File name:

1 (181)

Full analysis: https://app.any.run/tasks/f0399ad7-f2d0-451a-b839-7b27d71a9df3
Verdict: Malicious activity
Analysis date: March 24, 2025, 16:38:55
OS: Windows 10 Professional (build: 19044, 64 bit)
Indicators:
MIME: application/vnd.microsoft.portable-executable
File info: PE32 executable (GUI) Intel 80386, for MS Windows, 3 sections
MD5:

4A2FC6801239FEEDE91D8CC8A40BDE20

SHA1:

0BCD8730D06A146E62C7D76C71374C10FAF8396C

SHA256:

A052B46102BE84697AB2060AF3EC659416A75E1A8AE0C5405F4917FF7820933B

SSDEEP:

3072:TUjYQGu/MDkCVvNNEkkNWMyKKL5+D4xxfpfu8hQowcBuIe:TUjYQGu0DLNVkoKlEvfpfu8hQowcBuI

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    No malicious indicators.

  • SUSPICIOUS

    • Starts itself from another location

      • Unicorn-36589.exe (PID: 7728)
      • 1 (181).exe (PID: 7456)
      • Unicorn-8716.exe (PID: 5528)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-18473.exe (PID: 5408)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-16199.exe (PID: 7324)
      • Unicorn-35800.exe (PID: 6040)
      • Unicorn-29934.exe (PID: 6656)
      • Unicorn-36065.exe (PID: 7780)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-12136.exe (PID: 7304)
      • Unicorn-51197.exe (PID: 7404)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-30201.exe (PID: 7500)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-11487.exe (PID: 2392)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-31353.exe (PID: 4932)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-35437.exe (PID: 4776)
      • Unicorn-59676.exe (PID: 672)
      • Unicorn-28939.exe (PID: 1056)
      • Unicorn-28577.exe (PID: 1180)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-44913.exe (PID: 2552)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-20963.exe (PID: 6488)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-1140.exe (PID: 5576)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-50896.exe (PID: 3884)
      • Unicorn-26221.exe (PID: 4976)
      • Unicorn-42557.exe (PID: 7052)
      • Unicorn-38473.exe (PID: 5428)
      • Unicorn-1716.exe (PID: 4724)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-50725.exe (PID: 7176)
      • Unicorn-1716.exe (PID: 7200)
      • Unicorn-50725.exe (PID: 5548)
      • Unicorn-63724.exe (PID: 7532)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-10631.exe (PID: 8024)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-30232.exe (PID: 7864)
      • Unicorn-9483.exe (PID: 7896)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-3444.exe (PID: 7824)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-28503.exe (PID: 4008)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-13650.exe (PID: 8128)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-64135.exe (PID: 7392)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-52069.exe (PID: 6068)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-44477.exe (PID: 8196)
      • Unicorn-58383.exe (PID: 3332)
      • Unicorn-23481.exe (PID: 5776)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-57881.exe (PID: 8396)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-4596.exe (PID: 8316)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-45437.exe (PID: 8304)
      • Unicorn-20933.exe (PID: 8360)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-26591.exe (PID: 8452)
      • Unicorn-26591.exe (PID: 8436)
      • Unicorn-54552.exe (PID: 8700)
      • Unicorn-55180.exe (PID: 8516)
      • Unicorn-21183.exe (PID: 8692)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-40519.exe (PID: 8716)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-26037.exe (PID: 8576)
      • Unicorn-3378.exe (PID: 8504)
      • Unicorn-54055.exe (PID: 8748)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-45887.exe (PID: 8672)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-48687.exe (PID: 8660)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-26732.exe (PID: 9120)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-47972.exe (PID: 9104)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-15107.exe (PID: 9052)
      • Unicorn-43141.exe (PID: 9036)
      • Unicorn-13784.exe (PID: 8632)
      • Unicorn-13784.exe (PID: 8640)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-56353.exe (PID: 5960)
      • Unicorn-64329.exe (PID: 9176)
      • Unicorn-35733.exe (PID: 1272)
      • Unicorn-44656.exe (PID: 9172)
      • Unicorn-27765.exe (PID: 9264)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-58391.exe (PID: 9224)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-55777.exe (PID: 9324)
      • Unicorn-11983.exe (PID: 9296)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-19632.exe (PID: 9416)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-55777.exe (PID: 9316)
      • Unicorn-64692.exe (PID: 9456)
      • Unicorn-47609.exe (PID: 9364)
      • Unicorn-23297.exe (PID: 9560)
      • Unicorn-23297.exe (PID: 9564)
      • Unicorn-47609.exe (PID: 9356)
      • Unicorn-6768.exe (PID: 9500)
      • Unicorn-10852.exe (PID: 9516)
      • Unicorn-6768.exe (PID: 9492)
      • Unicorn-10852.exe (PID: 9508)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-307.exe (PID: 9696)
      • Unicorn-307.exe (PID: 9688)
      • Unicorn-7728.exe (PID: 9640)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-22210.exe (PID: 9656)
      • Unicorn-8906.exe (PID: 9596)
      • Unicorn-44412.exe (PID: 9736)
      • Unicorn-8475.exe (PID: 9680)
      • Unicorn-44412.exe (PID: 9704)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-38547.exe (PID: 9744)
      • Unicorn-28341.exe (PID: 9672)
      • Unicorn-8475.exe (PID: 9664)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-4007.exe (PID: 9820)
      • Unicorn-13784.exe (PID: 8648)
      • Unicorn-26591.exe (PID: 8460)
      • Unicorn-55180.exe (PID: 8524)
      • Unicorn-63561.exe (PID: 9004)
      • Unicorn-6384.exe (PID: 9084)
      • Unicorn-11791.exe (PID: 9204)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-31657.exe (PID: 6344)
      • Unicorn-47609.exe (PID: 9348)
      • Unicorn-54552.exe (PID: 8776)
      • Unicorn-26591.exe (PID: 8440)
      • Unicorn-31221.exe (PID: 10292)

    • Executable content was dropped or overwritten

      • Unicorn-18473.exe (PID: 5408)
      • 1 (181).exe (PID: 7456)
      • Unicorn-36589.exe (PID: 7728)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-8716.exe (PID: 5528)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-36065.exe (PID: 7780)
      • Unicorn-35800.exe (PID: 6040)
      • Unicorn-51197.exe (PID: 7404)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-30201.exe (PID: 7500)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-11487.exe (PID: 2392)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-35437.exe (PID: 4776)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-29934.exe (PID: 6656)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-28939.exe (PID: 1056)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-28577.exe (PID: 1180)
      • Unicorn-20963.exe (PID: 6488)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-1140.exe (PID: 5576)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-26221.exe (PID: 4976)
      • Unicorn-42557.exe (PID: 7052)
      • Unicorn-38473.exe (PID: 5428)
      • Unicorn-1716.exe (PID: 7200)
      • Unicorn-63724.exe (PID: 7532)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-59676.exe (PID: 672)
      • Unicorn-31353.exe (PID: 4932)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-16199.exe (PID: 7324)
      • Unicorn-9483.exe (PID: 7896)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-3444.exe (PID: 7824)
      • Unicorn-28503.exe (PID: 4008)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-44913.exe (PID: 2552)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-23481.exe (PID: 5776)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-44477.exe (PID: 8196)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-50725.exe (PID: 7176)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-50725.exe (PID: 5548)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-4596.exe (PID: 8316)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-57881.exe (PID: 8396)
      • Unicorn-20933.exe (PID: 8360)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-45437.exe (PID: 8304)
      • Unicorn-1716.exe (PID: 4724)
      • Unicorn-17869.exe (PID: 8592)
      • Unicorn-54552.exe (PID: 8700)
      • Unicorn-55180.exe (PID: 8516)
      • Unicorn-30675.exe (PID: 8476)
      • Unicorn-21183.exe (PID: 8692)
      • Unicorn-26037.exe (PID: 8576)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-54552.exe (PID: 8776)
      • Unicorn-13784.exe (PID: 8632)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-13784.exe (PID: 8648)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-26591.exe (PID: 8460)
      • Unicorn-48687.exe (PID: 8660)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-55180.exe (PID: 8524)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-26732.exe (PID: 9120)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-63561.exe (PID: 9004)
      • Unicorn-30232.exe (PID: 7864)
      • Unicorn-47972.exe (PID: 9104)
      • Unicorn-43141.exe (PID: 9036)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-13784.exe (PID: 8640)
      • Unicorn-6384.exe (PID: 9084)
      • Unicorn-11791.exe (PID: 9204)
      • Unicorn-56353.exe (PID: 5960)
      • Unicorn-64329.exe (PID: 9176)
      • Unicorn-13650.exe (PID: 8128)
      • Unicorn-31657.exe (PID: 6344)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-64135.exe (PID: 7392)
      • Unicorn-27765.exe (PID: 9264)
      • Unicorn-44656.exe (PID: 9172)
      • Unicorn-58383.exe (PID: 3332)
      • Unicorn-58391.exe (PID: 9224)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-13767.exe (PID: 9424)
      • Unicorn-55777.exe (PID: 9324)
      • Unicorn-11983.exe (PID: 9296)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-12136.exe (PID: 7304)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-47609.exe (PID: 9348)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-19632.exe (PID: 9416)
      • Unicorn-55777.exe (PID: 9316)
      • Unicorn-64692.exe (PID: 9456)
      • Unicorn-23297.exe (PID: 9560)
      • Unicorn-23297.exe (PID: 9564)
      • Unicorn-47609.exe (PID: 9356)
      • Unicorn-39995.exe (PID: 9332)
      • Unicorn-6768.exe (PID: 9500)
      • Unicorn-10852.exe (PID: 9516)
      • Unicorn-6768.exe (PID: 9492)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-8906.exe (PID: 9596)
      • Unicorn-307.exe (PID: 9688)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-22210.exe (PID: 9656)
      • Unicorn-44412.exe (PID: 9736)
      • Unicorn-44412.exe (PID: 9704)
      • Unicorn-8475.exe (PID: 9680)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-28341.exe (PID: 9672)
      • Unicorn-38547.exe (PID: 9744)
      • Unicorn-8475.exe (PID: 9664)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-4007.exe (PID: 9820)
      • Unicorn-26591.exe (PID: 8436)
      • Unicorn-26591.exe (PID: 8440)
      • Unicorn-3378.exe (PID: 8504)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-40519.exe (PID: 8716)
      • Unicorn-54055.exe (PID: 8748)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-15107.exe (PID: 9052)
      • Unicorn-7728.exe (PID: 9640)
      • Unicorn-31221.exe (PID: 10292)
      • Unicorn-53504.exe (PID: 10332)
      • Unicorn-18969.exe (PID: 10300)
      • Unicorn-28231.exe (PID: 10348)
      • Unicorn-35733.exe (PID: 1272)
      • Unicorn-56265.exe (PID: 10368)
      • Unicorn-52069.exe (PID: 6068)
      • Unicorn-7256.exe (PID: 10376)
      • Unicorn-10852.exe (PID: 9508)
      • Unicorn-33467.exe (PID: 10412)
      • Unicorn-307.exe (PID: 9696)
      • Unicorn-10631.exe (PID: 8024)
      • Unicorn-45720.exe (PID: 10432)
      • Unicorn-36997.exe (PID: 10448)
      • Unicorn-18230.exe (PID: 10624)
      • Unicorn-45887.exe (PID: 8672)
      • Unicorn-52949.exe (PID: 10512)
      • Unicorn-24937.exe (PID: 10488)
      • Unicorn-26591.exe (PID: 8452)
      • Unicorn-20469.exe (PID: 10736)
      • Unicorn-54101.exe (PID: 10836)
      • Unicorn-12684.exe (PID: 10464)
      • Unicorn-17816.exe (PID: 10596)
      • Unicorn-44973.exe (PID: 10664)
      • Unicorn-47609.exe (PID: 9364)
      • Unicorn-16939.exe (PID: 10776)
      • Unicorn-33681.exe (PID: 11016)
      • Unicorn-44973.exe (PID: 10648)
      • Unicorn-62269.exe (PID: 10968)
      • Unicorn-41849.exe (PID: 10876)
      • Unicorn-16193.exe (PID: 10588)
      • Unicorn-603.exe (PID: 10728)
      • Unicorn-54101.exe (PID: 10828)
      • Unicorn-25513.exe (PID: 11044)
      • Unicorn-54101.exe (PID: 10904)
      • Unicorn-8771.exe (PID: 10812)
      • Unicorn-36805.exe (PID: 10784)
      • Unicorn-54293.exe (PID: 11096)
      • Unicorn-62461.exe (PID: 11184)
      • Unicorn-49612.exe (PID: 10672)
      • Unicorn-1008.exe (PID: 11160)
      • Unicorn-60415.exe (PID: 11144)
      • Unicorn-60415.exe (PID: 11136)
      • Unicorn-48163.exe (PID: 11088)
      • Unicorn-48865.exe (PID: 10504)
      • Unicorn-33681.exe (PID: 11020)
      • Unicorn-50896.exe (PID: 3884)

    • Executes application which crashes

      • Unicorn-34759.exe (PID: 8388)
      • Unicorn-64521.exe (PID: 9232)
      • Unicorn-39789.exe (PID: 13388)

  • INFO

    • Reads the computer name

      • Unicorn-36589.exe (PID: 7728)
      • 1 (181).exe (PID: 7456)
      • Unicorn-18473.exe (PID: 5408)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-16199.exe (PID: 7324)
      • Unicorn-12136.exe (PID: 7304)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-29934.exe (PID: 6656)
      • Unicorn-51197.exe (PID: 7404)
      • Unicorn-11487.exe (PID: 2392)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-1140.exe (PID: 5576)
      • Unicorn-50896.exe (PID: 3884)
      • Unicorn-26221.exe (PID: 4976)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-42557.exe (PID: 7052)
      • Unicorn-38473.exe (PID: 5428)
      • Unicorn-63724.exe (PID: 7532)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-30232.exe (PID: 7864)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-10631.exe (PID: 8024)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-1716.exe (PID: 7200)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-28503.exe (PID: 4008)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-3444.exe (PID: 7824)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-13650.exe (PID: 8128)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-52069.exe (PID: 6068)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-23481.exe (PID: 5776)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-44477.exe (PID: 8196)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-34759.exe (PID: 8388)
      • Unicorn-40519.exe (PID: 8716)
      • Unicorn-13784.exe (PID: 8640)
      • Unicorn-13784.exe (PID: 8632)
      • Unicorn-26037.exe (PID: 8576)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-54055.exe (PID: 8748)
      • Unicorn-26591.exe (PID: 8460)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-45437.exe (PID: 8304)
      • Unicorn-26591.exe (PID: 8452)
      • Unicorn-26591.exe (PID: 8436)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-13784.exe (PID: 8648)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-15107.exe (PID: 9052)
      • Unicorn-64329.exe (PID: 9176)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-64521.exe (PID: 9232)
      • Unicorn-27765.exe (PID: 9264)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-19632.exe (PID: 9416)
      • Unicorn-47609.exe (PID: 9364)
      • Unicorn-23297.exe (PID: 9560)
      • Unicorn-10852.exe (PID: 9516)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-13767.exe (PID: 9424)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-6768.exe (PID: 9492)
      • Unicorn-44412.exe (PID: 9736)
      • Unicorn-307.exe (PID: 9688)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-8475.exe (PID: 9680)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-38547.exe (PID: 9744)
      • Unicorn-4007.exe (PID: 9820)
      • Unicorn-18969.exe (PID: 10300)
      • Unicorn-53504.exe (PID: 10332)

    • The sample compiled with chinese language support

      • 1 (181).exe (PID: 7456)
      • Unicorn-4007.exe (PID: 9820)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-50725.exe (PID: 7176)
      • Unicorn-4596.exe (PID: 8316)
      • Unicorn-50725.exe (PID: 5548)
      • Unicorn-42557.exe (PID: 7052)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-45437.exe (PID: 8304)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-38473.exe (PID: 5428)
      • Unicorn-30675.exe (PID: 8476)
      • Unicorn-63724.exe (PID: 7532)
      • Unicorn-26591.exe (PID: 8436)
      • Unicorn-1716.exe (PID: 4724)
      • Unicorn-17869.exe (PID: 8592)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-21183.exe (PID: 8692)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-59676.exe (PID: 672)
      • Unicorn-3378.exe (PID: 8504)
      • Unicorn-40519.exe (PID: 8716)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-54055.exe (PID: 8748)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-13784.exe (PID: 8648)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-26591.exe (PID: 8460)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-35437.exe (PID: 4776)
      • Unicorn-48687.exe (PID: 8660)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-31353.exe (PID: 4932)
      • Unicorn-36589.exe (PID: 7728)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-55180.exe (PID: 8524)
      • Unicorn-29934.exe (PID: 6656)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-8716.exe (PID: 5528)
      • Unicorn-30232.exe (PID: 7864)
      • Unicorn-16199.exe (PID: 7324)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-26591.exe (PID: 8440)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-1716.exe (PID: 7200)
      • Unicorn-35800.exe (PID: 6040)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-47609.exe (PID: 9356)
      • Unicorn-63561.exe (PID: 9004)
      • Unicorn-26732.exe (PID: 9120)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-47972.exe (PID: 9104)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-15107.exe (PID: 9052)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-28939.exe (PID: 1056)
      • Unicorn-6384.exe (PID: 9084)
      • Unicorn-9483.exe (PID: 7896)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-13784.exe (PID: 8640)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-11791.exe (PID: 9204)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-28577.exe (PID: 1180)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-64329.exe (PID: 9176)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-51197.exe (PID: 7404)
      • Unicorn-20963.exe (PID: 6488)
      • Unicorn-56353.exe (PID: 5960)
      • Unicorn-13650.exe (PID: 8128)
      • Unicorn-44913.exe (PID: 2552)
      • Unicorn-64135.exe (PID: 7392)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-31657.exe (PID: 6344)
      • Unicorn-18473.exe (PID: 5408)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-58391.exe (PID: 9224)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-44656.exe (PID: 9172)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-55777.exe (PID: 9324)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-44477.exe (PID: 8196)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-36065.exe (PID: 7780)
      • Unicorn-11983.exe (PID: 9296)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-47609.exe (PID: 9348)
      • Unicorn-26221.exe (PID: 4976)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-11487.exe (PID: 2392)
      • Unicorn-23297.exe (PID: 9560)
      • Unicorn-39995.exe (PID: 9332)
      • Unicorn-23297.exe (PID: 9564)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-8906.exe (PID: 9596)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-7728.exe (PID: 9640)
      • Unicorn-6768.exe (PID: 9500)
      • Unicorn-10852.exe (PID: 9516)
      • Unicorn-28341.exe (PID: 9672)
      • Unicorn-38547.exe (PID: 9744)
      • Unicorn-8475.exe (PID: 9664)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-8475.exe (PID: 9680)
      • Unicorn-44412.exe (PID: 9704)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-57881.exe (PID: 8396)
      • Unicorn-54552.exe (PID: 8700)
      • Unicorn-20933.exe (PID: 8360)
      • Unicorn-54552.exe (PID: 8776)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-31221.exe (PID: 10292)
      • Unicorn-18969.exe (PID: 10300)
      • Unicorn-43141.exe (PID: 9036)
      • Unicorn-53504.exe (PID: 10332)
      • Unicorn-13784.exe (PID: 8632)
      • Unicorn-55180.exe (PID: 8516)
      • Unicorn-28231.exe (PID: 10348)
      • Unicorn-3444.exe (PID: 7824)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-35733.exe (PID: 1272)
      • Unicorn-52069.exe (PID: 6068)
      • Unicorn-56265.exe (PID: 10368)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-12136.exe (PID: 7304)
      • Unicorn-7256.exe (PID: 10376)
      • Unicorn-13767.exe (PID: 9424)
      • Unicorn-19632.exe (PID: 9416)
      • Unicorn-55777.exe (PID: 9316)
      • Unicorn-28503.exe (PID: 4008)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-58383.exe (PID: 3332)
      • Unicorn-33467.exe (PID: 10412)
      • Unicorn-45720.exe (PID: 10432)
      • Unicorn-307.exe (PID: 9696)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-10631.exe (PID: 8024)
      • Unicorn-30201.exe (PID: 7500)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-44412.exe (PID: 9736)
      • Unicorn-36997.exe (PID: 10448)
      • Unicorn-10852.exe (PID: 9508)
      • Unicorn-307.exe (PID: 9688)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-17816.exe (PID: 10596)
      • Unicorn-18230.exe (PID: 10624)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-45887.exe (PID: 8672)
      • Unicorn-24937.exe (PID: 10488)
      • Unicorn-52949.exe (PID: 10512)
      • Unicorn-20469.exe (PID: 10736)
      • Unicorn-26591.exe (PID: 8452)
      • Unicorn-12684.exe (PID: 10464)
      • Unicorn-54101.exe (PID: 10836)
      • Unicorn-16193.exe (PID: 10588)
      • Unicorn-1140.exe (PID: 5576)
      • Unicorn-44973.exe (PID: 10664)
      • Unicorn-47609.exe (PID: 9364)
      • Unicorn-44973.exe (PID: 10648)
      • Unicorn-6768.exe (PID: 9492)
      • Unicorn-16939.exe (PID: 10776)
      • Unicorn-22210.exe (PID: 9656)
      • Unicorn-33681.exe (PID: 11016)
      • Unicorn-62269.exe (PID: 10968)
      • Unicorn-41849.exe (PID: 10876)
      • Unicorn-603.exe (PID: 10728)
      • Unicorn-49612.exe (PID: 10672)
      • Unicorn-25513.exe (PID: 11044)
      • Unicorn-8771.exe (PID: 10812)
      • Unicorn-26037.exe (PID: 8576)
      • Unicorn-54101.exe (PID: 10904)
      • Unicorn-36805.exe (PID: 10784)
      • Unicorn-54101.exe (PID: 10828)
      • Unicorn-1008.exe (PID: 11160)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-60415.exe (PID: 11136)
      • Unicorn-27765.exe (PID: 9264)
      • Unicorn-50896.exe (PID: 3884)
      • Unicorn-64692.exe (PID: 9456)
      • Unicorn-48163.exe (PID: 11088)
      • Unicorn-48865.exe (PID: 10504)
      • Unicorn-54293.exe (PID: 11096)
      • Unicorn-62461.exe (PID: 11184)
      • Unicorn-33681.exe (PID: 11020)
      • Unicorn-60415.exe (PID: 11144)

    • Checks supported languages

      • Unicorn-36589.exe (PID: 7728)
      • 1 (181).exe (PID: 7456)
      • Unicorn-18473.exe (PID: 5408)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-8716.exe (PID: 5528)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-35800.exe (PID: 6040)
      • Unicorn-12136.exe (PID: 7304)
      • Unicorn-36065.exe (PID: 7780)
      • Unicorn-30201.exe (PID: 7500)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-59676.exe (PID: 672)
      • Unicorn-35437.exe (PID: 4776)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-28577.exe (PID: 1180)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-50896.exe (PID: 3884)
      • Unicorn-44913.exe (PID: 2552)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-50725.exe (PID: 5548)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-38473.exe (PID: 5428)
      • Unicorn-1716.exe (PID: 7200)
      • Unicorn-1716.exe (PID: 4724)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-10631.exe (PID: 8024)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-9483.exe (PID: 7896)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-13650.exe (PID: 8128)
      • Unicorn-64135.exe (PID: 7392)
      • Unicorn-23481.exe (PID: 5776)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-52069.exe (PID: 6068)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-58383.exe (PID: 3332)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-4596.exe (PID: 8316)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-20933.exe (PID: 8360)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-57881.exe (PID: 8396)
      • Unicorn-34759.exe (PID: 8388)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-30675.exe (PID: 8476)
      • Unicorn-55180.exe (PID: 8524)
      • Unicorn-26591.exe (PID: 8452)
      • Unicorn-26591.exe (PID: 8440)
      • Unicorn-55180.exe (PID: 8516)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-3378.exe (PID: 8504)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-54552.exe (PID: 8700)
      • Unicorn-54055.exe (PID: 8748)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-17869.exe (PID: 8592)
      • Unicorn-13784.exe (PID: 8640)
      • Unicorn-48687.exe (PID: 8660)
      • Unicorn-43141.exe (PID: 9036)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-40519.exe (PID: 8716)
      • Unicorn-13784.exe (PID: 8632)
      • Unicorn-54552.exe (PID: 8776)
      • Unicorn-13784.exe (PID: 8648)
      • Unicorn-21183.exe (PID: 8692)
      • Unicorn-63561.exe (PID: 9004)
      • Unicorn-47972.exe (PID: 9104)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-20963.exe (PID: 6488)
      • Unicorn-26732.exe (PID: 9120)
      • Unicorn-44656.exe (PID: 9172)
      • Unicorn-58391.exe (PID: 9224)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-31657.exe (PID: 6344)
      • Unicorn-56353.exe (PID: 5960)
      • Unicorn-27765.exe (PID: 9264)
      • Unicorn-64521.exe (PID: 9232)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-13767.exe (PID: 9424)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-11983.exe (PID: 9296)
      • Unicorn-39995.exe (PID: 9332)
      • Unicorn-55777.exe (PID: 9316)
      • Unicorn-55777.exe (PID: 9324)
      • Unicorn-47609.exe (PID: 9364)
      • Unicorn-47609.exe (PID: 9348)
      • Unicorn-6768.exe (PID: 9492)
      • Unicorn-19632.exe (PID: 9416)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-7728.exe (PID: 9640)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-10852.exe (PID: 9516)
      • Unicorn-23297.exe (PID: 9564)
      • Unicorn-28341.exe (PID: 9672)
      • Unicorn-307.exe (PID: 9696)
      • Unicorn-8475.exe (PID: 9664)
      • Unicorn-38547.exe (PID: 9744)
      • Unicorn-307.exe (PID: 9688)
      • Unicorn-44412.exe (PID: 9736)
      • Unicorn-44412.exe (PID: 9704)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-22210.exe (PID: 9656)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-31221.exe (PID: 10292)
      • Unicorn-18969.exe (PID: 10300)
      • Unicorn-28231.exe (PID: 10348)
      • Unicorn-56265.exe (PID: 10368)
      • Unicorn-45720.exe (PID: 10432)
      • Unicorn-24937.exe (PID: 10488)
      • Unicorn-48865.exe (PID: 10504)
      • Unicorn-16193.exe (PID: 10588)
      • Unicorn-12684.exe (PID: 10464)
      • Unicorn-36997.exe (PID: 10448)
      • Unicorn-44973.exe (PID: 10656)
      • Unicorn-18230.exe (PID: 10624)
      • Unicorn-17816.exe (PID: 10596)
      • Unicorn-16939.exe (PID: 10776)
      • Unicorn-36805.exe (PID: 10784)
      • Unicorn-12300.exe (PID: 10748)
      • Unicorn-54101.exe (PID: 10828)
      • Unicorn-20469.exe (PID: 10736)
      • Unicorn-54101.exe (PID: 10836)
      • Unicorn-603.exe (PID: 10728)
      • Unicorn-8771.exe (PID: 10812)
      • Unicorn-62269.exe (PID: 10968)
      • Unicorn-60223.exe (PID: 10960)
      • Unicorn-33681.exe (PID: 11016)
      • Unicorn-25513.exe (PID: 11044)
      • Unicorn-48163.exe (PID: 11088)
      • Unicorn-54101.exe (PID: 10904)
      • Unicorn-33681.exe (PID: 11020)
      • Unicorn-60415.exe (PID: 11144)
      • Unicorn-1008.exe (PID: 11160)
      • Unicorn-1008.exe (PID: 11156)
      • Unicorn-1755.exe (PID: 11220)
      • Unicorn-62461.exe (PID: 11184)
      • Unicorn-21621.exe (PID: 11240)
      • Unicorn-54293.exe (PID: 11096)
      • Unicorn-58377.exe (PID: 11172)
      • Unicorn-37957.exe (PID: 10572)
      • Unicorn-43503.exe (PID: 11272)
      • Unicorn-49633.exe (PID: 11280)
      • Unicorn-35335.exe (PID: 11308)
      • Unicorn-45284.exe (PID: 11320)
      • Unicorn-57569.exe (PID: 11336)
      • Unicorn-28450.exe (PID: 11412)
      • Unicorn-37116.exe (PID: 11420)
      • Unicorn-9347.exe (PID: 11448)
      • Unicorn-25875.exe (PID: 11500)
      • Unicorn-9347.exe (PID: 11456)
      • Unicorn-40695.exe (PID: 11508)
      • Unicorn-27358.exe (PID: 11572)
      • Unicorn-13623.exe (PID: 11580)
      • Unicorn-22751.exe (PID: 11636)
      • Unicorn-1392.exe (PID: 11784)
      • Unicorn-1319.exe (PID: 11660)
      • Unicorn-39301.exe (PID: 11808)
      • Unicorn-42211.exe (PID: 11528)
      • Unicorn-25319.exe (PID: 11620)
      • Unicorn-19073.exe (PID: 11872)
      • Unicorn-63421.exe (PID: 11968)
      • Unicorn-6052.exe (PID: 11944)
      • Unicorn-6052.exe (PID: 11936)
      • Unicorn-52300.exe (PID: 11840)
      • Unicorn-14988.exe (PID: 11888)
      • Unicorn-22773.exe (PID: 12048)
      • Unicorn-42107.exe (PID: 12104)
      • Unicorn-32647.exe (PID: 12164)
      • Unicorn-12035.exe (PID: 12156)
      • Unicorn-25770.exe (PID: 12148)
      • Unicorn-12227.exe (PID: 12256)
      • Unicorn-29986.exe (PID: 12008)
      • Unicorn-32647.exe (PID: 12168)
      • Unicorn-8356.exe (PID: 7424)
      • Unicorn-5019.exe (PID: 7440)
      • Unicorn-29715.exe (PID: 8912)
      • Unicorn-51619.exe (PID: 6208)
      • Unicorn-18946.exe (PID: 12328)
      • Unicorn-6694.exe (PID: 12352)
      • Unicorn-380.exe (PID: 12320)
      • Unicorn-12559.exe (PID: 12364)
      • Unicorn-42891.exe (PID: 12436)
      • Unicorn-28038.exe (PID: 12420)
      • Unicorn-37883.exe (PID: 11376)
      • Unicorn-37883.exe (PID: 2288)
      • Unicorn-58496.exe (PID: 12344)
      • Unicorn-50505.exe (PID: 12468)
      • Unicorn-30639.exe (PID: 12460)
      • Unicorn-55336.exe (PID: 12492)
      • Unicorn-42891.exe (PID: 12440)
      • Unicorn-56627.exe (PID: 12448)
      • Unicorn-62187.exe (PID: 12552)
      • Unicorn-62717.exe (PID: 12536)
      • Unicorn-15786.exe (PID: 12628)
      • Unicorn-25736.exe (PID: 12572)
      • Unicorn-31154.exe (PID: 12524)
      • Unicorn-51252.exe (PID: 12544)
      • Unicorn-59612.exe (PID: 12664)
      • Unicorn-59612.exe (PID: 12656)
      • Unicorn-10411.exe (PID: 12728)
      • Unicorn-2243.exe (PID: 12736)
      • Unicorn-13919.exe (PID: 12772)
      • Unicorn-10411.exe (PID: 12712)
      • Unicorn-2243.exe (PID: 12744)
      • Unicorn-10411.exe (PID: 12720)
      • Unicorn-46784.exe (PID: 12876)
      • Unicorn-30277.exe (PID: 12704)
      • Unicorn-33785.exe (PID: 12784)
      • Unicorn-46037.exe (PID: 12764)
      • Unicorn-17449.exe (PID: 12900)
      • Unicorn-36015.exe (PID: 12932)
      • Unicorn-22279.exe (PID: 12924)
      • Unicorn-9856.exe (PID: 12672)
      • Unicorn-542.exe (PID: 13056)
      • Unicorn-62565.exe (PID: 13016)
      • Unicorn-36015.exe (PID: 12916)
      • Unicorn-38368.exe (PID: 13092)
      • Unicorn-21725.exe (PID: 13140)
      • Unicorn-9207.exe (PID: 13044)
      • Unicorn-25046.exe (PID: 12960)
      • Unicorn-17183.exe (PID: 12892)
      • Unicorn-36015.exe (PID: 12940)
      • Unicorn-36015.exe (PID: 12908)
      • Unicorn-12470.exe (PID: 13176)
      • Unicorn-7417.exe (PID: 13252)
      • Unicorn-63717.exe (PID: 13240)
      • Unicorn-39213.exe (PID: 13216)
      • Unicorn-18335.exe (PID: 13184)
      • Unicorn-55357.exe (PID: 13160)
      • Unicorn-34745.exe (PID: 13292)
      • Unicorn-6156.exe (PID: 13320)
      • Unicorn-2072.exe (PID: 13040)
      • Unicorn-39789.exe (PID: 13388)
      • Unicorn-2072.exe (PID: 12996)
      • Unicorn-51164.exe (PID: 13408)
      • Unicorn-51164.exe (PID: 13416)
      • Unicorn-17.exe (PID: 13444)
      • Unicorn-52233.exe (PID: 13460)
      • Unicorn-27153.exe (PID: 13512)
      • Unicorn-60017.exe (PID: 13548)
      • Unicorn-43681.exe (PID: 13528)
      • Unicorn-60017.exe (PID: 13564)
      • Unicorn-60017.exe (PID: 13544)
      • Unicorn-23261.exe (PID: 13636)
      • Unicorn-40557.exe (PID: 13676)
      • Unicorn-52809.exe (PID: 13700)
      • Unicorn-61169.exe (PID: 13788)
      • Unicorn-53577.exe (PID: 14012)
      • Unicorn-1999.exe (PID: 6480)
      • Unicorn-40815.exe (PID: 9272)
      • Unicorn-1999.exe (PID: 5216)
      • Unicorn-53686.exe (PID: 13916)
      • Unicorn-24029.exe (PID: 13972)
      • Unicorn-6467.exe (PID: 13396)
      • Unicorn-43607.exe (PID: 1600)
      • Unicorn-23187.exe (PID: 2560)
      • Unicorn-52683.exe (PID: 7336)
      • Unicorn-65127.exe (PID: 14188)
      • Unicorn-19679.exe (PID: 14352)
      • Unicorn-44184.exe (PID: 14376)
      • Unicorn-27847.exe (PID: 9276)
      • Unicorn-19871.exe (PID: 14428)
      • Unicorn-64988.exe (PID: 14472)
      • Unicorn-64988.exe (PID: 14480)
      • Unicorn-5018.exe (PID: 14504)
      • Unicorn-45859.exe (PID: 14420)
      • Unicorn-56820.exe (PID: 14496)
      • Unicorn-31547.exe (PID: 14552)
      • Unicorn-45283.exe (PID: 14568)
      • Unicorn-47884.exe (PID: 14608)
      • Unicorn-31547.exe (PID: 14560)
      • Unicorn-39715.exe (PID: 14616)
      • Unicorn-57535.exe (PID: 14576)
      • Unicorn-43800.exe (PID: 14600)
      • Unicorn-31547.exe (PID: 14588)
      • Unicorn-45061.exe (PID: 14724)
      • Unicorn-50214.exe (PID: 14752)
      • Unicorn-56244.exe (PID: 14704)
      • Unicorn-45061.exe (PID: 14744)
      • Unicorn-3151.exe (PID: 14904)
      • Unicorn-64604.exe (PID: 14820)
      • Unicorn-63592.exe (PID: 14772)
      • Unicorn-15403.exe (PID: 14888)
      • Unicorn-16886.exe (PID: 14896)
      • Unicorn-11319.exe (PID: 14848)
      • Unicorn-32663.exe (PID: 14960)
      • Unicorn-27063.exe (PID: 14952)
      • Unicorn-35004.exe (PID: 14856)
      • Unicorn-49192.exe (PID: 15024)
      • Unicorn-3255.exe (PID: 15016)
      • Unicorn-15403.exe (PID: 14880)
      • Unicorn-19591.exe (PID: 15052)
      • Unicorn-27255.exe (PID: 15136)
      • Unicorn-50675.exe (PID: 15160)
      • Unicorn-35423.exe (PID: 15032)
      • Unicorn-33924.exe (PID: 15112)
      • Unicorn-15403.exe (PID: 14864)
      • Unicorn-15010.exe (PID: 15080)
      • Unicorn-47660.exe (PID: 15120)
      • Unicorn-50675.exe (PID: 15180)
      • Unicorn-50675.exe (PID: 15152)
      • Unicorn-51880.exe (PID: 15336)
      • Unicorn-49960.exe (PID: 15444)
      • Unicorn-10542.exe (PID: 15368)
      • Unicorn-46015.exe (PID: 15344)
      • Unicorn-54375.exe (PID: 15312)
      • Unicorn-59419.exe (PID: 15544)
      • Unicorn-17863.exe (PID: 15572)
      • Unicorn-5611.exe (PID: 15660)
      • Unicorn-1527.exe (PID: 15652)
      • Unicorn-17479.exe (PID: 15724)
      • Unicorn-55911.exe (PID: 15784)
      • Unicorn-33239.exe (PID: 15504)
      • Unicorn-60187.exe (PID: 15944)
      • Unicorn-515.exe (PID: 15920)
      • Unicorn-8931.exe (PID: 16020)
      • Unicorn-13482.exe (PID: 16248)
      • Unicorn-44864.exe (PID: 16216)
      • Unicorn-30010.exe (PID: 16280)
      • Unicorn-52212.exe (PID: 16328)
      • Unicorn-46347.exe (PID: 16320)
      • Unicorn-39384.exe (PID: 7924)
      • Unicorn-33518.exe (PID: 16392)
      • Unicorn-19783.exe (PID: 8228)
      • Unicorn-17182.exe (PID: 16480)
      • Unicorn-3447.exe (PID: 16488)
      • Unicorn-17182.exe (PID: 16504)
      • Unicorn-47247.exe (PID: 16576)
      • Unicorn-47247.exe (PID: 16568)
      • Unicorn-39384.exe (PID: 2596)
      • Unicorn-26246.exe (PID: 16688)
      • Unicorn-50047.exe (PID: 16656)
      • Unicorn-17182.exe (PID: 16472)
      • Unicorn-36311.exe (PID: 16672)
      • Unicorn-30711.exe (PID: 16664)
      • Unicorn-26502.exe (PID: 16764)
      • Unicorn-32368.exe (PID: 16788)
      • Unicorn-26502.exe (PID: 16768)
      • Unicorn-10987.exe (PID: 16708)
      • Unicorn-4599.exe (PID: 16868)
      • Unicorn-18334.exe (PID: 16916)
      • Unicorn-18334.exe (PID: 16932)
      • Unicorn-63643.exe (PID: 17072)
      • Unicorn-6274.exe (PID: 17080)
      • Unicorn-3971.exe (PID: 17044)
      • Unicorn-3971.exe (PID: 17028)
      • Unicorn-3971.exe (PID: 17036)
      • Unicorn-57500.exe (PID: 17168)
      • Unicorn-49908.exe (PID: 17012)
      • Unicorn-2898.exe (PID: 17224)
      • Unicorn-57500.exe (PID: 17192)
      • Unicorn-31569.exe (PID: 17280)
      • Unicorn-33955.exe (PID: 17288)
      • Unicorn-11589.exe (PID: 17332)
      • Unicorn-4983.exe (PID: 17388)
      • Unicorn-23457.exe (PID: 17372)
      • Unicorn-23457.exe (PID: 17380)
      • Unicorn-47324.exe (PID: 17516)
      • Unicorn-43047.exe (PID: 17476)
      • Unicorn-20681.exe (PID: 17564)
      • Unicorn-39155.exe (PID: 17524)
      • Unicorn-20681.exe (PID: 17548)
      • Unicorn-17147.exe (PID: 17620)
      • Unicorn-20681.exe (PID: 17572)
      • Unicorn-50292.exe (PID: 17424)
      • Unicorn-23457.exe (PID: 17364)
      • Unicorn-23457.exe (PID: 17356)
      • Unicorn-31371.exe (PID: 17716)
      • Unicorn-30411.exe (PID: 17660)
      • Unicorn-23203.exe (PID: 17724)
      • Unicorn-2975.exe (PID: 17768)
      • Unicorn-15367.exe (PID: 18148)
      • Unicorn-46067.exe (PID: 18032)
      • Unicorn-63852.exe (PID: 17884)
      • Unicorn-50919.exe (PID: 18108)
      • Unicorn-50919.exe (PID: 18116)
      • Unicorn-22906.exe (PID: 18224)
      • Unicorn-28964.exe (PID: 18264)
      • Unicorn-31842.exe (PID: 7640)
      • Unicorn-60815.exe (PID: 18584)
      • Unicorn-29042.exe (PID: 9616)
      • Unicorn-55579.exe (PID: 18484)
      • Unicorn-14354.exe (PID: 18460)
      • Unicorn-49440.exe (PID: 18520)
      • Unicorn-9119.exe (PID: 18492)
      • Unicorn-21212.exe (PID: 19016)
      • Unicorn-55387.exe (PID: 18448)
      • Unicorn-60815.exe (PID: 18720)
      • Unicorn-57439.exe (PID: 18840)
      • Unicorn-39627.exe (PID: 18832)
      • Unicorn-39627.exe (PID: 18820)
      • Unicorn-56155.exe (PID: 18884)
      • Unicorn-39463.exe (PID: 19144)
      • Unicorn-60239.exe (PID: 18868)
      • Unicorn-36826.exe (PID: 18812)
      • Unicorn-20682.exe (PID: 19000)
      • Unicorn-60239.exe (PID: 18860)
      • Unicorn-60431.exe (PID: 19044)
      • Unicorn-9119.exe (PID: 18500)
      • Unicorn-11614.exe (PID: 18656)
      • Unicorn-5108.exe (PID: 19116)
      • Unicorn-18055.exe (PID: 19340)
      • Unicorn-41095.exe (PID: 19052)
      • Unicorn-49263.exe (PID: 19164)
      • Unicorn-34392.exe (PID: 19172)
      • Unicorn-34392.exe (PID: 19188)
      • Unicorn-56073.exe (PID: 19384)
      • Unicorn-23482.exe (PID: 19008)
      • Unicorn-34392.exe (PID: 19180)
      • Unicorn-26257.exe (PID: 19196)

    • Checks proxy server information

      • BackgroundTransferHost.exe (PID: 4980)

    • Reads security settings of Internet Explorer

      • BackgroundTransferHost.exe (PID: 2284)
      • BackgroundTransferHost.exe (PID: 4980)
      • BackgroundTransferHost.exe (PID: 4212)
      • BackgroundTransferHost.exe (PID: 4724)
      • BackgroundTransferHost.exe (PID: 7228)

    • Create files in a temporary directory

      • 1 (181).exe (PID: 7456)
      • Unicorn-36589.exe (PID: 7728)
      • Unicorn-18473.exe (PID: 5408)
      • Unicorn-1103.exe (PID: 2236)
      • Unicorn-8716.exe (PID: 5528)
      • Unicorn-24943.exe (PID: 7888)
      • Unicorn-36065.exe (PID: 7780)
      • Unicorn-15135.exe (PID: 7320)
      • Unicorn-12136.exe (PID: 6268)
      • Unicorn-35800.exe (PID: 6040)
      • Unicorn-47860.exe (PID: 6264)
      • Unicorn-30201.exe (PID: 7500)
      • Unicorn-52659.exe (PID: 7504)
      • Unicorn-53811.exe (PID: 632)
      • Unicorn-40075.exe (PID: 6620)
      • Unicorn-32098.exe (PID: 6540)
      • Unicorn-32469.exe (PID: 516)
      • Unicorn-51197.exe (PID: 7404)
      • Unicorn-11944.exe (PID: 7808)
      • Unicorn-40564.exe (PID: 6744)
      • Unicorn-1140.exe (PID: 5576)
      • Unicorn-14056.exe (PID: 5508)
      • Unicorn-50896.exe (PID: 6324)
      • Unicorn-26221.exe (PID: 4976)
      • Unicorn-11487.exe (PID: 2392)
      • Unicorn-42557.exe (PID: 7052)
      • Unicorn-59676.exe (PID: 672)
      • Unicorn-31353.exe (PID: 4932)
      • Unicorn-31353.exe (PID: 5280)
      • Unicorn-11487.exe (PID: 7372)
      • Unicorn-29934.exe (PID: 6656)
      • Unicorn-35437.exe (PID: 4776)
      • Unicorn-24366.exe (PID: 7708)
      • Unicorn-24366.exe (PID: 7692)
      • Unicorn-24366.exe (PID: 7852)
      • Unicorn-21566.exe (PID: 8012)
      • Unicorn-16199.exe (PID: 7324)
      • Unicorn-20969.exe (PID: 1228)
      • Unicorn-9483.exe (PID: 7896)
      • Unicorn-6184.exe (PID: 7220)
      • Unicorn-39049.exe (PID: 7960)
      • Unicorn-28939.exe (PID: 1056)
      • Unicorn-23865.exe (PID: 5380)
      • Unicorn-36117.exe (PID: 7868)
      • Unicorn-48997.exe (PID: 4464)
      • Unicorn-28577.exe (PID: 1180)
      • Unicorn-3444.exe (PID: 7824)
      • Unicorn-40947.exe (PID: 7944)
      • Unicorn-44285.exe (PID: 8100)
      • Unicorn-20963.exe (PID: 6488)
      • Unicorn-40947.exe (PID: 7916)
      • Unicorn-7699.exe (PID: 5868)
      • Unicorn-7699.exe (PID: 5936)
      • Unicorn-53392.exe (PID: 8216)
      • Unicorn-14056.exe (PID: 1760)
      • Unicorn-1140.exe (PID: 5404)
      • Unicorn-58383.exe (PID: 4896)
      • Unicorn-18502.exe (PID: 6192)
      • Unicorn-41353.exe (PID: 8296)
      • Unicorn-50725.exe (PID: 4756)
      • Unicorn-41353.exe (PID: 8288)
      • Unicorn-50725.exe (PID: 5548)
      • Unicorn-41353.exe (PID: 8272)
      • Unicorn-38843.exe (PID: 8416)
      • Unicorn-50725.exe (PID: 7172)
      • Unicorn-45437.exe (PID: 8304)
      • Unicorn-41353.exe (PID: 8280)
      • Unicorn-63724.exe (PID: 7532)
      • Unicorn-54552.exe (PID: 8700)
      • Unicorn-55180.exe (PID: 8516)
      • Unicorn-46384.exe (PID: 8708)
      • Unicorn-21183.exe (PID: 8692)
      • Unicorn-26037.exe (PID: 8576)
      • Unicorn-42557.exe (PID: 6272)
      • Unicorn-54552.exe (PID: 8776)
      • Unicorn-13784.exe (PID: 8584)
      • Unicorn-31353.exe (PID: 7408)
      • Unicorn-21953.exe (PID: 8556)
      • Unicorn-46417.exe (PID: 8680)
      • Unicorn-26037.exe (PID: 8568)
      • Unicorn-26591.exe (PID: 8460)
      • Unicorn-48687.exe (PID: 8660)
      • Unicorn-5031.exe (PID: 7996)
      • Unicorn-55180.exe (PID: 8524)
      • Unicorn-51011.exe (PID: 7380)
      • Unicorn-26732.exe (PID: 9120)
      • Unicorn-30232.exe (PID: 7864)
      • Unicorn-55585.exe (PID: 9060)
      • Unicorn-37203.exe (PID: 9136)
      • Unicorn-15099.exe (PID: 5956)
      • Unicorn-6384.exe (PID: 9084)
      • Unicorn-11791.exe (PID: 9204)
      • Unicorn-44285.exe (PID: 7820)
      • Unicorn-26530.exe (PID: 1096)
      • Unicorn-56353.exe (PID: 5960)
      • Unicorn-64135.exe (PID: 7392)
      • Unicorn-60813.exe (PID: 8112)
      • Unicorn-52069.exe (PID: 6516)
      • Unicorn-58383.exe (PID: 3332)
      • Unicorn-55777.exe (PID: 9324)
      • Unicorn-44477.exe (PID: 8196)
      • Unicorn-3815.exe (PID: 9256)
      • Unicorn-11983.exe (PID: 9296)
      • Unicorn-59969.exe (PID: 9404)
      • Unicorn-21058.exe (PID: 9436)
      • Unicorn-55777.exe (PID: 9316)
      • Unicorn-64692.exe (PID: 9456)
      • Unicorn-61013.exe (PID: 9624)
      • Unicorn-39995.exe (PID: 9332)
      • Unicorn-6768.exe (PID: 9500)
      • Unicorn-16006.exe (PID: 9524)
      • Unicorn-8906.exe (PID: 9596)
      • Unicorn-22210.exe (PID: 9656)
      • Unicorn-8475.exe (PID: 9680)
      • Unicorn-44412.exe (PID: 9704)
      • Unicorn-16015.exe (PID: 9800)
      • Unicorn-28341.exe (PID: 9672)
      • Unicorn-17742.exe (PID: 9828)
      • Unicorn-4007.exe (PID: 9820)
      • Unicorn-50725.exe (PID: 7176)
      • Unicorn-57881.exe (PID: 8396)
      • Unicorn-4596.exe (PID: 8316)
      • Unicorn-30675.exe (PID: 8476)
      • Unicorn-1716.exe (PID: 4724)
      • Unicorn-4596.exe (PID: 8324)
      • Unicorn-10631.exe (PID: 2096)
      • Unicorn-47609.exe (PID: 9356)
      • Unicorn-15107.exe (PID: 9052)
      • Unicorn-43909.exe (PID: 9196)
      • Unicorn-23297.exe (PID: 9560)
      • Unicorn-20933.exe (PID: 8360)
      • Unicorn-16849.exe (PID: 8352)
      • Unicorn-26591.exe (PID: 8440)
      • Unicorn-13784.exe (PID: 8648)

    • Creates files or folders in the user directory

      • BackgroundTransferHost.exe (PID: 4980)
      • WerFault.exe (PID: 13668)
      • WerFault.exe (PID: 14184)

    • Reads the software policy settings

      • BackgroundTransferHost.exe (PID: 4980)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | Win32 Executable (generic) (52.9)
.exe | Generic Win/DOS Executable (23.5)
.exe | DOS Executable Generic (23.5)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2019:04:26 10:28:09+00:00
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit
PEType: PE32
LinkerVersion: 6
CodeSize: 176128
InitializedDataSize: 8192
UninitializedDataSize: -
EntryPoint: 0x13b0
OSVersion: 4
ImageVersion: 1
SubsystemVersion: 4
Subsystem: Windows GUI
FileVersionNumber: 1.0.0.0
ProductVersionNumber: 1.0.0.0
FileFlagsMask: 0x0000
FileFlags: (none)
FileOS: Win32
ObjectFileType: Executable application
FileSubtype: 1996488704
LanguageCode: Chinese (Simplified)
CharacterSet: Unicode
ComanyName: aaaa
ProductName: Kawaii-Unicorn
FileVersion: 1
ProductVersion: 1
InternalName: Kawaii-Unicorn
OriginalFileName: Kawaii-Unicorn.exe
No data.
screenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
747
Monitored processes
609
Malicious processes
81
Suspicious processes
81

Behavior graph

Click at the process to see the details
start 1 (181).exe sppextcomobj.exe no specs slui.exe unicorn-36589.exe unicorn-18473.exe unicorn-15135.exe backgroundtransferhost.exe no specs backgroundtransferhost.exe unicorn-8716.exe unicorn-1103.exe unicorn-20969.exe unicorn-32098.exe backgroundtransferhost.exe no specs backgroundtransferhost.exe no specs backgroundtransferhost.exe no specs unicorn-11944.exe unicorn-24943.exe unicorn-12136.exe unicorn-12136.exe unicorn-35800.exe unicorn-16199.exe unicorn-29934.exe unicorn-36065.exe unicorn-51197.exe unicorn-47860.exe unicorn-30201.exe unicorn-52659.exe unicorn-14056.exe unicorn-14056.exe unicorn-11487.exe unicorn-11487.exe unicorn-31353.exe unicorn-31353.exe unicorn-31353.exe unicorn-35437.exe unicorn-40075.exe unicorn-51011.exe unicorn-53811.exe unicorn-59676.exe unicorn-32469.exe unicorn-28939.exe unicorn-28577.exe unicorn-26530.exe unicorn-44913.exe unicorn-48997.exe unicorn-40564.exe unicorn-20963.exe unicorn-1140.exe unicorn-1140.exe unicorn-50896.exe unicorn-50896.exe unicorn-26221.exe unicorn-50725.exe unicorn-50725.exe unicorn-50725.exe unicorn-50725.exe unicorn-38473.exe unicorn-42557.exe unicorn-42557.exe unicorn-1716.exe unicorn-1716.exe unicorn-63724.exe unicorn-24366.exe unicorn-24366.exe unicorn-30232.exe unicorn-24366.exe unicorn-21566.exe unicorn-10631.exe unicorn-10631.exe unicorn-5031.exe unicorn-6184.exe unicorn-15099.exe unicorn-39049.exe unicorn-9483.exe unicorn-36117.exe unicorn-23865.exe unicorn-28503.exe unicorn-48104.exe no specs unicorn-44285.exe unicorn-44285.exe unicorn-3444.exe unicorn-40947.exe unicorn-40947.exe unicorn-60813.exe unicorn-13650.exe unicorn-64135.exe unicorn-35733.exe unicorn-23481.exe unicorn-7699.exe unicorn-7699.exe unicorn-52069.exe unicorn-52069.exe unicorn-58383.exe unicorn-58383.exe unicorn-18502.exe unicorn-44477.exe unicorn-53392.exe unicorn-41353.exe unicorn-41353.exe unicorn-41353.exe unicorn-41353.exe unicorn-45437.exe unicorn-4596.exe unicorn-4596.exe unicorn-16849.exe unicorn-20933.exe unicorn-34759.exe unicorn-57881.exe unicorn-38843.exe unicorn-26591.exe unicorn-26591.exe unicorn-26591.exe unicorn-26591.exe unicorn-30675.exe unicorn-3378.exe unicorn-55180.exe unicorn-55180.exe unicorn-21953.exe unicorn-26037.exe unicorn-26037.exe unicorn-13784.exe unicorn-17869.exe unicorn-13784.exe unicorn-13784.exe unicorn-13784.exe unicorn-48687.exe unicorn-45887.exe unicorn-46417.exe unicorn-21183.exe unicorn-54552.exe unicorn-46384.exe unicorn-40519.exe unicorn-54055.exe unicorn-54552.exe unicorn-63561.exe unicorn-43141.exe unicorn-15107.exe unicorn-55585.exe unicorn-6384.exe unicorn-47972.exe unicorn-26732.exe unicorn-37203.exe unicorn-64329.exe unicorn-43909.exe unicorn-11791.exe unicorn-31657.exe unicorn-56353.exe unicorn-44656.exe unicorn-58391.exe unicorn-64521.exe unicorn-3815.exe unicorn-27765.exe unicorn-11983.exe unicorn-55777.exe unicorn-55777.exe unicorn-39995.exe unicorn-47609.exe unicorn-47609.exe unicorn-47609.exe unicorn-59969.exe unicorn-19632.exe unicorn-13767.exe unicorn-21058.exe unicorn-64692.exe unicorn-6768.exe unicorn-6768.exe unicorn-10852.exe unicorn-10852.exe unicorn-16006.exe unicorn-23297.exe unicorn-23297.exe unicorn-8906.exe unicorn-61013.exe unicorn-7728.exe unicorn-22210.exe unicorn-8475.exe unicorn-28341.exe unicorn-8475.exe unicorn-307.exe unicorn-307.exe unicorn-44412.exe unicorn-44412.exe unicorn-38547.exe unicorn-16015.exe unicorn-4007.exe unicorn-17742.exe unicorn-31221.exe unicorn-18969.exe unicorn-53504.exe unicorn-28231.exe unicorn-56265.exe unicorn-7256.exe unicorn-33467.exe unicorn-45720.exe unicorn-36997.exe unicorn-12684.exe unicorn-24937.exe unicorn-48865.exe unicorn-52949.exe unicorn-16193.exe unicorn-17816.exe unicorn-18230.exe unicorn-44973.exe unicorn-44973.exe no specs unicorn-44973.exe unicorn-49612.exe werfault.exe no specs unicorn-603.exe unicorn-20469.exe unicorn-12300.exe no specs unicorn-16939.exe unicorn-36805.exe unicorn-8771.exe unicorn-54101.exe unicorn-54101.exe unicorn-41849.exe unicorn-54101.exe unicorn-60223.exe no specs unicorn-62269.exe unicorn-33681.exe unicorn-33681.exe unicorn-25513.exe unicorn-48163.exe unicorn-54293.exe unicorn-60415.exe unicorn-60415.exe unicorn-1008.exe no specs unicorn-1008.exe unicorn-58377.exe no specs unicorn-62461.exe unicorn-62461.exe no specs unicorn-1755.exe no specs unicorn-21621.exe no specs unicorn-29026.exe no specs unicorn-37957.exe no specs unicorn-43503.exe no specs unicorn-49633.exe no specs unicorn-32534.exe no specs unicorn-35335.exe no specs unicorn-45284.exe no specs unicorn-57569.exe no specs unicorn-1179.exe no specs unicorn-21045.exe no specs unicorn-28450.exe no specs unicorn-37116.exe no specs unicorn-9347.exe no specs unicorn-9347.exe no specs unicorn-9347.exe no specs unicorn-25875.exe no specs unicorn-40695.exe no specs unicorn-42211.exe no specs unicorn-48674.exe no specs unicorn-27358.exe no specs unicorn-13623.exe no specs unicorn-25319.exe no specs unicorn-22751.exe no specs unicorn-1319.exe no specs unicorn-48931.exe no specs unicorn-1392.exe no specs unicorn-39301.exe no specs unicorn-52300.exe no specs unicorn-19073.exe no specs unicorn-14988.exe no specs unicorn-6052.exe no specs unicorn-6052.exe no specs unicorn-63421.exe no specs unicorn-29986.exe no specs unicorn-22773.exe no specs unicorn-32455.exe no specs unicorn-42107.exe no specs unicorn-25770.exe no specs unicorn-12035.exe no specs unicorn-32647.exe no specs unicorn-32647.exe no specs unicorn-19575.exe no specs unicorn-12227.exe no specs unicorn-8356.exe no specs unicorn-5019.exe no specs unicorn-37883.exe no specs unicorn-37883.exe no specs unicorn-51619.exe no specs unicorn-29715.exe no specs unicorn-380.exe no specs unicorn-18946.exe no specs unicorn-58496.exe no specs unicorn-58496.exe no specs unicorn-6694.exe no specs unicorn-12559.exe no specs unicorn-28038.exe no specs unicorn-42891.exe no specs unicorn-42891.exe no specs unicorn-56627.exe no specs unicorn-30639.exe no specs unicorn-50505.exe no specs unicorn-55336.exe no specs unicorn-31154.exe no specs unicorn-62717.exe no specs unicorn-51252.exe no specs unicorn-62187.exe no specs unicorn-5315.exe no specs unicorn-25736.exe no specs unicorn-15786.exe no specs unicorn-59612.exe no specs unicorn-59612.exe no specs unicorn-9856.exe no specs unicorn-30277.exe no specs unicorn-10411.exe no specs unicorn-10411.exe no specs unicorn-10411.exe no specs unicorn-2243.exe no specs unicorn-2243.exe no specs unicorn-46037.exe no specs unicorn-13919.exe no specs unicorn-33785.exe no specs unicorn-42507.exe no specs unicorn-46784.exe no specs unicorn-17183.exe no specs unicorn-17449.exe no specs unicorn-36015.exe no specs unicorn-36015.exe no specs unicorn-22279.exe no specs unicorn-36015.exe no specs unicorn-36015.exe no specs unicorn-25046.exe no specs unicorn-62565.exe no specs unicorn-9207.exe no specs unicorn-542.exe no specs unicorn-38368.exe no specs werfault.exe no specs unicorn-21725.exe no specs unicorn-55357.exe no specs unicorn-12470.exe no specs unicorn-18335.exe no specs unicorn-22685.exe no specs unicorn-39213.exe no specs unicorn-63717.exe no specs unicorn-7417.exe no specs unicorn-34745.exe no specs unicorn-63333.exe no specs unicorn-2072.exe no specs unicorn-2072.exe no specs unicorn-6156.exe no specs unicorn-39789.exe unicorn-51164.exe no specs unicorn-51164.exe no specs unicorn-17.exe no specs unicorn-52233.exe no specs unicorn-11392.exe no specs unicorn-27153.exe no specs unicorn-43681.exe no specs unicorn-47765.exe no specs unicorn-60017.exe no specs unicorn-60017.exe no specs unicorn-60017.exe no specs unicorn-23261.exe no specs werfault.exe no specs unicorn-40557.exe no specs unicorn-52809.exe no specs unicorn-28305.exe no specs unicorn-62238.exe no specs unicorn-61169.exe no specs unicorn-36089.exe no specs unicorn-53686.exe no specs unicorn-24029.exe no specs unicorn-53577.exe no specs werfault.exe no specs unicorn-1999.exe no specs unicorn-1999.exe no specs unicorn-40815.exe no specs unicorn-48983.exe no specs unicorn-23187.exe no specs unicorn-43607.exe no specs unicorn-52683.exe no specs unicorn-65127.exe no specs unicorn-6467.exe no specs unicorn-27847.exe no specs unicorn-19679.exe no specs unicorn-44184.exe no specs unicorn-44184.exe no specs unicorn-45859.exe no specs unicorn-19871.exe no specs unicorn-59892.exe no specs unicorn-64988.exe no specs unicorn-64988.exe no specs unicorn-56820.exe no specs unicorn-5018.exe no specs unicorn-21354.exe no specs unicorn-31547.exe no specs unicorn-31547.exe no specs unicorn-45283.exe no specs unicorn-57535.exe no specs unicorn-31547.exe no specs unicorn-43800.exe no specs unicorn-47884.exe no specs unicorn-39715.exe no specs unicorn-10307.exe no specs unicorn-56244.exe no specs unicorn-56244.exe no specs unicorn-45061.exe no specs unicorn-45061.exe no specs unicorn-50214.exe no specs unicorn-63592.exe no specs unicorn-64604.exe no specs unicorn-30920.exe no specs unicorn-11319.exe no specs unicorn-35004.exe no specs unicorn-15403.exe no specs unicorn-15403.exe no specs unicorn-15403.exe no specs unicorn-15403.exe no specs unicorn-16886.exe no specs unicorn-3151.exe no specs unicorn-27063.exe no specs unicorn-32663.exe no specs unicorn-3255.exe no specs unicorn-49192.exe no specs unicorn-35423.exe no specs unicorn-19591.exe no specs unicorn-59546.exe no specs unicorn-15010.exe no specs unicorn-33924.exe no specs unicorn-47660.exe no specs unicorn-27255.exe no specs unicorn-43791.exe no specs unicorn-50675.exe no specs unicorn-50675.exe no specs unicorn-50675.exe no specs unicorn-13918.exe no specs unicorn-3480.exe no specs unicorn-5750.exe no specs unicorn-16879.exe no specs unicorn-51880.exe no specs unicorn-46015.exe no specs unicorn-52105.exe no specs unicorn-54375.exe no specs unicorn-10542.exe no specs unicorn-11231.exe no specs unicorn-49960.exe no specs unicorn-22440.exe no specs unicorn-33239.exe no specs unicorn-59419.exe no specs unicorn-21947.exe no specs unicorn-17863.exe no specs unicorn-1527.exe no specs unicorn-1527.exe no specs unicorn-5611.exe no specs unicorn-8371.exe no specs unicorn-17479.exe no specs unicorn-55911.exe no specs unicorn-16659.exe no specs unicorn-515.exe no specs unicorn-60187.exe no specs unicorn-29566.exe no specs unicorn-8931.exe no specs unicorn-44864.exe no specs unicorn-13482.exe no specs unicorn-30010.exe no specs unicorn-46347.exe no specs unicorn-46347.exe no specs unicorn-52212.exe no specs unicorn-39384.exe no specs unicorn-39384.exe no specs unicorn-19783.exe no specs unicorn-33518.exe no specs unicorn-22550.exe no specs unicorn-51636.exe no specs unicorn-17182.exe no specs unicorn-17182.exe no specs unicorn-3447.exe no specs unicorn-17182.exe no specs unicorn-27132.exe no specs unicorn-47032.exe no specs unicorn-47247.exe no specs unicorn-47247.exe no specs unicorn-50047.exe no specs unicorn-30711.exe no specs unicorn-36311.exe no specs unicorn-26246.exe no specs unicorn-10987.exe no specs unicorn-26502.exe no specs unicorn-26502.exe no specs unicorn-32368.exe no specs unicorn-32368.exe no specs unicorn-29103.exe no specs unicorn-4599.exe no specs unicorn-4599.exe no specs unicorn-8683.exe no specs unicorn-10166.exe no specs unicorn-18334.exe no specs unicorn-18334.exe no specs unicorn-18334.exe no specs unicorn-18334.exe no specs unicorn-18334.exe no specs unicorn-49908.exe no specs unicorn-60843.exe no specs unicorn-3971.exe no specs unicorn-3971.exe no specs unicorn-3971.exe no specs unicorn-3971.exe no specs unicorn-64728.exe no specs unicorn-63643.exe no specs unicorn-6274.exe no specs unicorn-57500.exe no specs unicorn-51900.exe no specs unicorn-51900.exe no specs unicorn-57500.exe no specs unicorn-2898.exe no specs unicorn-14713.exe no specs unicorn-35024.exe no specs unicorn-40235.exe no specs unicorn-31569.exe no specs unicorn-33955.exe no specs unicorn-11589.exe no specs unicorn-23457.exe no specs unicorn-23457.exe no specs unicorn-23457.exe no specs unicorn-23457.exe no specs unicorn-4983.exe no specs unicorn-50292.exe no specs unicorn-50292.exe no specs unicorn-2015.exe no specs unicorn-43047.exe no specs unicorn-43047.exe no specs unicorn-47324.exe no specs unicorn-39155.exe no specs unicorn-20681.exe no specs unicorn-20681.exe no specs unicorn-20681.exe no specs unicorn-20681.exe no specs unicorn-17147.exe no specs unicorn-44802.exe no specs unicorn-30411.exe no specs unicorn-30411.exe no specs unicorn-10951.exe no specs unicorn-31371.exe no specs unicorn-23203.exe no specs unicorn-2975.exe no specs unicorn-2155.exe no specs unicorn-56260.exe no specs unicorn-63852.exe no specs unicorn-31179.exe no specs unicorn-46067.exe no specs unicorn-50919.exe no specs unicorn-50919.exe no specs unicorn-15367.exe no specs unicorn-35980.exe no specs unicorn-9694.exe no specs unicorn-22906.exe no specs unicorn-28964.exe no specs unicorn-38859.exe no specs unicorn-29042.exe no specs unicorn-40011.exe no specs unicorn-31842.exe no specs unicorn-45876.exe no specs unicorn-55387.exe no specs unicorn-14354.exe no specs unicorn-61444.exe no specs unicorn-21371.exe no specs unicorn-55579.exe no specs unicorn-9119.exe no specs unicorn-9119.exe no specs unicorn-49440.exe no specs unicorn-49440.exe no specs unicorn-49440.exe no specs unicorn-60815.exe no specs unicorn-58015.exe no specs unicorn-64899.exe no specs unicorn-3254.exe no specs unicorn-11614.exe no specs unicorn-11614.exe no specs unicorn-60815.exe no specs unicorn-47795.exe no specs unicorn-36826.exe no specs unicorn-39627.exe no specs unicorn-39627.exe no specs unicorn-57439.exe no specs unicorn-60239.exe no specs unicorn-60239.exe no specs unicorn-60239.exe no specs unicorn-62020.exe no specs unicorn-56155.exe no specs unicorn-15122.exe no specs unicorn-12852.exe no specs unicorn-8814.exe no specs unicorn-20682.exe no specs unicorn-23482.exe no specs unicorn-21212.exe no specs unicorn-37018.exe no specs unicorn-60431.exe no specs unicorn-41095.exe no specs unicorn-5108.exe no specs unicorn-39463.exe no specs unicorn-8927.exe no specs unicorn-49263.exe no specs unicorn-34392.exe no specs unicorn-34392.exe no specs unicorn-34392.exe no specs unicorn-26257.exe no specs unicorn-1719.exe no specs unicorn-18055.exe no specs unicorn-53926.exe no specs unicorn-47408.exe no specs unicorn-56073.exe no specs unicorn-25272.exe no specs unicorn-29614.exe no specs unicorn-38163.exe no specs unicorn-63364.exe no specs unicorn-25534.exe no specs unicorn-57115.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
516C:\Users\admin\AppData\Local\Temp\Unicorn-32469.exeC:\Users\admin\AppData\Local\Temp\Unicorn-32469.exe
Unicorn-51197.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-32469.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
632C:\Users\admin\AppData\Local\Temp\Unicorn-53811.exeC:\Users\admin\AppData\Local\Temp\Unicorn-53811.exe
Unicorn-15135.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-53811.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
672C:\Users\admin\AppData\Local\Temp\Unicorn-59676.exeC:\Users\admin\AppData\Local\Temp\Unicorn-59676.exe
Unicorn-36589.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-59676.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1056C:\Users\admin\AppData\Local\Temp\Unicorn-28939.exeC:\Users\admin\AppData\Local\Temp\Unicorn-28939.exe
Unicorn-11944.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-28939.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1096C:\Users\admin\AppData\Local\Temp\Unicorn-26530.exeC:\Users\admin\AppData\Local\Temp\Unicorn-26530.exe
Unicorn-8716.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-26530.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1180C:\Users\admin\AppData\Local\Temp\Unicorn-28577.exeC:\Users\admin\AppData\Local\Temp\Unicorn-28577.exe
Unicorn-47860.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-28577.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1228C:\Users\admin\AppData\Local\Temp\Unicorn-20969.exeC:\Users\admin\AppData\Local\Temp\Unicorn-20969.exe
Unicorn-15135.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-20969.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1272C:\Users\admin\AppData\Local\Temp\Unicorn-35733.exeC:\Users\admin\AppData\Local\Temp\Unicorn-35733.exe
Unicorn-1140.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-35733.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1600C:\Users\admin\AppData\Local\Temp\Unicorn-43607.exeC:\Users\admin\AppData\Local\Temp\Unicorn-43607.exeUnicorn-4596.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-43607.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1760C:\Users\admin\AppData\Local\Temp\Unicorn-14056.exeC:\Users\admin\AppData\Local\Temp\Unicorn-14056.exe
Unicorn-12136.exe
User:
admin
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-14056.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
Total events
20 885
Read events
20 870
Write events
15
Delete events
0

Modification events

(PID) Process:(2284) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(2284) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(2284) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(4980) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(4980) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(4980) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(4724) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(4724) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(4724) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(7228) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
Executable files
974
Suspicious files
11
Text files
2
Unknown types
0

Dropped files

PID
Process
Filename
Type
4980BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\0ecc50dc-d2a0-4f69-9401-7dfda752da36.down_data
MD5:
SHA256:
7728Unicorn-36589.exeC:\Users\admin\AppData\Local\Temp\Unicorn-18473.exeexecutable
MD5:C6061FBC50E095C3585F5F6752D47312
SHA256:402083A39510E1E279E918ADF66F6D24058626DFC12B98F27171C47550C18B35
4980BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\26C212D9399727259664BDFCA073966E_F9F7D6A7ECE73106D2A8C63168CDA10Dbinary
MD5:4872BABAF39AA62B8D32695EBB7E9173
SHA256:2EE85DF86EE29BBEB3DCA81AA29B6DE204F605A2769B84C728A329178A2D0999
4980BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\26C212D9399727259664BDFCA073966E_F9F7D6A7ECE73106D2A8C63168CDA10Dbinary
MD5:B581084564F86E4A4EE9D331CC5CF3BB
SHA256:5D246C84D62EE2F9A49090058D87011EFBA17F044003EB2161C6EF09973D4FA1
4980BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\0ecc50dc-d2a0-4f69-9401-7dfda752da36.c4563777-fd78-4d42-8cc3-a73f3cd8c88b.down_metabinary
MD5:EF296FFB0289AD35C5EEC172CC71C8D1
SHA256:918D06B956632DDE27BB7B5EE526C948FC650A83F9F61FDB2F904BE441D35082
7728Unicorn-36589.exeC:\Users\admin\AppData\Local\Temp\Unicorn-1103.exeexecutable
MD5:FA4AA244016C52B72D16B36A7EC3E467
SHA256:F2C696DCE08E0B64D00E90335F9FCB10A12AE828D2765F2F4B301938CBD22425
7320Unicorn-15135.exeC:\Users\admin\AppData\Local\Temp\Unicorn-20969.exeexecutable
MD5:24E8EB271F4CBE18130A9A133D69F2CC
SHA256:B0C33563366506A1B597585D155AF097AFEECC5C4501D3F4AF3DB9735FF7D3E4
74561 (181).exeC:\Users\admin\AppData\Local\Temp\Unicorn-36589.exeexecutable
MD5:4F7EC616D7FF53060DEADDD86D42ABAA
SHA256:DEF80B93A33AD8E014C0DE5E0E2EDC2C623096B1F71693BD883A2AFA6F4D0E01
74561 (181).exeC:\Users\admin\AppData\Local\Temp\Unicorn-15135.exeexecutable
MD5:C73B9F99BF625D2CE319034917A017F6
SHA256:E60065AA52AABC3AD9A0B4A8ECDBB37BB1220B44F86EAEBB32B3F2C3F56A62EF
4980BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\89a53270-867f-43f6-8afe-bb0287597a9b.up_meta_securebinary
MD5:1D7810BAF19594190AAEA20E2852287C
SHA256:F1C3C6F3CB78ABC839BE95E5F5A4B1E303D1115695BD05CA2160834DBA6E7FC3
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
6
TCP/UDP connections
23
DNS requests
16
Threats
0

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
GET
200
2.19.11.105:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
7768
backgroundTaskHost.exe
GET
200
23.63.118.230:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAUZZSZEml49Gjh0j13P68w%3D
unknown
whitelisted
6544
svchost.exe
GET
200
23.63.118.230:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
4980
BackgroundTransferHost.exe
GET
200
23.63.118.230:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTrjrydRyt%2BApF3GSPypfHBxR5XtQQUs9tIpPmhxdiuNkHMEWNpYim8S8YCEAI5PUjXAkJafLQcAAsO18o%3D
unknown
whitelisted
8868
SIHClient.exe
GET
200
23.219.150.101:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Update%20Secure%20Server%20CA%202.1.crl
unknown
whitelisted
8868
SIHClient.exe
GET
200
23.219.150.101:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Product%20Root%20Certificate%20Authority%202018.crl
unknown
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:137
whitelisted
4.231.128.59:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
2.19.11.105:80
crl.microsoft.com
Elisa Oyj
NL
whitelisted
4
System
192.168.100.255:138
whitelisted
5496
MoUsoCoreWorker.exe
4.231.128.59:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
6544
svchost.exe
40.126.31.2:443
login.live.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
6544
svchost.exe
23.63.118.230:80
ocsp.digicert.com
AKAMAI-AS
DE
whitelisted
3216
svchost.exe
40.113.103.199:443
client.wns.windows.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
7768
backgroundTaskHost.exe
20.223.35.26:443
arc.msn.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
7768
backgroundTaskHost.exe
23.63.118.230:80
ocsp.digicert.com
AKAMAI-AS
DE
whitelisted

DNS requests

Domain
IP
Reputation
google.com
  • 142.250.184.238
whitelisted
settings-win.data.microsoft.com
  • 4.231.128.59
  • 51.124.78.146
whitelisted
crl.microsoft.com
  • 2.19.11.105
  • 2.19.11.120
whitelisted
login.live.com
  • 40.126.31.2
  • 20.190.159.129
  • 40.126.31.73
  • 40.126.31.3
  • 40.126.31.129
  • 20.190.159.0
  • 20.190.159.75
  • 20.190.159.130
whitelisted
ocsp.digicert.com
  • 23.63.118.230
whitelisted
client.wns.windows.com
  • 40.113.103.199
whitelisted
arc.msn.com
  • 20.223.35.26
whitelisted
www.bing.com
  • 23.212.110.146
  • 23.212.110.144
  • 23.212.110.208
  • 23.212.110.139
  • 23.212.110.145
  • 23.212.110.211
  • 23.212.110.147
  • 23.212.110.152
  • 23.212.110.209
whitelisted
slscr.update.microsoft.com
  • 20.109.210.53
whitelisted
www.microsoft.com
  • 23.219.150.101
whitelisted

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
1 (181)