792)
      • Unicorn-24861.exe (PID: 13668)
      • Unicorn-27653.exe (PID: 12448)
      • Unicorn-10968.exe (PID: 12072)
      • Unicorn-13371.exe (PID: 15804)
      • Unicorn-17683.exe (PID: 13032)
      • Unicorn-13827.exe (PID: 9152)
      • Unicorn-38943.exe (PID: 9808)
      • Unicorn-16281.exe (PID: 16088)
      • Unicorn-56801.exe (PID: 11092)
      • Unicorn-46074.exe (PID: 8848)
      • Unicorn-18544.exe (PID: 12688)
      • Unicorn-24875.exe (PID: 11048)
      • Unicorn-33449.exe (PID: 11116)
      • Unicorn-59733.exe (PID: 10524)
      • Unicorn-20307.exe (PID: 8440)
      • Unicorn-25409.exe (PID: 16484)
      • Unicorn-37258.exe (PID: 12132)
      • Unicorn-43677.exe (PID: 9996)
      • Unicorn-38145.exe (PID: 11196)
      • Unicorn-3738.exe (PID: 12108)
      • Unicorn-27391.exe (PID: 9684)
      • Unicorn-36158.exe (PID: 12192)
      • Unicorn-25409.exe (PID: 16492)
      • Unicorn-9648.exe (PID: 16516)
      • Unicorn-14953.exe (PID: 11004)
      • Unicorn-9546.exe (PID: 10808)
      • Unicorn-26167.exe (PID: 9912)
      • Unicorn-50605.exe (PID: 10336)
      • Unicorn-34554.exe (PID: 10996)
      • Unicorn-60117.exe (PID: 10972)
      • Unicorn-13984.exe (PID: 13640)
      • Unicorn-21995.exe (PID: 9148)
      • Unicorn-42903.exe (PID: 12140)
      • Unicorn-6012.exe (PID: 12200)
      • Unicorn-29479.exe (PID: 11156)
      • Unicorn-40843.exe (PID: 12308)
      • Unicorn-36734.exe (PID: 12016)
      • Unicorn-40797.exe (PID: 9652)
      • Unicorn-22380.exe (PID: 15244)
      • Unicorn-35089.exe (PID: 12232)
      • Unicorn-19537.exe (PID: 14516)
      • Unicorn-41181.exe (PID: 11708)
      • Unicorn-37973.exe (PID: 12500)
      • Unicorn-61923.exe (PID: 12996)
      • Unicorn-22192.exe (PID: 13764)
      • Unicorn-18544.exe (PID: 11180)
      • Unicorn-44388.exe (PID: 12048)
      • Unicorn-44083.exe (PID: 10836)
      • Unicorn-50713.exe (PID: 10348)
      • Unicorn-34118.exe (PID: 8004)

    • Executable content was dropped or overwritten

      • 1 (1116).exe (PID: 3020)
      • Unicorn-42728.exe (PID: 1272)
      • Unicorn-54011.exe (PID: 2140)
      • Unicorn-16610.exe (PID: 3240)
      • Unicorn-31619.exe (PID: 6644)
      • Unicorn-45495.exe (PID: 5256)
      • Unicorn-40399.exe (PID: 1804)
      • Unicorn-20244.exe (PID: 6488)
      • Unicorn-60804.exe (PID: 4200)
      • Unicorn-34764.exe (PID: 5892)
      • Unicorn-54307.exe (PID: 6540)
      • Unicorn-54674.exe (PID: 6372)
      • Unicorn-23093.exe (PID: 1388)
      • Unicorn-49107.exe (PID: 632)
      • Unicorn-32024.exe (PID: 6676)
      • Unicorn-45236.exe (PID: 4464)
      • Unicorn-46580.exe (PID: 5204)
      • Unicorn-34882.exe (PID: 1240)
      • Unicorn-1577.exe (PID: 5112)
      • Unicorn-48618.exe (PID: 736)
      • Unicorn-1271.exe (PID: 5344)
      • Unicorn-37705.exe (PID: 4880)
      • Unicorn-45931.exe (PID: 4988)
      • Unicorn-38028.exe (PID: 6132)
      • Unicorn-25584.exe (PID: 6824)
      • Unicorn-43958.exe (PID: 5116)
      • Unicorn-37836.exe (PID: 4608)
      • Unicorn-24622.exe (PID: 1228)
      • Unicorn-21500.exe (PID: 6228)
      • Unicorn-29018.exe (PID: 7224)
      • Unicorn-7337.exe (PID: 7272)
      • Unicorn-3767.exe (PID: 7240)
      • Unicorn-3575.exe (PID: 7344)
      • Unicorn-12298.exe (PID: 7360)
      • Unicorn-30117.exe (PID: 7376)
      • Unicorn-17533.exe (PID: 7512)
      • Unicorn-17669.exe (PID: 3008)
      • Unicorn-32164.exe (PID: 7368)
      • Unicorn-38337.exe (PID: 7460)
      • Unicorn-30618.exe (PID: 7744)
      • Unicorn-6624.exe (PID: 7736)
      • Unicorn-22001.exe (PID: 7448)
      • Unicorn-65145.exe (PID: 7808)
      • Unicorn-56668.exe (PID: 7388)
      • Unicorn-46646.exe (PID: 7296)
      • Unicorn-60554.exe (PID: 7600)
      • Unicorn-293.exe (PID: 7924)
      • Unicorn-39773.exe (PID: 7704)
      • Unicorn-51009.exe (PID: 7528)
      • Unicorn-64322.exe (PID: 7404)
      • Unicorn-30723.exe (PID: 7468)
      • Unicorn-57288.exe (PID: 8044)
      • Unicorn-5088.exe (PID: 7556)
      • Unicorn-38263.exe (PID: 8156)
      • Unicorn-10796.exe (PID: 7576)
      • Unicorn-60987.exe (PID: 7424)
      • Unicorn-8087.exe (PID: 8056)
      • Unicorn-54865.exe (PID: 7416)
      • Unicorn-54980.exe (PID: 7476)
      • Unicorn-15294.exe (PID: 7568)
      • Unicorn-9312.exe (PID: 8100)
      • Unicorn-17463.exe (PID: 1512)
      • Unicorn-51274.exe (PID: 7536)
      • Unicorn-11263.exe (PID: 7584)
      • Unicorn-43521.exe (PID: 7256)
      • Unicorn-19720.exe (PID: 7396)
      • Unicorn-3417.exe (PID: 7592)
      • Unicorn-27647.exe (PID: 7548)
      • Unicorn-39821.exe (PID: 3896)
      • Unicorn-23463.exe (PID: 7864)
      • Unicorn-5913.exe (PID: 8136)
      • Unicorn-57148.exe (PID: 7936)
      • Unicorn-56385.exe (PID: 7892)
      • Unicorn-13541.exe (PID: 4268)
      • Unicorn-11211.exe (PID: 7252)
      • Unicorn-11860.exe (PID: 7816)
      • Unicorn-49089.exe (PID: 7608)
      • Unicorn-64377.exe (PID: 7696)
      • Unicorn-46925.exe (PID: 8036)
      • Unicorn-30222.exe (PID: 4488)
      • Unicorn-1315.exe (PID: 7432)
      • Unicorn-1315.exe (PID: 8164)
      • Unicorn-26473.exe (PID: 8776)
      • Unicorn-40209.exe (PID: 8764)
      • Unicorn-25156.exe (PID: 8792)
      • Unicorn-47522.exe (PID: 6324)
      • Unicorn-20958.exe (PID: 9268)
      • Unicorn-11558.exe (PID: 9220)
      • Unicorn-55114.exe (PID: 8144)
      • Unicorn-14854.exe (PID: 7684)
      • Unicorn-8580.exe (PID: 4436)
      • Unicorn-56127.exe (PID: 8200)
      • Unicorn-54512.exe (PID: 8464)
      • Unicorn-37377.exe (PID: 6584)
      • Unicorn-48529.exe (PID: 8208)
      • Unicorn-10551.exe (PID: 8728)
      • Unicorn-23509.exe (PID: 9336)
      • Unicorn-5119.exe (PID: 8236)
      • Unicorn-36609.exe (PID: 9000)
      • Unicorn-39960.exe (PID: 8308)
      • Unicorn-13610.exe (PID: 9312)
      • Unicorn-2487.exe (PID: 9720)
      • Unicorn-56291.exe (PID: 9240)
      • Unicorn-14221.exe (PID: 8748)
      • Unicorn-7996.exe (PID: 10200)
      • Unicorn-37813.exe (PID: 8396)
      • Unicorn-61549.exe (PID: 8272)
      • Unicorn-59503.exe (PID: 8280)
      • Unicorn-65306.exe (PID: 8904)
      • Unicorn-14564.exe (PID: 9284)
      • Unicorn-31838.exe (PID: 9120)
      • Unicorn-18841.exe (PID: 9260)
      • Unicorn-54533.exe (PID: 8572)
      • Unicorn-61616.exe (PID: 7840)
      • Unicorn-21150.exe (PID: 9016)
      • Unicorn-29131.exe (PID: 7316)
      • Unicorn-3796.exe (PID: 8352)
      • Unicorn-9660.exe (PID: 9952)
      • Unicorn-50885.exe (PID: 9904)
      • Unicorn-58212.exe (PID: 8248)
      • Unicorn-25207.exe (PID: 9816)
      • Unicorn-39519.exe (PID: 9748)
      • Unicorn-22629.exe (PID: 8692)
      • Unicorn-36203.exe (PID: 8916)
      • Unicorn-36784.exe (PID: 8000)
      • Unicorn-27267.exe (PID: 8700)
      • Unicorn-56313.exe (PID: 10404)
      • Unicorn-48285.exe (PID: 8756)
      • Unicorn-28825.exe (PID: 8936)
      • Unicorn-62509.exe (PID: 8376)
      • Unicorn-51025.exe (PID: 8520)
      • Unicorn-45950.exe (PID: 9644)
      • Unicorn-12519.exe (PID: 8108)
      • Unicorn-32046.exe (PID: 10476)
      • Unicorn-63559.exe (PID: 9940)
      • Unicorn-11751.exe (PID: 9980)
      • Unicorn-43521.exe (PID: 7284)
      • Unicorn-895.exe (PID: 9784)
      • Unicorn-64730.exe (PID: 8672)
      • Unicorn-54621.exe (PID: 8080)
      • Unicorn-15665.exe (PID: 8216)
      • Unicorn-8181.exe (PID: 10440)
      • Unicorn-34118.exe (PID: 8004)
      • Unicorn-46090.exe (PID: 8300)
      • Unicorn-22030.exe (PID: 9704)
      • Unicorn-1356.exe (PID: 8588)
      • Unicorn-11558.exe (PID: 6208)
      • Unicorn-33822.exe (PID: 8812)
      • Unicorn-1824.exe (PID: 8532)
      • Unicorn-35265.exe (PID: 8628)
      • Unicorn-18103.exe (PID: 7908)
      • Unicorn-31019.exe (PID: 9920)
      • Unicorn-41897.exe (PID: 8412)
      • Unicorn-36900.exe (PID: 12524)
      • Unicorn-34897.exe (PID: 11896)
      • Unicorn-24237.exe (PID: 11872)
      • Unicorn-5924.exe (PID: 11932)
      • Unicorn-51902.exe (PID: 8544)
      • Unicorn-58181.exe (PID: 9100)
      • Unicorn-27865.exe (PID: 10496)
      • Unicorn-58617.exe (PID: 8580)
      • Unicorn-22866.exe (PID: 12516)
      • Unicorn-147.exe (PID: 12532)
      • Unicorn-49157.exe (PID: 9824)
      • Unicorn-32385.exe (PID: 7880)
      • Unicorn-27782.exe (PID: 10384)
      • Unicorn-27896.exe (PID: 9712)
      • Unicorn-46074.exe (PID: 8848)
      • Unicorn-33822.exe (PID: 8832)
      • Unicorn-20938.exe (PID: 1276)
      • Unicorn-24237.exe (PID: 12488)
      • Unicorn-55893.exe (PID: 12096)
      • Unicorn-59733.exe (PID: 10524)
      • Unicorn-18021.exe (PID: 10012)
      • Unicorn-46028.exe (PID: 13656)
      • Unicorn-39903.exe (PID: 9876)
      • Unicorn-20307.exe (PID: 8440)
      • Unicorn-55156.exe (PID: 12660)
      • Unicorn-63988.exe (PID: 12064)
      • Unicorn-27653.exe (PID: 12440)
      • Unicorn-24861.exe (PID: 13668)
      • Unicorn-1486.exe (PID: 668)
      • Unicorn-8181.exe (PID: 10432)
      • Unicorn-38943.exe (PID: 9808)
      • Unicorn-27792.exe (PID: 13772)
      • Unicorn-25643.exe (PID: 11172)
      • Unicorn-18544.exe (PID: 12464)
      • Unicorn-25416.exe (PID: 12956)
      • Unicorn-7771.exe (PID: 15792)
      • Unicorn-37704.exe (PID: 9096)
      • Unicorn-27305.exe (PID: 12088)
      • Unicorn-27653.exe (PID: 12448)
      • Unicorn-9001.exe (PID: 9660)
      • Unicorn-64922.exe (PID: 8620)
      • Unicorn-27782.exe (PID: 10372)
      • Unicorn-10968.exe (PID: 12072)
      • Unicorn-13371.exe (PID: 15804)
      • Unicorn-17683.exe (PID: 13032)
      • Unicorn-13827.exe (PID: 9152)
      • Unicorn-40033.exe (PID: 11204)
      • Unicorn-33029.exe (PID: 13680)
      • Unicorn-21995.exe (PID: 9148)
      • Unicorn-6832.exe (PID: 10980)
      • Unicorn-24875.exe (PID: 11048)
      • Unicorn-33449.exe (PID: 11116)
      • Unicorn-37258.exe (PID: 12132)
      • Unicorn-43833.exe (PID: 12036)
      • Unicorn-21226.exe (PID: 13260)
      • Unicorn-25409.exe (PID: 16484)
      • Unicorn-25409.exe (PID: 16492)
      • Unicorn-43677.exe (PID: 9996)
      • Unicorn-36158.exe (PID: 12192)
      • Unicorn-3738.exe (PID: 12108)
      • Unicorn-27391.exe (PID: 9684)
      • Unicorn-61601.exe (PID: 9800)
      • Unicorn-60589.exe (PID: 8552)
      • Unicorn-9648.exe (PID: 16516)
      • Unicorn-50605.exe (PID: 10336)
      • Unicorn-34554.exe (PID: 10996)
      • Unicorn-60117.exe (PID: 10972)
      • Unicorn-13984.exe (PID: 13640)
      • Unicorn-40797.exe (PID: 9652)
      • Unicorn-48638.exe (PID: 10048)
      • Unicorn-26167.exe (PID: 9912)
      • Unicorn-42903.exe (PID: 12140)
      • Unicorn-40843.exe (PID: 12308)
      • Unicorn-22380.exe (PID: 15244)
      • Unicorn-29479.exe (PID: 11156)
      • Unicorn-35089.exe (PID: 12232)
      • Unicorn-19537.exe (PID: 14516)
      • Unicorn-6012.exe (PID: 12200)
      • Unicorn-22192.exe (PID: 13764)
      • Unicorn-37973.exe (PID: 12500)
      • Unicorn-61923.exe (PID: 12996)
      • Unicorn-37019.exe (PID: 9636)
      • Unicorn-18544.exe (PID: 11180)
      • Unicorn-41181.exe (PID: 11708)
      • Unicorn-44083.exe (PID: 10836)
      • Unicorn-50713.exe (PID: 10348)
      • Unicorn-51288.exe (PID: 15276)
      • Unicorn-1299.exe (PID: 12572)
      • Unicorn-43838.exe (PID: 12540)
      • Unicorn-26764.exe (PID: 3396)
      • Unicorn-20727.exe (PID: 16184)
      • Unicorn-27938.exe (PID: 10564)
      • Unicorn-20727.exe (PID: 16176)
      • Unicorn-48000.exe (PID: 4056)
      • Unicorn-30067.exe (PID: 8968)
      • Unicorn-16281.exe (PID: 16088)
      • Unicorn-50488.exe (PID: 8972)
      • Unicorn-15977.exe (PID: 12260)
      • Unicorn-37667.exe (PID: 13744)
      • Unicorn-63360.exe (PID: 2332)
      • Unicorn-40843.exe (PID: 12332)
      • Unicorn-8788.exe (PID: 9192)
      • Unicorn-33046.exe (PID: 12376)
      • Unicorn-41181.exe (PID: 12280)
      • Unicorn-59785.exe (PID: 13016)
      • Unicorn-31929.exe (PID: 12428)
      • Unicorn-29778.exe (PID: 11680)
      • Unicorn-14535.exe (PID: 13056)
      • Unicorn-55323.exe (PID: 12056)
      • Unicorn-54186.exe (PID: 14264)
      • Unicorn-28439.exe (PID: 4172)
      • Unicorn-24237.exe (PID: 12480)
      • Unicorn-13620.exe (PID: 13912)
      • Unicorn-15379.exe (PID: 15228)
      • Unicorn-34719.exe (PID: 9836)
      • Unicorn-49423.exe (PID: 12944)
      • Unicorn-57471.exe (PID: 8428)
      • Unicorn-63869.exe (PID: 12160)
      • Unicorn-34314.exe (PID: 15252)
      • Unicorn-14953.exe (PID: 11004)
      • Unicorn-27782.exe (PID: 10412)
      • Unicorn-40917.exe (PID: 15204)

    • Executes application which crashes

      • Unicorn-29128.exe (PID: 2316)

  • INFO

    • The sample compiled with chinese language support

      • 1 (1116).exe (PID: 3020)

    • Create files in a temporary directory

      • Unicorn-16610.exe (PID: 3240)
      • Unicorn-42728.exe (PID: 1272)
      • Unicorn-54011.exe (PID: 2140)
      • Unicorn-45495.exe (PID: 5256)
      • Unicorn-40399.exe (PID: 1804)
      • Unicorn-54307.exe (PID: 6540)
      • Unicorn-34764.exe (PID: 5892)
      • Unicorn-54674.exe (PID: 6372)
      • 1 (1116).exe (PID: 3020)
      • Unicorn-49107.exe (PID: 632)
      • Unicorn-23093.exe (PID: 1388)
      • Unicorn-31619.exe (PID: 6644)
      • Unicorn-1271.exe (PID: 5344)
      • Unicorn-20244.exe (PID: 6488)
      • Unicorn-45931.exe (PID: 4988)
      • Unicorn-25584.exe (PID: 6824)
      • Unicorn-32024.exe (PID: 6676)
      • Unicorn-3767.exe (PID: 7240)
      • Unicorn-3575.exe (PID: 7344)
      • Unicorn-12298.exe (PID: 7360)
      • Unicorn-24622.exe (PID: 1228)
      • Unicorn-7337.exe (PID: 7272)
      • Unicorn-30117.exe (PID: 7376)
      • Unicorn-17669.exe (PID: 3008)
      • Unicorn-32164.exe (PID: 7368)
      • Unicorn-38337.exe (PID: 7460)
      • Unicorn-1577.exe (PID: 5112)
      • Unicorn-6624.exe (PID: 7736)
      • Unicorn-22001.exe (PID: 7448)
      • Unicorn-34882.exe (PID: 1240)
      • Unicorn-65145.exe (PID: 7808)
      • Unicorn-51009.exe (PID: 7528)
      • Unicorn-46646.exe (PID: 7296)
      • Unicorn-38028.exe (PID: 6132)
      • Unicorn-60554.exe (PID: 7600)
      • Unicorn-293.exe (PID: 7924)
      • Unicorn-64322.exe (PID: 7404)
      • Unicorn-48618.exe (PID: 736)
      • Unicorn-60804.exe (PID: 4200)
      • Unicorn-5088.exe (PID: 7556)
      • Unicorn-38263.exe (PID: 8156)
      • Unicorn-60987.exe (PID: 7424)
      • Unicorn-54865.exe (PID: 7416)
      • Unicorn-15294.exe (PID: 7568)
      • Unicorn-51274.exe (PID: 7536)
      • Unicorn-11263.exe (PID: 7584)
      • Unicorn-37705.exe (PID: 4880)
      • Unicorn-19720.exe (PID: 7396)
      • Unicorn-27647.exe (PID: 7548)
      • Unicorn-57148.exe (PID: 7936)
      • Unicorn-5913.exe (PID: 8136)
      • Unicorn-13541.exe (PID: 4268)
      • Unicorn-56385.exe (PID: 7892)
      • Unicorn-23463.exe (PID: 7864)
      • Unicorn-11860.exe (PID: 7816)
      • Unicorn-49089.exe (PID: 7608)
      • Unicorn-21500.exe (PID: 6228)
      • Unicorn-64377.exe (PID: 7696)
      • Unicorn-1315.exe (PID: 8164)
      • Unicorn-26473.exe (PID: 8776)
      • Unicorn-25156.exe (PID: 8792)
      • Unicorn-40209.exe (PID: 8764)
      • Unicorn-47522.exe (PID: 6324)
      • Unicorn-29018.exe (PID: 7224)
      • Unicorn-14854.exe (PID: 7684)
      • Unicorn-30618.exe (PID: 7744)
      • Unicorn-45236.exe (PID: 4464)
      • Unicorn-46580.exe (PID: 5204)
      • Unicorn-20958.exe (PID: 9268)
      • Unicorn-55114.exe (PID: 8144)
      • Unicorn-17533.exe (PID: 7512)
      • Unicorn-54512.exe (PID: 8464)
      • Unicorn-37377.exe (PID: 6584)
      • Unicorn-10551.exe (PID: 8728)
      • Unicorn-56668.exe (PID: 7388)
      • Unicorn-23509.exe (PID: 9336)
      • Unicorn-39960.exe (PID: 8308)
      • Unicorn-36609.exe (PID: 9000)
      • Unicorn-37813.exe (PID: 8396)
      • Unicorn-59503.exe (PID: 8280)
      • Unicorn-65306.exe (PID: 8904)
      • Unicorn-21150.exe (PID: 9016)
      • Unicorn-31838.exe (PID: 9120)
      • Unicorn-18841.exe (PID: 9260)
      • Unicorn-57288.exe (PID: 8044)
      • Unicorn-54533.exe (PID: 8572)
      • Unicorn-54980.exe (PID: 7476)
      • Unicorn-3796.exe (PID: 8352)
      • Unicorn-58212.exe (PID: 8248)
      • Unicorn-25207.exe (PID: 9816)
      • Unicorn-28825.exe (PID: 8936)
      • Unicorn-8580.exe (PID: 4436)
      • Unicorn-43958.exe (PID: 5116)
      • Unicorn-22629.exe (PID: 8692)
      • Unicorn-56313.exe (PID: 10404)
      • Unicorn-32046.exe (PID: 10476)
      • Unicorn-39773.exe (PID: 7704)
      • Unicorn-1315.exe (PID: 7432)
      • Unicorn-62509.exe (PID: 8376)
      • Unicorn-43521.exe (PID: 7284)
      • Unicorn-895.exe (PID: 9784)
      • Unicorn-64730.exe (PID: 8672)
      • Unicorn-43521.exe (PID: 7256)
      • Unicorn-11751.exe (PID: 9980)
      • Unicorn-37836.exe (PID: 4608)
      • Unicorn-9660.exe (PID: 9952)
      • Unicorn-8087.exe (PID: 8056)
      • Unicorn-10796.exe (PID: 7576)
      • Unicorn-34118.exe (PID: 8004)
      • Unicorn-7996.exe (PID: 10200)
      • Unicorn-11558.exe (PID: 9220)
      • Unicorn-1356.exe (PID: 8588)
      • Unicorn-27267.exe (PID: 8700)
      • Unicorn-24237.exe (PID: 11872)
      • Unicorn-18103.exe (PID: 7908)
      • Unicorn-30222.exe (PID: 4488)
      • Unicorn-50885.exe (PID: 9904)
      • Unicorn-13610.exe (PID: 9312)
      • Unicorn-36900.exe (PID: 12524)
      • Unicorn-29131.exe (PID: 7316)
      • Unicorn-14221.exe (PID: 8748)
      • Unicorn-58617.exe (PID: 8580)
      • Unicorn-39821.exe (PID: 3896)
      • Unicorn-27782.exe (PID: 10384)
      • Unicorn-27896.exe (PID: 9712)
      • Unicorn-18021.exe (PID: 10012)
      • Unicorn-33822.exe (PID: 8832)
      • Unicorn-55156.exe (PID: 12660)
      • Unicorn-54621.exe (PID: 8080)
      • Unicorn-27653.exe (PID: 12440)
      • Unicorn-1486.exe (PID: 668)
      • Unicorn-5924.exe (PID: 11932)
      • Unicorn-55893.exe (PID: 12096)
      • Unicorn-20938.exe (PID: 1276)
      • Unicorn-27865.exe (PID: 10496)
      • Unicorn-46028.exe (PID: 13656)
      • Unicorn-24861.exe (PID: 13668)
      • Unicorn-51902.exe (PID: 8544)
      • Unicorn-36203.exe (PID: 8916)
      • Unicorn-40033.exe (PID: 11204)
      • Unicorn-21995.exe (PID: 9148)
      • Unicorn-21226.exe (PID: 13260)
      • Unicorn-50605.exe (PID: 10336)
      • Unicorn-40843.exe (PID: 12308)
      • Unicorn-40797.exe (PID: 9652)
      • Unicorn-26167.exe (PID: 9912)
      • Unicorn-35089.exe (PID: 12232)

    • Checks supported languages

      • 1 (1116).exe (PID: 3020)
      • Unicorn-31619.exe (PID: 6644)
      • Unicorn-20244.exe (PID: 6488)
      • Unicorn-40399.exe (PID: 1804)
      • Unicorn-42728.exe (PID: 1272)
      • Unicorn-49107.exe (PID: 632)
      • Unicorn-54674.exe (PID: 6372)
      • Unicorn-32024.exe (PID: 6676)
      • Unicorn-60804.exe (PID: 4200)
      • Unicorn-48618.exe (PID: 736)
      • Unicorn-17669.exe (PID: 3008)
      • Unicorn-29128.exe (PID: 2316)
      • Unicorn-16610.exe (PID: 3240)
      • Unicorn-37705.exe (PID: 4880)
      • Unicorn-45931.exe (PID: 4988)
      • Unicorn-21500.exe (PID: 6228)
      • Unicorn-43958.exe (PID: 5116)
      • Unicorn-24622.exe (PID: 1228)
      • Unicorn-30222.exe (PID: 4488)
      • Unicorn-29018.exe (PID: 7224)
      • Unicorn-3767.exe (PID: 7240)
      • Unicorn-46646.exe (PID: 7296)
      • Unicorn-3575.exe (PID: 7344)
      • Unicorn-32164.exe (PID: 7368)
      • Unicorn-30117.exe (PID: 7376)
      • Unicorn-19720.exe (PID: 7396)
      • Unicorn-64322.exe (PID: 7404)
      • Unicorn-54865.exe (PID: 7416)
      • Unicorn-38337.exe (PID: 7460)
      • Unicorn-30723.exe (PID: 7468)
      • Unicorn-51009.exe (PID: 7528)
      • Unicorn-17533.exe (PID: 7512)
      • Unicorn-51274.exe (PID: 7536)
      • Unicorn-27647.exe (PID: 7548)
      • Unicorn-54980.exe (PID: 7476)
      • Unicorn-30618.exe (PID: 7744)
      • Unicorn-10796.exe (PID: 7576)
      • Unicorn-14854.exe (PID: 7684)
      • Unicorn-11860.exe (PID: 7816)
      • Unicorn-3417.exe (PID: 7592)
      • Unicorn-39773.exe (PID: 7704)
      • Unicorn-293.exe (PID: 7924)
      • Unicorn-57148.exe (PID: 7936)
      • Unicorn-61616.exe (PID: 7840)
      • Unicorn-8087.exe (PID: 8056)
      • Unicorn-54621.exe (PID: 8080)
      • Unicorn-5913.exe (PID: 8136)
      • Unicorn-55114.exe (PID: 8144)
      • Unicorn-57288.exe (PID: 8044)
      • Unicorn-17463.exe (PID: 1512)
      • Unicorn-39821.exe (PID: 3896)
      • Unicorn-1315.exe (PID: 8164)
      • Unicorn-47522.exe (PID: 6324)
      • Unicorn-13541.exe (PID: 4268)
      • Unicorn-29131.exe (PID: 7316)
      • Unicorn-23463.exe (PID: 7864)
      • Unicorn-56385.exe (PID: 7892)
      • Unicorn-43521.exe (PID: 7256)
      • Unicorn-60973.exe (PID: 3268)
      • Unicorn-12519.exe (PID: 8108)
      • Unicorn-48529.exe (PID: 8208)
      • Unicorn-15665.exe (PID: 8216)
      • Unicorn-58212.exe (PID: 8248)
      • Unicorn-46090.exe (PID: 8300)
      • Unicorn-39960.exe (PID: 8308)
      • Unicorn-37813.exe (PID: 8396)
      • Unicorn-20307.exe (PID: 8440)
      • Unicorn-54512.exe (PID: 8464)
      • Unicorn-25156.exe (PID: 8792)
      • Unicorn-5119.exe (PID: 8236)
      • Unicorn-54533.exe (PID: 8572)
      • Unicorn-58617.exe (PID: 8580)
      • Unicorn-26473.exe (PID: 8776)
      • Unicorn-51025.exe (PID: 8520)
      • Unicorn-64730.exe (PID: 8672)
      • Unicorn-64922.exe (PID: 8620)
      • Unicorn-1356.exe (PID: 8588)
      • Unicorn-33822.exe (PID: 8832)
      • Unicorn-46074.exe (PID: 8848)
      • Unicorn-14221.exe (PID: 8748)
      • Unicorn-33822.exe (PID: 8812)
      • Unicorn-46074.exe (PID: 8840)
      • Unicorn-36203.exe (PID: 8916)
      • Unicorn-28825.exe (PID: 8936)
      • Unicorn-22629.exe (PID: 8692)
      • Unicorn-35265.exe (PID: 8628)
      • Unicorn-36609.exe (PID: 9000)
      • Unicorn-21150.exe (PID: 9016)
      • Unicorn-60589.exe (PID: 8552)
      • Unicorn-37678.exe (PID: 8988)
      • Unicorn-18841.exe (PID: 9260)
      • Unicorn-20958.exe (PID: 9268)
      • Unicorn-63360.exe (PID: 2332)
      • Unicorn-23509.exe (PID: 9336)
      • Unicorn-37377.exe (PID: 6584)
      • Unicorn-8788.exe (PID: 9192)
      • Unicorn-11558.exe (PID: 6208)
      • Unicorn-63360.exe (PID: 9392)
      • Unicorn-39732.exe (PID: 3032)
      • Unicorn-40522.exe (PID: 9492)
      • Unicorn-40797.exe (PID: 9652)
      • Unicorn-9001.exe (PID: 9660)
      • Unicorn-27391.exe (PID: 9684)
      • Unicorn-27896.exe (PID: 9712)
      • Unicorn-24439.exe (PID: 9792)
      • Unicorn-7996.exe (PID: 10200)
      • Unicorn-34719.exe (PID: 9836)
      • Unicorn-9971.exe (PID: 9868)
      • Unicorn-39903.exe (PID: 9876)
      • Unicorn-18103.exe (PID: 7908)
      • Unicorn-50885.exe (PID: 9904)
      • Unicorn-63559.exe (PID: 9940)
      • Unicorn-45649.exe (PID: 9756)
      • Unicorn-361.exe (PID: 10108)
      • Unicorn-48638.exe (PID: 10048)
      • Unicorn-11751.exe (PID: 9980)
      • Unicorn-12503.exe (PID: 9064)
      • Unicorn-26167.exe (PID: 9912)
      • Unicorn-43677.exe (PID: 9996)
      • Unicorn-55566.exe (PID: 10420)
      • Unicorn-27782.exe (PID: 10384)
      • Unicorn-1596.exe (PID: 10292)
      • Unicorn-21916.exe (PID: 10356)
      • Unicorn-52935.exe (PID: 10272)
      • Unicorn-53703.exe (PID: 10504)
      • Unicorn-27865.exe (PID: 10496)
      • Unicorn-27938.exe (PID: 10564)
      • Unicorn-27782.exe (PID: 10372)
      • Unicorn-27782.exe (PID: 10412)
      • Unicorn-56313.exe (PID: 10404)
      • Unicorn-32046.exe (PID: 10476)
      • Unicorn-56313.exe (PID: 10464)
      • Unicorn-13827.exe (PID: 9152)
      • Unicorn-41586.exe (PID: 10088)
      • Unicorn-29207.exe (PID: 10316)
      • Unicorn-60117.exe (PID: 10972)
      • Unicorn-26764.exe (PID: 3396)
      • Unicorn-6832.exe (PID: 10980)
      • Unicorn-4511.exe (PID: 10364)
      • Unicorn-38145.exe (PID: 11196)
      • Unicorn-24237.exe (PID: 11872)
      • Unicorn-34897.exe (PID: 11896)
      • Unicorn-24875.exe (PID: 11048)
      • Unicorn-18544.exe (PID: 11180)
      • Unicorn-30220.exe (PID: 11020)
      • Unicorn-46779.exe (PID: 11056)
      • Unicorn-938.exe (PID: 11220)
      • Unicorn-56801.exe (PID: 11084)
      • Unicorn-52141.exe (PID: 10960)
      • Unicorn-63988.exe (PID: 12064)
      • Unicorn-42903.exe (PID: 12124)
      • Unicorn-3738.exe (PID: 12108)
      • Unicorn-42903.exe (PID: 12652)
      • Unicorn-55156.exe (PID: 12660)
      • Unicorn-44388.exe (PID: 12048)
      • Unicorn-41803.exe (PID: 12600)
      • Unicorn-12660.exe (PID: 12508)
      • Unicorn-18544.exe (PID: 12464)
      • Unicorn-18544.exe (PID: 12688)
      • Unicorn-27653.exe (PID: 12440)
      • Unicorn-39905.exe (PID: 12472)
      • Unicorn-29778.exe (PID: 11680)
      • Unicorn-53288.exe (PID: 5548)
      • Unicorn-36205.exe (PID: 4892)
      • Unicorn-41803.exe (PID: 12624)
      • Unicorn-61923.exe (PID: 12996)
      • Unicorn-26921.exe (PID: 12208)
      • Unicorn-5732.exe (PID: 11964)
      • Unicorn-32385.exe (PID: 11992)
      • Unicorn-61404.exe (PID: 12608)
      • Unicorn-37113.exe (PID: 13704)
      • Unicorn-25415.exe (PID: 13728)
      • Unicorn-14528.exe (PID: 12784)
      • Unicorn-21226.exe (PID: 13244)
      • Unicorn-15738.exe (PID: 13416)
      • Unicorn-4751.exe (PID: 13544)
      • Unicorn-36734.exe (PID: 12016)
      • Unicorn-16919.exe (PID: 13232)
      • Unicorn-14535.exe (PID: 13056)
      • Unicorn-12784.exe (PID: 12008)
      • Unicorn-32650.exe (PID: 12024)
      • Unicorn-24237.exe (PID: 12216)
      • Unicorn-37091.exe (PID: 15188)
      • Unicorn-43832.exe (PID: 15212)
      • Unicorn-34314.exe (PID: 15252)
      • Unicorn-27792.exe (PID: 13772)
      • Unicorn-15379.exe (PID: 15236)
      • Unicorn-7771.exe (PID: 15792)
      • Unicorn-4034.exe (PID: 15288)
      • Unicorn-43303.exe (PID: 15712)
      • Unicorn-9536.exe (PID: 13904)
      • Unicorn-54653.exe (PID: 14280)
      • Unicorn-34233.exe (PID: 3800)
      • Unicorn-28036.exe (PID: 15720)
      • Unicorn-26379.exe (PID: 12812)
      • Unicorn-47999.exe (PID: 16192)
      • Unicorn-20727.exe (PID: 16176)
      • Unicorn-15980.exe (PID: 12876)
      • Unicorn-55679.exe (PID: 14296)
      • Unicorn-28888.exe (PID: 15760)
      • Unicorn-16838.exe (PID: 12768)
      • Unicorn-35129.exe (PID: 9012)
      • Unicorn-24882.exe (PID: 7036)

    • Reads the computer name

      • 1 (1116).exe (PID: 3020)
      • Unicorn-40399.exe (PID: 1804)
      • Unicorn-54307.exe (PID: 6540)
      • Unicorn-60804.exe (PID: 4200)
      • Unicorn-54674.exe (PID: 6372)
      • Unicorn-32024.exe (PID: 6676)
      • Unicorn-45236.exe (PID: 4464)
      • Unicorn-46580.exe (PID: 5204)
      • Unicorn-34882.exe (PID: 1240)
      • Unicorn-29128.exe (PID: 2316)
      • Unicorn-16610.exe (PID: 3240)
      • Unicorn-37705.exe (PID: 4880)
      • Unicorn-30222.exe (PID: 4488)
      • Unicorn-43958.exe (PID: 5116)
      • Unicorn-37836.exe (PID: 4608)
      • Unicorn-24622.exe (PID: 1228)
      • Unicorn-3575.exe (PID: 7344)
      • Unicorn-12298.exe (PID: 7360)
      • Unicorn-30117.exe (PID: 7376)
      • Unicorn-32164.exe (PID: 7368)
      • Unicorn-38337.exe (PID: 7460)
      • Unicorn-6624.exe (PID: 7736)
      • Unicorn-19720.exe (PID: 7396)
      • Unicorn-51009.exe (PID: 7528)
      • Unicorn-57288.exe (PID: 8044)
      • Unicorn-8087.exe (PID: 8056)
      • Unicorn-51274.exe (PID: 7536)
      • Unicorn-54980.exe (PID: 7476)
      • Unicorn-11860.exe (PID: 7816)
      • Unicorn-17463.exe (PID: 1512)
      • Unicorn-9312.exe (PID: 8100)
      • Unicorn-3417.exe (PID: 7592)
      • Unicorn-39821.exe (PID: 3896)
      • Unicorn-23463.exe (PID: 7864)
      • Unicorn-5913.exe (PID: 8136)
      • Unicorn-13541.exe (PID: 4268)
      • Unicorn-56385.exe (PID: 7892)
      • Unicorn-49089.exe (PID: 7608)
      • Unicorn-64377.exe (PID: 7696)
      • Unicorn-55114.exe (PID: 8144)
      • Unicorn-38263.exe (PID: 8156)
      • Unicorn-26473.exe (PID: 8776)
      • Unicorn-47522.exe (PID: 6324)
      • Unicorn-57471.exe (PID: 8428)
      • Unicorn-23509.exe (PID: 9336)
      • Unicorn-54512.exe (PID: 8464)
      • Unicorn-48529.exe (PID: 8208)
      • Unicorn-5119.exe (PID: 8236)
      • Unicorn-37813.exe (PID: 8396)
      • Unicorn-21150.exe (PID: 9016)
      • Unicorn-39732.exe (PID: 3032)
      • Unicorn-31838.exe (PID: 9120)
      • Unicorn-18103.exe (PID: 7908)
      • Unicorn-1356.exe (PID: 8588)
      • Unicorn-9660.exe (PID: 9952)
      • Unicorn-39519.exe (PID: 9748)
      • Unicorn-21233.exe (PID: 9156)
      • Unicorn-27267.exe (PID: 8700)
      • Unicorn-33822.exe (PID: 8832)
      • Unicorn-35265.exe (PID: 8628)
      • Unicorn-45950.exe (PID: 9644)
      • Unicorn-31019.exe (PID: 9920)
      • Unicorn-36784.exe (PID: 8000)
      • Unicorn-895.exe (PID: 9784)
      • Unicorn-1824.exe (PID: 8532)
      • Unicorn-147.exe (PID: 12532)
      • Unicorn-58181.exe (PID: 9100)
      • Unicorn-55156.exe (PID: 12660)
      • Unicorn-32515.exe (PID: 2968)
      • Unicorn-18544.exe (PID: 12688)
      • Unicorn-56801.exe (PID: 11092)
      • Unicorn-8788.exe (PID: 9192)
      • Unicorn-1299.exe (PID: 12572)
      • Unicorn-36734.exe (PID: 12016)
      • Unicorn-1486.exe (PID: 668)
      • Unicorn-18544.exe (PID: 11164)
      • Unicorn-4511.exe (PID: 10364)
      • Unicorn-37667.exe (PID: 13744)
      • Unicorn-361.exe (PID: 10108)
      • Unicorn-56801.exe (PID: 11084)
      • Unicorn-41160.exe (PID: 11188)
      • Unicorn-34554.exe (PID: 10996)
      • Unicorn-40797.exe (PID: 9652)
      • Unicorn-50605.exe (PID: 10336)
      • Unicorn-40033.exe (PID: 11204)
      • Unicorn-21854.exe (PID: 13376)
      • Unicorn-14953.exe (PID: 11004)
      • Unicorn-41586.exe (PID: 10088)
      • Unicorn-22883.exe (PID: 15744)
      • Unicorn-59785.exe (PID: 13016)
      • Unicorn-41181.exe (PID: 12280)
      • Unicorn-41587.exe (PID: 11940)
      • Unicorn-36205.exe (PID: 4892)
      • Unicorn-1683.exe (PID: 11696)
      • Unicorn-37113.exe (PID: 13704)
      • Unicorn-32650.exe (PID: 12024)
      • Unicorn-35089.exe (PID: 12232)
      • Unicorn-43495.exe (PID: 15752)
      • Unicorn-64267.exe (PID: 11108)
      • Unicorn-9536.exe (PID: 13904)
      • Unicorn-20727.exe (PID: 16176)
      • Unicorn-40917.exe (PID: 15204)

    • Creates files or folders in the user directory

      • WerFault.exe (PID: 5392)

    • Reads the software policy settings

      • slui.exe (PID: 6652)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | Win32 Executable Microsoft Visual Basic 6 (90.6)
.exe | Win32 Executable (generic) (4.9)
.exe | Generic Win/DOS Executable (2.2)
.exe | DOS Executable Generic (2.2)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2019:01:20 00:32:00+00:00
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit, No debug, Removable run from swap, Net run from swap, Uniprocessor only, Bytes reversed hi
PEType: PE32
LinkerVersion: 6
CodeSize: 176128
InitializedDataSize: 299008
UninitializedDataSize: -
EntryPoint: 0x13d4
OSVersion: 4
ImageVersion: 1
SubsystemVersion: 4
Subsystem: Windows GUI
FileVersionNumber: 1.0.0.0
ProductVersionNumber: 1.0.0.0
FileFlagsMask: 0x003f
FileFlags: (none)
FileOS: Win32
ObjectFileType: Executable application
FileSubtype: -
LanguageCode: Chinese (Simplified)
CharacterSet: Unicode
CompanyName: UEFI
ProductName: Kawaii-Unicorn
FileVersion: 1
ProductVersion: 1
InternalName: Kawaii-Unicorn
OriginalFileName: Kawaii-Unicorn.exe
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
725
Monitored processes
592
Malicious processes
82
Suspicious processes
65

Behavior graph

Click at the process to see the details
start 1 (1116).exe unicorn-29128.exe sppextcomobj.exe no specs slui.exe unicorn-16610.exe werfault.exe no specs unicorn-54011.exe unicorn-42728.exe unicorn-31619.exe unicorn-45495.exe unicorn-20244.exe unicorn-40399.exe unicorn-54307.exe unicorn-34764.exe unicorn-1577.exe unicorn-54674.exe unicorn-60804.exe unicorn-49107.exe unicorn-23093.exe unicorn-32024.exe unicorn-45236.exe unicorn-17669.exe unicorn-46580.exe unicorn-34882.exe unicorn-48618.exe unicorn-1271.exe unicorn-37705.exe unicorn-38028.exe unicorn-45931.exe unicorn-21500.exe unicorn-25584.exe unicorn-37836.exe unicorn-24622.exe unicorn-30222.exe unicorn-43958.exe unicorn-29018.exe unicorn-3767.exe unicorn-7337.exe unicorn-46646.exe unicorn-3575.exe unicorn-12298.exe unicorn-32164.exe unicorn-30117.exe unicorn-56668.exe unicorn-19720.exe unicorn-64322.exe unicorn-54865.exe unicorn-60987.exe unicorn-1315.exe unicorn-22001.exe unicorn-38337.exe unicorn-30723.exe unicorn-54980.exe unicorn-17533.exe unicorn-51009.exe unicorn-51274.exe unicorn-27647.exe unicorn-5088.exe unicorn-15294.exe unicorn-10796.exe unicorn-11263.exe unicorn-3417.exe unicorn-60554.exe unicorn-49089.exe unicorn-14854.exe unicorn-64377.exe unicorn-39773.exe unicorn-6624.exe unicorn-30618.exe unicorn-65145.exe unicorn-11860.exe unicorn-61616.exe unicorn-293.exe unicorn-57148.exe unicorn-34118.exe unicorn-46925.exe unicorn-57288.exe unicorn-8087.exe unicorn-54621.exe unicorn-9312.exe unicorn-5913.exe unicorn-55114.exe unicorn-38263.exe unicorn-1315.exe unicorn-17463.exe unicorn-47522.exe unicorn-39821.exe unicorn-8580.exe unicorn-13541.exe unicorn-43521.exe unicorn-43521.exe unicorn-29131.exe unicorn-11211.exe unicorn-56385.exe unicorn-23463.exe unicorn-36784.exe unicorn-32385.exe unicorn-12519.exe unicorn-60973.exe no specs unicorn-56127.exe unicorn-48529.exe unicorn-15665.exe unicorn-5119.exe unicorn-58212.exe unicorn-20435.exe no specs unicorn-61549.exe unicorn-59503.exe unicorn-46090.exe unicorn-39960.exe unicorn-3796.exe unicorn-62509.exe unicorn-37813.exe unicorn-41897.exe unicorn-57471.exe unicorn-20307.exe unicorn-54512.exe unicorn-51025.exe unicorn-1824.exe unicorn-51902.exe unicorn-60589.exe unicorn-54533.exe unicorn-58617.exe unicorn-1356.exe unicorn-64922.exe unicorn-35265.exe unicorn-64730.exe unicorn-22629.exe unicorn-27267.exe unicorn-10551.exe unicorn-14221.exe unicorn-48285.exe unicorn-40209.exe unicorn-26473.exe unicorn-25156.exe unicorn-33822.exe unicorn-33822.exe unicorn-46074.exe no specs unicorn-46074.exe unicorn-65306.exe unicorn-36203.exe unicorn-28825.exe unicorn-37678.exe no specs unicorn-36609.exe unicorn-21150.exe unicorn-58181.exe unicorn-21233.exe no specs unicorn-8788.exe unicorn-37377.exe unicorn-63360.exe unicorn-39732.exe no specs unicorn-11558.exe unicorn-11558.exe unicorn-56291.exe unicorn-18841.exe unicorn-20958.exe unicorn-14564.exe unicorn-13610.exe unicorn-23509.exe unicorn-63360.exe no specs unicorn-52281.exe no specs unicorn-40522.exe no specs unicorn-37019.exe unicorn-45950.exe unicorn-40797.exe unicorn-9001.exe unicorn-59171.exe no specs unicorn-27391.exe unicorn-22030.exe unicorn-27896.exe unicorn-2487.exe unicorn-39519.exe unicorn-45649.exe no specs unicorn-895.exe unicorn-24439.exe no specs unicorn-61601.exe unicorn-38943.exe unicorn-25207.exe unicorn-49157.exe unicorn-34719.exe unicorn-9971.exe no specs unicorn-39903.exe unicorn-50885.exe unicorn-26167.exe unicorn-31019.exe unicorn-63559.exe unicorn-9660.exe unicorn-11751.exe unicorn-43677.exe unicorn-18021.exe unicorn-48638.exe unicorn-46500.exe no specs unicorn-41586.exe no specs unicorn-361.exe no specs unicorn-3184.exe no specs unicorn-16781.exe no specs unicorn-7996.exe unicorn-18103.exe unicorn-31838.exe unicorn-12503.exe no specs unicorn-37704.exe unicorn-13827.exe unicorn-21995.exe unicorn-64319.exe no specs unicorn-28439.exe unicorn-26764.exe unicorn-52935.exe no specs unicorn-1596.exe no specs unicorn-29207.exe no specs unicorn-50605.exe unicorn-50713.exe unicorn-21916.exe no specs unicorn-4511.exe no specs unicorn-27782.exe unicorn-27782.exe unicorn-56313.exe no specs unicorn-56313.exe unicorn-27782.exe unicorn-55566.exe no specs unicorn-8181.exe unicorn-8181.exe unicorn-56313.exe no specs unicorn-32046.exe unicorn-27865.exe unicorn-53703.exe no specs unicorn-59733.exe unicorn-27938.exe unicorn-9546.exe no specs unicorn-44083.exe unicorn-15384.exe no specs unicorn-52141.exe no specs unicorn-60117.exe unicorn-6832.exe unicorn-34554.exe unicorn-14953.exe unicorn-37834.exe no specs unicorn-30220.exe no specs unicorn-24875.exe unicorn-46779.exe no specs unicorn-56801.exe no specs unicorn-56801.exe no specs unicorn-64267.exe no specs unicorn-33449.exe unicorn-37533.exe no specs unicorn-29479.exe unicorn-18544.exe no specs unicorn-25643.exe unicorn-18544.exe unicorn-41160.exe no specs unicorn-38145.exe no specs unicorn-40033.exe unicorn-45701.exe no specs unicorn-938.exe no specs unicorn-32279.exe no specs unicorn-10039.exe no specs unicorn-51949.exe no specs unicorn-29778.exe unicorn-35844.exe no specs unicorn-1683.exe no specs unicorn-41181.exe unicorn-24237.exe unicorn-34897.exe unicorn-5924.exe unicorn-41587.exe no specs unicorn-5732.exe no specs unicorn-46573.exe no specs unicorn-32385.exe no specs unicorn-26519.exe no specs unicorn-12784.exe no specs unicorn-36734.exe no specs unicorn-32650.exe no specs unicorn-43833.exe unicorn-44388.exe no specs unicorn-55323.exe unicorn-63988.exe unicorn-10968.exe unicorn-27305.exe unicorn-55893.exe unicorn-3738.exe unicorn-42903.exe no specs unicorn-37258.exe unicorn-42903.exe unicorn-55701.exe no specs unicorn-63869.exe unicorn-30481.exe no specs unicorn-36158.exe unicorn-6012.exe unicorn-26921.exe no specs unicorn-24237.exe no specs unicorn-6168.exe no specs unicorn-35089.exe unicorn-10423.exe no specs unicorn-15977.exe unicorn-37258.exe no specs unicorn-41181.exe unicorn-32515.exe no specs unicorn-1486.exe unicorn-20938.exe unicorn-53288.exe no specs unicorn-21580.exe no specs unicorn-36205.exe no specs unicorn-54579.exe no specs unicorn-40843.exe unicorn-40843.exe no specs unicorn-40843.exe no specs unicorn-40843.exe unicorn-880.exe no specs unicorn-23761.exe no specs unicorn-21580.exe no specs unicorn-25798.exe no specs unicorn-33046.exe unicorn-43949.exe no specs unicorn-46219.exe no specs unicorn-31929.exe no specs unicorn-1574.exe no specs unicorn-31929.exe unicorn-27653.exe unicorn-27653.exe unicorn-18544.exe unicorn-39905.exe no specs unicorn-24237.exe unicorn-24237.exe unicorn-37973.exe unicorn-12660.exe no specs unicorn-22866.exe unicorn-36900.exe unicorn-147.exe unicorn-43838.exe unicorn-24150.exe no specs unicorn-1299.exe unicorn-55539.exe no specs unicorn-41803.exe no specs unicorn-61404.exe no specs unicorn-8119.exe no specs unicorn-41803.exe no specs unicorn-42711.exe no specs unicorn-42903.exe no specs unicorn-55156.exe unicorn-32889.exe no specs unicorn-18544.exe no specs unicorn-16838.exe no specs unicorn-14528.exe no specs unicorn-7044.exe no specs unicorn-26379.exe no specs unicorn-45872.exe no specs unicorn-15980.exe no specs unicorn-19550.exe no specs slui.exe no specs unicorn-49423.exe unicorn-25416.exe unicorn-25681.exe no specs unicorn-31802.exe no specs unicorn-61923.exe unicorn-59785.exe unicorn-17683.exe unicorn-14535.exe unicorn-49801.exe no specs unicorn-12852.exe no specs unicorn-3598.exe no specs unicorn-6796.exe no specs unicorn-16919.exe no specs unicorn-21226.exe no specs unicorn-21226.exe unicorn-25105.exe no specs unicorn-21226.exe no specs unicorn-63205.exe no specs unicorn-14004.exe no specs unicorn-48000.exe no specs unicorn-48000.exe unicorn-21986.exe no specs unicorn-24786.exe no specs unicorn-22516.exe no specs unicorn-30652.exe no specs unicorn-11051.exe no specs unicorn-11051.exe no specs unicorn-27720.exe no specs unicorn-19054.exe no specs unicorn-21854.exe no specs unicorn-7180.exe no specs unicorn-60465.exe no specs unicorn-64357.exe no specs unicorn-15738.exe no specs unicorn-18124.exe no specs unicorn-4751.exe no specs unicorn-33340.exe no specs unicorn-13739.exe no specs unicorn-2416.exe no specs unicorn-23006.exe no specs unicorn-13984.exe unicorn-46028.exe unicorn-24861.exe unicorn-33029.exe unicorn-26898.exe no specs unicorn-37113.exe no specs unicorn-45281.exe no specs unicorn-25415.exe no specs unicorn-4555.exe no specs unicorn-37667.exe unicorn-13485.exe no specs unicorn-22192.exe unicorn-27792.exe unicorn-2219.exe no specs unicorn-9536.exe no specs unicorn-13620.exe unicorn-5452.exe no specs unicorn-54186.exe unicorn-22650.exe no specs unicorn-54653.exe no specs unicorn-59121.exe no specs unicorn-55679.exe no specs unicorn-30076.exe no specs unicorn-13075.exe no specs unicorn-47357.exe no specs unicorn-52318.exe no specs unicorn-19537.exe unicorn-37091.exe no specs unicorn-59100.exe no specs unicorn-40917.exe unicorn-43832.exe no specs unicorn-43832.exe no specs unicorn-15379.exe unicorn-15379.exe no specs unicorn-22380.exe unicorn-34314.exe unicorn-32277.exe no specs unicorn-32277.exe no specs unicorn-51288.exe unicorn-4034.exe no specs unicorn-10719.exe no specs unicorn-13812.exe no specs unicorn-13340.exe no specs unicorn-24454.exe no specs unicorn-28001.exe no specs unicorn-34233.exe no specs unicorn-11182.exe no specs unicorn-33761.exe no specs unicorn-1234.exe no specs unicorn-20793.exe no specs unicorn-64631.exe no specs unicorn-7262.exe no specs unicorn-4034.exe no specs unicorn-13947.exe no specs unicorn-24882.exe no specs unicorn-55302.exe no specs unicorn-43303.exe no specs unicorn-28036.exe no specs unicorn-39047.exe no specs unicorn-37548.exe no specs unicorn-22883.exe no specs unicorn-43495.exe no specs unicorn-28888.exe no specs unicorn-43495.exe no specs unicorn-22883.exe no specs unicorn-7771.exe unicorn-13371.exe unicorn-16281.exe unicorn-37255.exe no specs unicorn-49830.exe no specs unicorn-29964.exe no specs unicorn-40328.exe no specs unicorn-20727.exe no specs unicorn-20727.exe unicorn-20727.exe unicorn-47999.exe no specs unicorn-37063.exe no specs unicorn-49638.exe no specs unicorn-11428.exe no specs unicorn-10719.exe no specs unicorn-27106.exe no specs unicorn-5481.exe no specs unicorn-4412.exe no specs unicorn-24833.exe no specs unicorn-37085.exe no specs unicorn-45800.exe no specs unicorn-16473.exe no specs unicorn-36893.exe no specs unicorn-49145.exe no specs unicorn-49145.exe no specs unicorn-52445.exe no specs unicorn-8807.exe no specs unicorn-142.exe no specs unicorn-61595.exe no specs unicorn-31967.exe no specs unicorn-50660.exe no specs unicorn-34131.exe no specs unicorn-25963.exe no specs unicorn-60732.exe no specs unicorn-9859.exe no specs unicorn-12394.exe no specs unicorn-45564.exe no specs unicorn-15496.exe no specs unicorn-21059.exe no specs unicorn-32652.exe no specs unicorn-47697.exe no specs unicorn-43303.exe no specs unicorn-4723.exe no specs unicorn-10416.exe no specs unicorn-41574.exe no specs unicorn-41574.exe no specs unicorn-41309.exe no specs unicorn-35444.exe no specs unicorn-44589.exe no specs unicorn-5119.exe no specs unicorn-50236.exe no specs unicorn-4433.exe no specs unicorn-21731.exe no specs unicorn-61638.exe no specs unicorn-8347.exe no specs unicorn-10770.exe no specs unicorn-4416.exe no specs unicorn-48422.exe no specs unicorn-42321.exe no specs unicorn-42321.exe no specs unicorn-39929.exe no specs unicorn-6686.exe no specs unicorn-44013.exe no specs unicorn-47697.exe no specs unicorn-25409.exe unicorn-25409.exe unicorn-9648.exe unicorn-30149.exe no specs unicorn-21731.exe no specs unicorn-38509.exe no specs unicorn-46677.exe no specs unicorn-58520.exe no specs unicorn-9479.exe no specs unicorn-20469.exe no specs unicorn-526.exe no specs unicorn-20142.exe no specs unicorn-41029.exe no specs unicorn-40052.exe no specs unicorn-40052.exe no specs unicorn-40052.exe no specs unicorn-40052.exe no specs unicorn-40052.exe no specs unicorn-37782.exe no specs unicorn-46182.exe no specs unicorn-40052.exe no specs unicorn-63146.exe no specs unicorn-63146.exe no specs unicorn-52888.exe no specs unicorn-63146.exe no specs unicorn-63146.exe no specs unicorn-41849.exe no specs unicorn-15246.exe no specs unicorn-12446.exe no specs unicorn-10770.exe no specs unicorn-6686.exe no specs unicorn-50785.exe no specs unicorn-58488.exe no specs unicorn-12551.exe no specs unicorn-41332.exe no specs unicorn-59565.exe no specs unicorn-5668.exe no specs unicorn-41413.exe no specs unicorn-37329.exe no specs unicorn-54869.exe no specs unicorn-64055.exe no specs unicorn-53909.exe no specs unicorn-49825.exe no specs unicorn-55947.exe no specs unicorn-17729.exe no specs unicorn-47941.exe no specs unicorn-9116.exe no specs unicorn-13836.exe no specs unicorn-58465.exe no specs unicorn-62077.exe no specs unicorn-61255.exe no specs unicorn-17921.exe no specs unicorn-44978.exe no specs unicorn-4988.exe no specs unicorn-1688.exe no specs unicorn-34361.exe no specs unicorn-48237.exe no specs unicorn-27654.exe no specs unicorn-26484.exe no specs unicorn-10732.exe no specs unicorn-16332.exe no specs unicorn-27267.exe no specs unicorn-30067.exe no specs unicorn-30067.exe no specs unicorn-30067.exe unicorn-50488.exe unicorn-35129.exe no specs unicorn-17153.exe no specs unicorn-39021.exe no specs unicorn-13947.exe no specs unicorn-34745.exe no specs unicorn-26577.exe no specs unicorn-38829.exe no specs unicorn-2072.exe no specs unicorn-54973.exe no specs unicorn-18409.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
632C:\Users\admin\AppData\Local\Temp\Unicorn-49107.exeC:\Users\admin\AppData\Local\Temp\Unicorn-49107.exe
Unicorn-42728.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-49107.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
668C:\Users\admin\AppData\Local\Temp\Unicorn-1486.exeC:\Users\admin\AppData\Local\Temp\Unicorn-1486.exe
Unicorn-3575.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-1486.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
736C:\Users\admin\AppData\Local\Temp\Unicorn-48618.exeC:\Users\admin\AppData\Local\Temp\Unicorn-48618.exe
Unicorn-54011.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-48618.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1004C:\Users\admin\AppData\Local\Temp\Unicorn-55302.exeC:\Users\admin\AppData\Local\Temp\Unicorn-55302.exeUnicorn-8181.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-55302.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1116C:\Users\admin\AppData\Local\Temp\Unicorn-54973.exeC:\Users\admin\AppData\Local\Temp\Unicorn-54973.exeUnicorn-50713.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
1188C:\Users\admin\AppData\Local\Temp\Unicorn-11051.exeC:\Users\admin\AppData\Local\Temp\Unicorn-11051.exeUnicorn-2487.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-11051.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1228C:\Users\admin\AppData\Local\Temp\Unicorn-24622.exeC:\Users\admin\AppData\Local\Temp\Unicorn-24622.exe
1 (1116).exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-24622.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1240C:\Users\admin\AppData\Local\Temp\Unicorn-34882.exeC:\Users\admin\AppData\Local\Temp\Unicorn-34882.exe
Unicorn-45495.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-34882.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1272C:\Users\admin\AppData\Local\Temp\Unicorn-42728.exeC:\Users\admin\AppData\Local\Temp\Unicorn-42728.exe
1 (1116).exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-42728.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1276C:\Users\admin\AppData\Local\Temp\Unicorn-20938.exeC:\Users\admin\AppData\Local\Temp\Unicorn-20938.exe
Unicorn-11751.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-20938.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
Total events
12 697
Read events
12 697
Write events
0
Delete events
0

Modification events

No data
Executable files
632
Suspicious files
3
Text files
1
Unknown types
0

Dropped files

PID
Process
Filename
Type
5392WerFault.exeC:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_Unicorn-29128.ex_ea5791e29cf5392fbbdc5e19f9c46cc05c334942_b47f00a6_72c77d2e-efea-4dda-80ff-c0d8c2204ac4\Report.wer
MD5:
SHA256:
30201 (1116).exeC:\Users\admin\AppData\Local\Temp\Unicorn-29128.exeexecutable
MD5:2D88967D6A00A261B3ECE6F4B75AE5B8
SHA256:F2B0AA99613902A7A1AD542A49C497A4F992B94C83632FC6ACD9798EBB9DB666
30201 (1116).exeC:\Users\admin\AppData\Local\Temp\Unicorn-16610.exeexecutable
MD5:4395BC761308647AC079C7B795649141
SHA256:F928FAA1C1252E048E2323BAE62328FC8A1BB532AA2AC0036FF0A432370E8613
5392WerFault.exeC:\ProgramData\Microsoft\Windows\WER\Temp\WERDB30.tmp.WERInternalMetadata.xmlbinary
MD5:4E7EC080297BBD7CD0A194CDF586C3DF
SHA256:1860992A851B7855FF5F24B724F87BB5BD8DD1C7B6699C8A4D0BD4D647520C1D
2140Unicorn-54011.exeC:\Users\admin\AppData\Local\Temp\Unicorn-31619.exeexecutable
MD5:50367054D02CD1FC6F1EF5DE94B55282
SHA256:23B58066E2E82D7077C2B9543803DCADD3C1165094874D6B06297DB5A3F98907
3240Unicorn-16610.exeC:\Users\admin\AppData\Local\Temp\Unicorn-54011.exeexecutable
MD5:DD9226A9F21ECE650723A09DD94D038C
SHA256:537DEF4290BCAAA23E4577198A21D380BA052676470C6C0285A968124D5C814E
3240Unicorn-16610.exeC:\Users\admin\AppData\Local\Temp\Unicorn-45495.exeexecutable
MD5:95D67A60CF42A6CDACDB5B962F45DF09
SHA256:F802F93478C7A3F7B7C40CAD96486BE00957066DA485FD50E4A10957489A5100
1272Unicorn-42728.exeC:\Users\admin\AppData\Local\Temp\Unicorn-20244.exeexecutable
MD5:556A60AE78C1B5DB2D67D16096FC8360
SHA256:EED9A24D80C48767A6773DCCF2964542C412DF5662307E3C9BAE28DEBB677CCE
30201 (1116).exeC:\Users\admin\AppData\Local\Temp\Unicorn-42728.exeexecutable
MD5:CE6ADF4B47314D55423239286F79EDB2
SHA256:F2B0AA99613902A7A1AD542A49C497A4F992B94C83632FC6ACD9798EBB9DB666
5392WerFault.exeC:\Users\admin\AppData\Local\CrashDumps\Unicorn-29128.exe.2316.dmpbinary
MD5:6722B9220A902247F5926494B021F67E
SHA256:ED799D6F85E77C33F9904A84486439600C7F0E56E09C39191F5956C5C12A4FF2
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
5
TCP/UDP connections
23
DNS requests
16
Threats
0

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
5496
MoUsoCoreWorker.exe
GET
200
23.48.23.143:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
6544
svchost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
7832
SIHClient.exe
GET
200
2.23.181.156:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Update%20Secure%20Server%20CA%202.1.crl
unknown
whitelisted
6404
backgroundTaskHost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAUZZSZEml49Gjh0j13P68w%3D
unknown
whitelisted
7832
SIHClient.exe
GET
200
2.23.181.156:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Product%20Root%20Certificate%20Authority%202018.crl
unknown
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:138
whitelisted
51.124.78.146:443
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
5496
MoUsoCoreWorker.exe
23.48.23.143:80
crl.microsoft.com
Akamai International B.V.
DE
whitelisted
2104
svchost.exe
51.124.78.146:443
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
3216
svchost.exe
20.198.162.78:443
client.wns.windows.com
MICROSOFT-CORP-MSN-AS-BLOCK
SG
whitelisted
6544
svchost.exe
20.190.160.67:443
login.live.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
6544
svchost.exe
184.30.131.245:80
ocsp.digicert.com
AKAMAI-AS
US
whitelisted
2112
svchost.exe
20.73.194.208:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
6404
backgroundTaskHost.exe
20.223.36.55:443
arc.msn.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
6404
backgroundTaskHost.exe
184.30.131.245:80
ocsp.digicert.com
AKAMAI-AS
US
whitelisted

DNS requests

Domain
IP
Reputation
google.com
  • 172.217.18.110
whitelisted
crl.microsoft.com
  • 23.48.23.143
  • 23.48.23.156
whitelisted
client.wns.windows.com
  • 20.198.162.78
  • 40.115.3.253
whitelisted
login.live.com
  • 20.190.160.67
  • 20.190.160.3
  • 20.190.160.132
  • 20.190.160.131
  • 20.190.160.20
  • 20.190.160.17
  • 20.190.160.130
  • 40.126.32.76
whitelisted
ocsp.digicert.com
  • 184.30.131.245
whitelisted
settings-win.data.microsoft.com
  • 20.73.194.208
  • 4.231.128.59
whitelisted
arc.msn.com
  • 20.223.36.55
whitelisted
slscr.update.microsoft.com
  • 20.12.23.50
whitelisted
www.microsoft.com
  • 2.23.181.156
whitelisted
fe3cr.delivery.mp.microsoft.com
  • 20.242.39.171
whitelisted

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
1 (1116)