File name:

1 (1215)

Full analysis: https://app.any.run/tasks/20d9f2f8-4a84-4d7c-8465-be8ff76e6ce6
Verdict: Malicious activity
Analysis date: March 24, 2025, 11:01:23
OS: Windows 10 Professional (build: 19045, 64 bit)
Indicators:
MIME: application/vnd.microsoft.portable-executable
File info: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, 3 sections
MD5:

A5832F6A753DADF0F783641E56109EB0

SHA1:

08BA0A6E14FDD8AC6D74A6603AB7EA74F218D2A3

SHA256:

B85D88EF1E9A5A3FE6125A95DAF7E34FB925D7D0B34C5A87F10A95F2F1718F92

SSDEEP:

6144:XIKRw/O0vDyHA5l3vdevoDjr/4D6lvJGBV/Wye5Suk/8SwjwpyAvEhBRqw909vza:X1q2HHA5VvUlDchaVOye5SDx4DxmDsR

ANY.RUN is an interactive service which provides full access to the guest system. Information in this report could be distorted by user actions and is provided for user acknowledgement as it is. ANY.RUN does not guarantee maliciousness or safety of the content.

  • MALICIOUS

    No malicious indicators.

  • SUSPICIOUS

    • Starts itself from another location

      • 1 (1215).exe (PID: 5680)
      • Unicorn-36910.exe (PID: 6004)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-27480.exe (PID: 2100)
      • Unicorn-20870.exe (PID: 6480)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-47412.exe (PID: 4152)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-64569.exe (PID: 632)
      • Unicorn-24326.exe (PID: 2772)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-22087.exe (PID: 3008)
      • Unicorn-32302.exe (PID: 6736)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-23256.exe (PID: 6592)
      • Unicorn-49052.exe (PID: 5064)
      • Unicorn-18426.exe (PID: 6576)
      • Unicorn-59074.exe (PID: 5008)
      • Unicorn-42546.exe (PID: 2316)
      • Unicorn-18788.exe (PID: 2108)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-7827.exe (PID: 1312)
      • Unicorn-47185.exe (PID: 4008)
      • Unicorn-8919.exe (PID: 7036)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-57294.exe (PID: 1168)
      • Unicorn-13116.exe (PID: 1096)
      • Unicorn-51164.exe (PID: 6228)
      • Unicorn-53402.exe (PID: 4188)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-4372.exe (PID: 1852)
      • Unicorn-24238.exe (PID: 4620)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-62893.exe (PID: 7208)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-59214.exe (PID: 7312)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-47656.exe (PID: 7272)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-42110.exe (PID: 5084)
      • Unicorn-54938.exe (PID: 7352)
      • Unicorn-54865.exe (PID: 7320)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-36594.exe (PID: 7772)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-13328.exe (PID: 7328)
      • Unicorn-56033.exe (PID: 7544)
      • Unicorn-36904.exe (PID: 7552)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-32663.exe (PID: 7336)
      • Unicorn-2208.exe (PID: 7396)
      • Unicorn-62701.exe (PID: 7260)
      • Unicorn-29365.exe (PID: 7364)
      • Unicorn-3729.exe (PID: 7800)
      • Unicorn-30708.exe (PID: 8096)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-13433.exe (PID: 8152)
      • Unicorn-61077.exe (PID: 7632)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-59244.exe (PID: 7764)
      • Unicorn-20834.exe (PID: 7980)
      • Unicorn-30900.exe (PID: 8044)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-38322.exe (PID: 8104)
      • Unicorn-65161.exe (PID: 7644)
      • Unicorn-14180.exe (PID: 8120)
      • Unicorn-48773.exe (PID: 8272)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-5924.exe (PID: 8736)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-17622.exe (PID: 8760)
      • Unicorn-29121.exe (PID: 7912)
      • Unicorn-7460.exe (PID: 8636)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-25982.exe (PID: 8668)
      • Unicorn-12255.exe (PID: 8136)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-6039.exe (PID: 8360)
      • Unicorn-5628.exe (PID: 7884)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-2339.exe (PID: 8256)
      • Unicorn-23330.exe (PID: 8300)
      • Unicorn-38440.exe (PID: 7836)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-34044.exe (PID: 7944)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-22806.exe (PID: 7508)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-38161.exe (PID: 9104)
      • Unicorn-14371.exe (PID: 9544)
      • Unicorn-15436.exe (PID: 9272)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-51918.exe (PID: 8316)
      • Unicorn-37620.exe (PID: 8324)
      • Unicorn-15842.exe (PID: 9356)
      • Unicorn-58824.exe (PID: 2340)
      • Unicorn-39488.exe (PID: 6712)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-64689.exe (PID: 9720)
      • Unicorn-8036.exe (PID: 9404)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-11683.exe (PID: 8676)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-34150.exe (PID: 8656)
      • Unicorn-4113.exe (PID: 7924)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-2887.exe (PID: 9600)
      • Unicorn-21632.exe (PID: 9632)
      • Unicorn-3428.exe (PID: 10936)
      • Unicorn-3428.exe (PID: 10952)
      • Unicorn-35407.exe (PID: 10188)
      • Unicorn-19800.exe (PID: 8336)
      • Unicorn-4247.exe (PID: 1116)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-4247.exe (PID: 10712)
      • Unicorn-42288.exe (PID: 11100)
      • Unicorn-56557.exe (PID: 8352)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-10709.exe (PID: 9924)
      • Unicorn-19084.exe (PID: 9168)
      • Unicorn-63564.exe (PID: 10872)
      • Unicorn-10479.exe (PID: 9496)
      • Unicorn-34726.exe (PID: 8984)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-54814.exe (PID: 10364)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-13219.exe (PID: 9160)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-27652.exe (PID: 11740)
      • Unicorn-40621.exe (PID: 12140)
      • Unicorn-42178.exe (PID: 10428)
      • Unicorn-15156.exe (PID: 9948)
      • Unicorn-18560.exe (PID: 9128)
      • Unicorn-12305.exe (PID: 12776)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-48602.exe (PID: 8448)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-25296.exe (PID: 12040)
      • Unicorn-13589.exe (PID: 10416)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-3428.exe (PID: 10944)
      • Unicorn-48410.exe (PID: 8472)
      • Unicorn-7364.exe (PID: 14044)
      • Unicorn-10171.exe (PID: 14004)
      • Unicorn-11772.exe (PID: 8416)
      • Unicorn-32348.exe (PID: 9456)
      • Unicorn-20427.exe (PID: 8976)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-64437.exe (PID: 12816)
      • Unicorn-46101.exe (PID: 10828)
      • Unicorn-35774.exe (PID: 8284)
      • Unicorn-4129.exe (PID: 12016)
      • Unicorn-32486.exe (PID: 12172)
      • Unicorn-60418.exe (PID: 9304)
      • Unicorn-1664.exe (PID: 9832)

    • Executable content was dropped or overwritten

      • Unicorn-36910.exe (PID: 6004)
      • 1 (1215).exe (PID: 5680)
      • Unicorn-27480.exe (PID: 2100)
      • Unicorn-20870.exe (PID: 6480)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-64569.exe (PID: 632)
      • Unicorn-24326.exe (PID: 2772)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-47412.exe (PID: 4152)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-32302.exe (PID: 6736)
      • Unicorn-23256.exe (PID: 6592)
      • Unicorn-49052.exe (PID: 5064)
      • Unicorn-18426.exe (PID: 6576)
      • Unicorn-59074.exe (PID: 5008)
      • Unicorn-42546.exe (PID: 2316)
      • Unicorn-7827.exe (PID: 1312)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-18788.exe (PID: 2108)
      • Unicorn-8919.exe (PID: 7036)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-53402.exe (PID: 4188)
      • Unicorn-22087.exe (PID: 3008)
      • Unicorn-51164.exe (PID: 6228)
      • Unicorn-57294.exe (PID: 1168)
      • Unicorn-13116.exe (PID: 1096)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-24238.exe (PID: 4620)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-4372.exe (PID: 1852)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-62893.exe (PID: 7208)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-59214.exe (PID: 7312)
      • Unicorn-47656.exe (PID: 7272)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-42110.exe (PID: 5084)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-29365.exe (PID: 7364)
      • Unicorn-54938.exe (PID: 7352)
      • Unicorn-47185.exe (PID: 4008)
      • Unicorn-36904.exe (PID: 7552)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-36594.exe (PID: 7772)
      • Unicorn-56033.exe (PID: 7544)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-13328.exe (PID: 7328)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-32663.exe (PID: 7336)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-65161.exe (PID: 7644)
      • Unicorn-30708.exe (PID: 8096)
      • Unicorn-62701.exe (PID: 7260)
      • Unicorn-13433.exe (PID: 8152)
      • Unicorn-61077.exe (PID: 7632)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-20834.exe (PID: 7980)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-30900.exe (PID: 8044)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-38322.exe (PID: 8104)
      • Unicorn-48773.exe (PID: 8272)
      • Unicorn-14180.exe (PID: 8120)
      • Unicorn-5924.exe (PID: 8736)
      • Unicorn-17622.exe (PID: 8760)
      • Unicorn-29121.exe (PID: 7912)
      • Unicorn-7460.exe (PID: 8636)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-25982.exe (PID: 8668)
      • Unicorn-12255.exe (PID: 8136)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-22806.exe (PID: 7508)
      • Unicorn-6039.exe (PID: 8360)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-2339.exe (PID: 8256)
      • Unicorn-38440.exe (PID: 7836)
      • Unicorn-23330.exe (PID: 8300)
      • Unicorn-38161.exe (PID: 9104)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-34044.exe (PID: 7944)
      • Unicorn-15436.exe (PID: 9272)
      • Unicorn-2208.exe (PID: 7396)
      • Unicorn-14371.exe (PID: 9544)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-51918.exe (PID: 8316)
      • Unicorn-64689.exe (PID: 9720)
      • Unicorn-15842.exe (PID: 9356)
      • Unicorn-37620.exe (PID: 8324)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-58824.exe (PID: 2340)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-39488.exe (PID: 6712)
      • Unicorn-8036.exe (PID: 9404)
      • Unicorn-11683.exe (PID: 8676)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-34150.exe (PID: 8656)
      • Unicorn-4113.exe (PID: 7924)
      • Unicorn-11772.exe (PID: 8416)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-3428.exe (PID: 10936)
      • Unicorn-35407.exe (PID: 10188)
      • Unicorn-21632.exe (PID: 9632)
      • Unicorn-32348.exe (PID: 9456)
      • Unicorn-3428.exe (PID: 10952)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-19800.exe (PID: 8336)
      • Unicorn-4247.exe (PID: 10712)
      • Unicorn-42288.exe (PID: 11100)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-3729.exe (PID: 7800)
      • Unicorn-56557.exe (PID: 8352)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-10709.exe (PID: 9924)
      • Unicorn-10479.exe (PID: 9496)
      • Unicorn-63564.exe (PID: 10872)
      • Unicorn-54814.exe (PID: 10364)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-34726.exe (PID: 8984)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-13219.exe (PID: 9160)
      • Unicorn-27652.exe (PID: 11740)
      • Unicorn-40621.exe (PID: 12140)
      • Unicorn-42178.exe (PID: 10428)
      • Unicorn-15156.exe (PID: 9948)
      • Unicorn-18560.exe (PID: 9128)
      • Unicorn-12305.exe (PID: 12776)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-4247.exe (PID: 1116)
      • Unicorn-25296.exe (PID: 12040)
      • Unicorn-13589.exe (PID: 10416)
      • Unicorn-48602.exe (PID: 8448)
      • Unicorn-52138.exe (PID: 11908)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-3428.exe (PID: 10944)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-48410.exe (PID: 8472)
      • Unicorn-60418.exe (PID: 9304)
      • Unicorn-7364.exe (PID: 14044)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-20427.exe (PID: 8976)
      • Unicorn-10171.exe (PID: 14004)
      • Unicorn-56380.exe (PID: 10796)
      • Unicorn-46101.exe (PID: 10828)
      • Unicorn-19084.exe (PID: 9168)
      • Unicorn-35774.exe (PID: 8284)
      • Unicorn-64437.exe (PID: 12816)
      • Unicorn-11132.exe (PID: 12572)
      • Unicorn-48986.exe (PID: 8400)
      • Unicorn-32486.exe (PID: 12172)
      • Unicorn-59244.exe (PID: 7764)
      • Unicorn-4129.exe (PID: 12016)
      • Unicorn-58934.exe (PID: 8080)
      • Unicorn-1664.exe (PID: 9832)
      • Unicorn-45544.exe (PID: 12400)
      • Unicorn-31440.exe (PID: 10600)
      • Unicorn-3428.exe (PID: 10928)
      • Unicorn-32858.exe (PID: 10128)
      • Unicorn-26174.exe (PID: 9096)
      • Unicorn-10761.exe (PID: 11700)
      • Unicorn-19906.exe (PID: 12552)
      • Unicorn-46084.exe (PID: 9464)
      • Unicorn-52244.exe (PID: 12212)
      • Unicorn-56188.exe (PID: 10652)
      • Unicorn-22703.exe (PID: 13136)
      • Unicorn-30798.exe (PID: 10780)
      • Unicorn-57917.exe (PID: 12180)
      • Unicorn-18442.exe (PID: 10668)
      • Unicorn-50730.exe (PID: 10376)
      • Unicorn-17752.exe (PID: 11820)
      • Unicorn-33029.exe (PID: 7564)
      • Unicorn-52244.exe (PID: 12204)
      • Unicorn-38538.exe (PID: 13192)
      • Unicorn-20532.exe (PID: 11104)
      • Unicorn-11285.exe (PID: 10092)
      • Unicorn-22811.exe (PID: 7672)
      • Unicorn-58005.exe (PID: 9512)
      • Unicorn-31715.exe (PID: 11156)
      • Unicorn-2580.exe (PID: 12644)
      • Unicorn-45089.exe (PID: 9740)
      • Unicorn-16012.exe (PID: 11080)
      • Unicorn-34622.exe (PID: 8220)
      • Unicorn-38508.exe (PID: 12280)
      • Unicorn-36589.exe (PID: 8892)
      • Unicorn-28561.exe (PID: 12004)
      • Unicorn-11653.exe (PID: 8456)
      • Unicorn-57502.exe (PID: 8612)
      • Unicorn-49002.exe (PID: 10196)
      • Unicorn-39032.exe (PID: 12032)
      • Unicorn-51704.exe (PID: 9640)
      • Unicorn-17163.exe (PID: 11004)
      • Unicorn-4373.exe (PID: 11244)
      • Unicorn-47969.exe (PID: 10520)
      • Unicorn-49365.exe (PID: 10216)
      • Unicorn-57118.exe (PID: 11328)
      • Unicorn-64880.exe (PID: 12372)
      • Unicorn-33131.exe (PID: 10500)
      • Unicorn-32873.exe (PID: 9480)
      • Unicorn-19698.exe (PID: 11916)
      • Unicorn-10147.exe (PID: 11072)
      • Unicorn-41720.exe (PID: 8596)
      • Unicorn-2785.exe (PID: 11580)
      • Unicorn-33394.exe (PID: 9972)
      • Unicorn-15265.exe (PID: 12480)
      • Unicorn-17202.exe (PID: 10708)
      • Unicorn-54741.exe (PID: 10832)
      • Unicorn-45281.exe (PID: 10232)
      • Unicorn-28891.exe (PID: 9956)
      • Unicorn-12608.exe (PID: 12296)
      • Unicorn-3428.exe (PID: 10960)
      • Unicorn-27775.exe (PID: 9568)
      • Unicorn-2899.exe (PID: 13988)
      • Unicorn-7268.exe (PID: 11120)
      • Unicorn-1067.exe (PID: 12568)
      • Unicorn-14363.exe (PID: 10972)
      • Unicorn-16315.exe (PID: 12636)
      • Unicorn-54865.exe (PID: 7320)
      • Unicorn-12416.exe (PID: 6872)
      • Unicorn-21736.exe (PID: 12360)
      • Unicorn-42038.exe (PID: 12808)
      • Unicorn-46624.exe (PID: 11792)
      • Unicorn-53060.exe (PID: 11232)
      • Unicorn-2887.exe (PID: 9600)
      • Unicorn-34726.exe (PID: 8992)
      • Unicorn-51218.exe (PID: 10908)
      • Unicorn-5628.exe (PID: 7884)
      • Unicorn-60730.exe (PID: 11844)
      • Unicorn-2629.exe (PID: 9240)
      • Unicorn-14168.exe (PID: 15840)
      • Unicorn-16803.exe (PID: 15828)
      • Unicorn-356.exe (PID: 10208)
      • Unicorn-4167.exe (PID: 15848)
      • Unicorn-50870.exe (PID: 9068)
      • Unicorn-32650.exe (PID: 8408)
      • Unicorn-9379.exe (PID: 10804)
      • Unicorn-133.exe (PID: 8580)

    • Executes application which crashes

      • Unicorn-63485.exe (PID: 8688)
      • Unicorn-28582.exe (PID: 10164)
      • Unicorn-34651.exe (PID: 11044)
      • Unicorn-245.exe (PID: 13168)

  • INFO

    • Checks supported languages

      • 1 (1215).exe (PID: 5680)
      • Unicorn-27480.exe (PID: 2100)
      • Unicorn-20870.exe (PID: 6480)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-64569.exe (PID: 632)
      • Unicorn-24326.exe (PID: 2772)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-22087.exe (PID: 3008)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-36910.exe (PID: 6004)
      • Unicorn-23256.exe (PID: 6592)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-59074.exe (PID: 5008)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-18426.exe (PID: 6576)
      • Unicorn-18788.exe (PID: 2108)
      • Unicorn-7827.exe (PID: 1312)
      • Unicorn-47185.exe (PID: 4008)
      • Unicorn-8919.exe (PID: 7036)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-53402.exe (PID: 4188)
      • Unicorn-13116.exe (PID: 1096)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-24238.exe (PID: 4620)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-42110.exe (PID: 5084)
      • Unicorn-62893.exe (PID: 7208)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-54938.exe (PID: 7352)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-54865.exe (PID: 7320)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-2208.exe (PID: 7396)
      • Unicorn-59214.exe (PID: 7312)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-56033.exe (PID: 7544)
      • Unicorn-36904.exe (PID: 7552)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-22806.exe (PID: 7508)
      • Unicorn-22811.exe (PID: 7672)
      • Unicorn-61077.exe (PID: 7632)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-36594.exe (PID: 7772)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-5628.exe (PID: 7884)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-29121.exe (PID: 7912)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-4113.exe (PID: 7924)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-14180.exe (PID: 8120)
      • Unicorn-12255.exe (PID: 8136)
      • Unicorn-34622.exe (PID: 8220)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-35774.exe (PID: 8284)
      • Unicorn-37620.exe (PID: 8324)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-51918.exe (PID: 8316)
      • Unicorn-48986.exe (PID: 8400)
      • Unicorn-17622.exe (PID: 8760)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-11653.exe (PID: 8456)
      • Unicorn-48410.exe (PID: 8472)
      • Unicorn-48602.exe (PID: 8448)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-133.exe (PID: 8580)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-41720.exe (PID: 8596)
      • Unicorn-57502.exe (PID: 8612)
      • Unicorn-61394.exe (PID: 8648)
      • Unicorn-25982.exe (PID: 8668)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-11683.exe (PID: 8676)
      • Unicorn-50294.exe (PID: 8812)
      • Unicorn-20427.exe (PID: 8976)
      • Unicorn-50870.exe (PID: 9068)
      • Unicorn-18560.exe (PID: 9128)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-36589.exe (PID: 8892)
      • Unicorn-13219.exe (PID: 9160)
      • Unicorn-7460.exe (PID: 8636)
      • Unicorn-2629.exe (PID: 9240)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-34726.exe (PID: 8992)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-38161.exe (PID: 9104)
      • Unicorn-15436.exe (PID: 9272)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-19084.exe (PID: 9168)
      • Unicorn-15842.exe (PID: 9356)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-32873.exe (PID: 9480)
      • Unicorn-60418.exe (PID: 9304)
      • Unicorn-58005.exe (PID: 9512)
      • Unicorn-27775.exe (PID: 9568)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-51704.exe (PID: 9640)
      • Unicorn-14371.exe (PID: 9544)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-2887.exe (PID: 9600)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-21632.exe (PID: 9632)
      • Unicorn-10479.exe (PID: 9496)
      • Unicorn-1664.exe (PID: 9832)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-10709.exe (PID: 9924)
      • Unicorn-28891.exe (PID: 9956)
      • Unicorn-42428.exe (PID: 10016)
      • Unicorn-356.exe (PID: 10208)
      • Unicorn-23346.exe (PID: 10116)
      • Unicorn-39488.exe (PID: 6712)
      • Unicorn-64689.exe (PID: 9720)
      • Unicorn-45281.exe (PID: 10232)
      • Unicorn-49002.exe (PID: 10196)
      • Unicorn-12416.exe (PID: 6872)
      • Unicorn-49365.exe (PID: 10216)
      • Unicorn-36920.exe (PID: 9744)
      • Unicorn-45089.exe (PID: 9740)
      • Unicorn-43958.exe (PID: 10104)
      • Unicorn-11285.exe (PID: 10092)
      • Unicorn-42998.exe (PID: 10064)
      • Unicorn-32858.exe (PID: 10128)
      • Unicorn-57362.exe (PID: 10152)
      • Unicorn-59370.exe (PID: 10336)
      • Unicorn-54814.exe (PID: 10364)
      • Unicorn-37326.exe (PID: 10268)
      • Unicorn-13589.exe (PID: 10416)
      • Unicorn-41986.exe (PID: 10436)
      • Unicorn-28665.exe (PID: 10452)
      • Unicorn-22910.exe (PID: 10484)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-33131.exe (PID: 10500)
      • Unicorn-61704.exe (PID: 10528)
      • Unicorn-31440.exe (PID: 10600)
      • Unicorn-54741.exe (PID: 10832)
      • Unicorn-9379.exe (PID: 10804)
      • Unicorn-63564.exe (PID: 10872)
      • Unicorn-3428.exe (PID: 10944)
      • Unicorn-3428.exe (PID: 10952)
      • Unicorn-3428.exe (PID: 10920)
      • Unicorn-3428.exe (PID: 10928)
      • Unicorn-3428.exe (PID: 10936)
      • Unicorn-4247.exe (PID: 1116)
      • Unicorn-4247.exe (PID: 10712)
      • Unicorn-16971.exe (PID: 11012)
      • Unicorn-44792.exe (PID: 10816)
      • Unicorn-16012.exe (PID: 11080)
      • Unicorn-7268.exe (PID: 11120)
      • Unicorn-53060.exe (PID: 11232)
      • Unicorn-4373.exe (PID: 11244)
      • Unicorn-42288.exe (PID: 11100)
      • Unicorn-14363.exe (PID: 10972)
      • Unicorn-23656.exe (PID: 10984)
      • Unicorn-17163.exe (PID: 11004)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-34651.exe (PID: 11044)
      • Unicorn-61949.exe (PID: 11060)
      • Unicorn-26500.exe (PID: 10884)
      • Unicorn-56188.exe (PID: 10652)
      • Unicorn-62126.exe (PID: 10764)
      • Unicorn-10147.exe (PID: 11072)
      • Unicorn-46101.exe (PID: 10828)
      • Unicorn-17163.exe (PID: 11260)
      • Unicorn-57118.exe (PID: 11328)
      • Unicorn-33730.exe (PID: 10660)
      • Unicorn-51218.exe (PID: 10908)
      • Unicorn-38198.exe (PID: 10612)
      • Unicorn-31182.exe (PID: 11688)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-10761.exe (PID: 11700)
      • Unicorn-20532.exe (PID: 11104)
      • Unicorn-31715.exe (PID: 11156)
      • Unicorn-30798.exe (PID: 10780)
      • Unicorn-61358.exe (PID: 2968)
      • Unicorn-26639.exe (PID: 4932)
      • Unicorn-60730.exe (PID: 11844)
      • Unicorn-47518.exe (PID: 11748)
      • Unicorn-25296.exe (PID: 12040)
      • Unicorn-39032.exe (PID: 12032)
      • Unicorn-52138.exe (PID: 11908)
      • Unicorn-17752.exe (PID: 11820)
      • Unicorn-52244.exe (PID: 12204)
      • Unicorn-52244.exe (PID: 12196)
      • Unicorn-40621.exe (PID: 12140)
      • Unicorn-57917.exe (PID: 12180)
      • Unicorn-49444.exe (PID: 12164)
      • Unicorn-32486.exe (PID: 12172)
      • Unicorn-16744.exe (PID: 12116)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-44010.exe (PID: 11964)
      • Unicorn-28561.exe (PID: 12004)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-555.exe (PID: 12508)
      • Unicorn-20850.exe (PID: 11980)
      • Unicorn-4129.exe (PID: 12016)
      • Unicorn-38508.exe (PID: 12280)
      • Unicorn-12608.exe (PID: 12296)
      • Unicorn-19698.exe (PID: 11916)
      • Unicorn-64437.exe (PID: 12816)
      • Unicorn-28450.exe (PID: 12824)
      • Unicorn-1067.exe (PID: 12568)
      • Unicorn-43124.exe (PID: 12724)
      • Unicorn-9700.exe (PID: 12544)
      • Unicorn-36020.exe (PID: 12496)
      • Unicorn-51145.exe (PID: 12428)
      • Unicorn-44713.exe (PID: 12800)
      • Unicorn-16315.exe (PID: 12636)
      • Unicorn-2580.exe (PID: 12644)
      • Unicorn-31955.exe (PID: 12156)
      • Unicorn-42038.exe (PID: 12808)
      • Unicorn-33272.exe (PID: 13208)
      • Unicorn-44208.exe (PID: 13200)
      • Unicorn-44208.exe (PID: 13216)
      • Unicorn-58500.exe (PID: 12692)
      • Unicorn-59076.exe (PID: 13124)
      • Unicorn-12497.exe (PID: 13160)
      • Unicorn-38538.exe (PID: 13192)
      • Unicorn-53530.exe (PID: 13112)
      • Unicorn-22703.exe (PID: 13136)
      • Unicorn-37002.exe (PID: 12736)
      • Unicorn-57806.exe (PID: 13084)
      • Unicorn-4713.exe (PID: 13076)
      • Unicorn-39550.exe (PID: 13008)
      • Unicorn-27163.exe (PID: 7148)
      • Unicorn-33029.exe (PID: 11904)
      • Unicorn-45544.exe (PID: 12400)
      • Unicorn-5208.exe (PID: 12416)
      • Unicorn-12144.exe (PID: 13976)
      • Unicorn-52873.exe (PID: 12348)
      • Unicorn-10171.exe (PID: 14004)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-7364.exe (PID: 14044)
      • Unicorn-2899.exe (PID: 13988)
      • Unicorn-22615.exe (PID: 14056)
      • Unicorn-12040.exe (PID: 13900)
      • Unicorn-24676.exe (PID: 13876)
      • Unicorn-28952.exe (PID: 13852)
      • Unicorn-4478.exe (PID: 13892)
      • Unicorn-52873.exe (PID: 12312)
      • Unicorn-11656.exe (PID: 13748)
      • Unicorn-5487.exe (PID: 13504)
      • Unicorn-60665.exe (PID: 13756)
      • Unicorn-19078.exe (PID: 13764)
      • Unicorn-14152.exe (PID: 13512)
      • Unicorn-29493.exe (PID: 13612)
      • Unicorn-12061.exe (PID: 13840)
      • Unicorn-52873.exe (PID: 6108)
      • Unicorn-7640.exe (PID: 13928)
      • Unicorn-9373.exe (PID: 13420)
      • Unicorn-17350.exe (PID: 13464)
      • Unicorn-46322.exe (PID: 13428)
      • Unicorn-64880.exe (PID: 12380)
      • Unicorn-59150.exe (PID: 13584)
      • Unicorn-48413.exe (PID: 13860)
      • Unicorn-39773.exe (PID: 14352)
      • Unicorn-63701.exe (PID: 14536)
      • Unicorn-38096.exe (PID: 15428)
      • Unicorn-16803.exe (PID: 15828)
      • Unicorn-4167.exe (PID: 15848)
      • Unicorn-14256.exe (PID: 15408)
      • Unicorn-17676.exe (PID: 15400)
      • Unicorn-48657.exe (PID: 5188)
      • Unicorn-38782.exe (PID: 5044)
      • Unicorn-41766.exe (PID: 14396)
      • Unicorn-29340.exe (PID: 15352)
      • Unicorn-51013.exe (PID: 5428)

    • The sample compiled with chinese language support

      • 1 (1215).exe (PID: 5680)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-36910.exe (PID: 6004)
      • Unicorn-27480.exe (PID: 2100)
      • Unicorn-20870.exe (PID: 6480)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-64569.exe (PID: 632)
      • Unicorn-24326.exe (PID: 2772)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-32302.exe (PID: 6736)
      • Unicorn-47412.exe (PID: 4152)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-23256.exe (PID: 6592)
      • Unicorn-49052.exe (PID: 5064)
      • Unicorn-18426.exe (PID: 6576)
      • Unicorn-59074.exe (PID: 5008)
      • Unicorn-42546.exe (PID: 2316)
      • Unicorn-7827.exe (PID: 1312)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-18788.exe (PID: 2108)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-8919.exe (PID: 7036)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-22087.exe (PID: 3008)
      • Unicorn-53402.exe (PID: 4188)
      • Unicorn-13116.exe (PID: 1096)
      • Unicorn-57294.exe (PID: 1168)
      • Unicorn-51164.exe (PID: 6228)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-4372.exe (PID: 1852)
      • Unicorn-24238.exe (PID: 4620)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-62893.exe (PID: 7208)
      • Unicorn-59214.exe (PID: 7312)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-47656.exe (PID: 7272)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-42110.exe (PID: 5084)
      • Unicorn-29365.exe (PID: 7364)
      • Unicorn-54938.exe (PID: 7352)
      • Unicorn-47185.exe (PID: 4008)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-36594.exe (PID: 7772)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-56033.exe (PID: 7544)
      • Unicorn-13328.exe (PID: 7328)
      • Unicorn-36904.exe (PID: 7552)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-32663.exe (PID: 7336)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-65161.exe (PID: 7644)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-30708.exe (PID: 8096)
      • Unicorn-62701.exe (PID: 7260)
      • Unicorn-13433.exe (PID: 8152)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-61077.exe (PID: 7632)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-20834.exe (PID: 7980)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-30900.exe (PID: 8044)
      • Unicorn-38322.exe (PID: 8104)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-48773.exe (PID: 8272)
      • Unicorn-14180.exe (PID: 8120)
      • Unicorn-5924.exe (PID: 8736)
      • Unicorn-17622.exe (PID: 8760)
      • Unicorn-29121.exe (PID: 7912)
      • Unicorn-7460.exe (PID: 8636)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-25982.exe (PID: 8668)
      • Unicorn-12255.exe (PID: 8136)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-6039.exe (PID: 8360)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-22806.exe (PID: 7508)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-38440.exe (PID: 7836)
      • Unicorn-2339.exe (PID: 8256)
      • Unicorn-23330.exe (PID: 8300)
      • Unicorn-38161.exe (PID: 9104)
      • Unicorn-34044.exe (PID: 7944)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-15436.exe (PID: 9272)
      • Unicorn-2208.exe (PID: 7396)
      • Unicorn-14371.exe (PID: 9544)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-51918.exe (PID: 8316)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-37620.exe (PID: 8324)
      • Unicorn-15842.exe (PID: 9356)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-39488.exe (PID: 6712)
      • Unicorn-64689.exe (PID: 9720)
      • Unicorn-58824.exe (PID: 2340)
      • Unicorn-8036.exe (PID: 9404)
      • Unicorn-11683.exe (PID: 8676)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-11772.exe (PID: 8416)
      • Unicorn-4113.exe (PID: 7924)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-34150.exe (PID: 8656)
      • Unicorn-32348.exe (PID: 9456)
      • Unicorn-35407.exe (PID: 10188)
      • Unicorn-21632.exe (PID: 9632)
      • Unicorn-3428.exe (PID: 10952)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-3428.exe (PID: 10936)
      • Unicorn-19800.exe (PID: 8336)
      • Unicorn-4247.exe (PID: 10712)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-3729.exe (PID: 7800)
      • Unicorn-10709.exe (PID: 9924)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-56557.exe (PID: 8352)
      • Unicorn-10479.exe (PID: 9496)
      • Unicorn-54814.exe (PID: 10364)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-63564.exe (PID: 10872)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-34726.exe (PID: 8984)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-13219.exe (PID: 9160)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-27652.exe (PID: 11740)
      • Unicorn-40621.exe (PID: 12140)
      • Unicorn-42178.exe (PID: 10428)
      • Unicorn-15156.exe (PID: 9948)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-12305.exe (PID: 12776)
      • Unicorn-18560.exe (PID: 9128)
      • Unicorn-42288.exe (PID: 11100)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-4247.exe (PID: 1116)
      • Unicorn-25296.exe (PID: 12040)
      • Unicorn-13589.exe (PID: 10416)
      • Unicorn-48602.exe (PID: 8448)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-52138.exe (PID: 11908)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-3428.exe (PID: 10944)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-48410.exe (PID: 8472)
      • Unicorn-60418.exe (PID: 9304)
      • Unicorn-7364.exe (PID: 14044)
      • Unicorn-10171.exe (PID: 14004)
      • Unicorn-20427.exe (PID: 8976)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-56380.exe (PID: 10796)
      • Unicorn-46101.exe (PID: 10828)
      • Unicorn-19084.exe (PID: 9168)
      • Unicorn-35774.exe (PID: 8284)
      • Unicorn-64437.exe (PID: 12816)
      • Unicorn-59244.exe (PID: 7764)
      • Unicorn-32486.exe (PID: 12172)
      • Unicorn-4129.exe (PID: 12016)
      • Unicorn-58934.exe (PID: 8080)
      • Unicorn-1664.exe (PID: 9832)
      • Unicorn-48986.exe (PID: 8400)
      • Unicorn-11132.exe (PID: 12572)
      • Unicorn-3428.exe (PID: 10928)
      • Unicorn-26174.exe (PID: 9096)
      • Unicorn-32858.exe (PID: 10128)
      • Unicorn-19906.exe (PID: 12552)
      • Unicorn-46084.exe (PID: 9464)
      • Unicorn-52244.exe (PID: 12212)
      • Unicorn-45544.exe (PID: 12400)
      • Unicorn-31440.exe (PID: 10600)
      • Unicorn-10761.exe (PID: 11700)
      • Unicorn-56188.exe (PID: 10652)
      • Unicorn-18442.exe (PID: 10668)
      • Unicorn-38538.exe (PID: 13192)
      • Unicorn-22703.exe (PID: 13136)
      • Unicorn-30798.exe (PID: 10780)
      • Unicorn-57917.exe (PID: 12180)
      • Unicorn-50730.exe (PID: 10376)
      • Unicorn-33029.exe (PID: 7564)
      • Unicorn-52244.exe (PID: 12204)
      • Unicorn-45089.exe (PID: 9740)
      • Unicorn-22811.exe (PID: 7672)
      • Unicorn-20532.exe (PID: 11104)
      • Unicorn-11285.exe (PID: 10092)
      • Unicorn-16012.exe (PID: 11080)
      • Unicorn-31715.exe (PID: 11156)
      • Unicorn-34622.exe (PID: 8220)
      • Unicorn-2580.exe (PID: 12644)
      • Unicorn-17752.exe (PID: 11820)
      • Unicorn-58005.exe (PID: 9512)
      • Unicorn-49002.exe (PID: 10196)
      • Unicorn-28561.exe (PID: 12004)
      • Unicorn-39032.exe (PID: 12032)
      • Unicorn-51704.exe (PID: 9640)
      • Unicorn-17163.exe (PID: 11004)
      • Unicorn-11653.exe (PID: 8456)
      • Unicorn-38508.exe (PID: 12280)
      • Unicorn-36589.exe (PID: 8892)
      • Unicorn-32873.exe (PID: 9480)
      • Unicorn-4373.exe (PID: 11244)
      • Unicorn-10147.exe (PID: 11072)
      • Unicorn-19698.exe (PID: 11916)
      • Unicorn-47969.exe (PID: 10520)
      • Unicorn-64880.exe (PID: 12372)
      • Unicorn-33131.exe (PID: 10500)
      • Unicorn-57502.exe (PID: 8612)
      • Unicorn-57118.exe (PID: 11328)
      • Unicorn-49365.exe (PID: 10216)
      • Unicorn-15265.exe (PID: 12480)
      • Unicorn-41720.exe (PID: 8596)
      • Unicorn-28891.exe (PID: 9956)
      • Unicorn-2785.exe (PID: 11580)
      • Unicorn-45281.exe (PID: 10232)
      • Unicorn-17202.exe (PID: 10708)
      • Unicorn-33394.exe (PID: 9972)
      • Unicorn-54741.exe (PID: 10832)
      • Unicorn-12608.exe (PID: 12296)
      • Unicorn-2899.exe (PID: 13988)
      • Unicorn-3428.exe (PID: 10960)
      • Unicorn-27775.exe (PID: 9568)
      • Unicorn-54865.exe (PID: 7320)
      • Unicorn-7268.exe (PID: 11120)
      • Unicorn-1067.exe (PID: 12568)
      • Unicorn-16315.exe (PID: 12636)
      • Unicorn-14363.exe (PID: 10972)
      • Unicorn-53060.exe (PID: 11232)
      • Unicorn-12416.exe (PID: 6872)
      • Unicorn-60730.exe (PID: 11844)
      • Unicorn-21736.exe (PID: 12360)
      • Unicorn-46624.exe (PID: 11792)
      • Unicorn-2887.exe (PID: 9600)
      • Unicorn-34726.exe (PID: 8992)
      • Unicorn-51218.exe (PID: 10908)
      • Unicorn-5628.exe (PID: 7884)
      • Unicorn-42038.exe (PID: 12808)
      • Unicorn-2629.exe (PID: 9240)
      • Unicorn-16803.exe (PID: 15828)
      • Unicorn-356.exe (PID: 10208)
      • Unicorn-4167.exe (PID: 15848)
      • Unicorn-32650.exe (PID: 8408)
      • Unicorn-50870.exe (PID: 9068)
      • Unicorn-133.exe (PID: 8580)
      • Unicorn-9379.exe (PID: 10804)
      • Unicorn-14168.exe (PID: 15840)

    • Reads the computer name

      • 1 (1215).exe (PID: 5680)
      • Unicorn-36910.exe (PID: 6004)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-27480.exe (PID: 2100)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-47412.exe (PID: 4152)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-32302.exe (PID: 6736)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-49052.exe (PID: 5064)
      • Unicorn-42546.exe (PID: 2316)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-51164.exe (PID: 6228)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-4372.exe (PID: 1852)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-47656.exe (PID: 7272)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-54865.exe (PID: 7320)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-56033.exe (PID: 7544)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-3729.exe (PID: 7800)
      • Unicorn-62701.exe (PID: 7260)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-13433.exe (PID: 8152)
      • Unicorn-30900.exe (PID: 8044)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-48773.exe (PID: 8272)
      • Unicorn-5924.exe (PID: 8736)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-2339.exe (PID: 8256)
      • Unicorn-38440.exe (PID: 7836)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-34044.exe (PID: 7944)
      • Unicorn-8036.exe (PID: 9404)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-15842.exe (PID: 9356)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-10709.exe (PID: 9924)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-34150.exe (PID: 8656)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-35407.exe (PID: 10188)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-56557.exe (PID: 8352)
      • Unicorn-4247.exe (PID: 1116)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-42288.exe (PID: 11100)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-19084.exe (PID: 9168)
      • Unicorn-4247.exe (PID: 10712)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-42178.exe (PID: 10428)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-13219.exe (PID: 9160)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-52138.exe (PID: 11908)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-46084.exe (PID: 9464)
      • Unicorn-356.exe (PID: 10208)
      • Unicorn-4247.exe (PID: 5056)
      • Unicorn-32858.exe (PID: 10128)
      • Unicorn-22811.exe (PID: 7672)
      • Unicorn-44792.exe (PID: 10816)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-37326.exe (PID: 10268)
      • Unicorn-51704.exe (PID: 9640)
      • Unicorn-57502.exe (PID: 8612)
      • Unicorn-41720.exe (PID: 8596)
      • Unicorn-3428.exe (PID: 10928)
      • Unicorn-30798.exe (PID: 10780)
      • Unicorn-11653.exe (PID: 8456)
      • Unicorn-19906.exe (PID: 12552)
      • Unicorn-34622.exe (PID: 8220)
      • Unicorn-11285.exe (PID: 10092)
      • Unicorn-245.exe (PID: 13168)
      • Unicorn-17163.exe (PID: 11004)
      • Unicorn-50730.exe (PID: 10376)
      • Unicorn-11132.exe (PID: 12572)
      • Unicorn-45089.exe (PID: 9740)
      • Unicorn-16012.exe (PID: 11080)
      • Unicorn-48986.exe (PID: 8400)
      • Unicorn-64437.exe (PID: 12816)
      • Unicorn-50870.exe (PID: 9068)
      • Unicorn-50922.exe (PID: 10844)
      • Unicorn-47969.exe (PID: 10520)
      • Unicorn-2580.exe (PID: 12644)
      • Unicorn-10761.exe (PID: 11700)
      • Unicorn-1664.exe (PID: 9832)
      • Unicorn-49365.exe (PID: 10216)
      • Unicorn-27775.exe (PID: 9568)
      • Unicorn-49002.exe (PID: 10196)
      • Unicorn-45451.exe (PID: 11164)
      • Unicorn-45544.exe (PID: 12400)

    • Create files in a temporary directory

      • Unicorn-36910.exe (PID: 6004)
      • Unicorn-27480.exe (PID: 2100)
      • 1 (1215).exe (PID: 5680)
      • Unicorn-50205.exe (PID: 2244)
      • Unicorn-53661.exe (PID: 4068)
      • Unicorn-47412.exe (PID: 4152)
      • Unicorn-35234.exe (PID: 4380)
      • Unicorn-23256.exe (PID: 6592)
      • Unicorn-59598.exe (PID: 3900)
      • Unicorn-18426.exe (PID: 6576)
      • Unicorn-42546.exe (PID: 2316)
      • Unicorn-64569.exe (PID: 632)
      • Unicorn-2452.exe (PID: 856)
      • Unicorn-10065.exe (PID: 5228)
      • Unicorn-53542.exe (PID: 728)
      • Unicorn-1248.exe (PID: 864)
      • Unicorn-17850.exe (PID: 1672)
      • Unicorn-17850.exe (PID: 2392)
      • Unicorn-24326.exe (PID: 2772)
      • Unicorn-57294.exe (PID: 1168)
      • Unicorn-20870.exe (PID: 6480)
      • Unicorn-13116.exe (PID: 1096)
      • Unicorn-47206.exe (PID: 1012)
      • Unicorn-49052.exe (PID: 5064)
      • Unicorn-22087.exe (PID: 3008)
      • Unicorn-4372.exe (PID: 1852)
      • Unicorn-7827.exe (PID: 1312)
      • Unicorn-64376.exe (PID: 7236)
      • Unicorn-46002.exe (PID: 7192)
      • Unicorn-27953.exe (PID: 5964)
      • Unicorn-4969.exe (PID: 7228)
      • Unicorn-17030.exe (PID: 7252)
      • Unicorn-17227.exe (PID: 7380)
      • Unicorn-51164.exe (PID: 6228)
      • Unicorn-18788.exe (PID: 2108)
      • Unicorn-47656.exe (PID: 7272)
      • Unicorn-59214.exe (PID: 7304)
      • Unicorn-42686.exe (PID: 7372)
      • Unicorn-42110.exe (PID: 5084)
      • Unicorn-47185.exe (PID: 4008)
      • Unicorn-36904.exe (PID: 7552)
      • Unicorn-20538.exe (PID: 5972)
      • Unicorn-59074.exe (PID: 5008)
      • Unicorn-9224.exe (PID: 7292)
      • Unicorn-36594.exe (PID: 7772)
      • Unicorn-32663.exe (PID: 7336)
      • Unicorn-26890.exe (PID: 7516)
      • Unicorn-40294.exe (PID: 7568)
      • Unicorn-30708.exe (PID: 8096)
      • Unicorn-29365.exe (PID: 7364)
      • Unicorn-62701.exe (PID: 7260)
      • Unicorn-24238.exe (PID: 4620)
      • Unicorn-33366.exe (PID: 7284)
      • Unicorn-13433.exe (PID: 8152)
      • Unicorn-60330.exe (PID: 7688)
      • Unicorn-29172.exe (PID: 7752)
      • Unicorn-41638.exe (PID: 7904)
      • Unicorn-62893.exe (PID: 7208)
      • Unicorn-32302.exe (PID: 6736)
      • Unicorn-30900.exe (PID: 8044)
      • Unicorn-52945.exe (PID: 5132)
      • Unicorn-24704.exe (PID: 7816)
      • Unicorn-48773.exe (PID: 8272)
      • Unicorn-59214.exe (PID: 7312)
      • Unicorn-8919.exe (PID: 7036)
      • Unicorn-5924.exe (PID: 8736)
      • Unicorn-53402.exe (PID: 4188)
      • Unicorn-29121.exe (PID: 7912)
      • Unicorn-5561.exe (PID: 9080)
      • Unicorn-12255.exe (PID: 8136)
      • Unicorn-8645.exe (PID: 8512)
      • Unicorn-3080.exe (PID: 7588)
      • Unicorn-11513.exe (PID: 7576)
      • Unicorn-36018.exe (PID: 7616)
      • Unicorn-2836.exe (PID: 8264)
      • Unicorn-38161.exe (PID: 9104)
      • Unicorn-43470.exe (PID: 9260)
      • Unicorn-43174.exe (PID: 4756)
      • Unicorn-54938.exe (PID: 7352)
      • Unicorn-22806.exe (PID: 7508)
      • Unicorn-10937.exe (PID: 7708)
      • Unicorn-2208.exe (PID: 7396)
      • Unicorn-14371.exe (PID: 9544)
      • Unicorn-21306.exe (PID: 7216)
      • Unicorn-50081.exe (PID: 8548)
      • Unicorn-38322.exe (PID: 8104)
      • Unicorn-37620.exe (PID: 8324)
      • Unicorn-64689.exe (PID: 9720)
      • Unicorn-54553.exe (PID: 9312)
      • Unicorn-39488.exe (PID: 6712)
      • Unicorn-35198.exe (PID: 4696)
      • Unicorn-52665.exe (PID: 8308)
      • Unicorn-20834.exe (PID: 7980)
      • Unicorn-4113.exe (PID: 7924)
      • Unicorn-11772.exe (PID: 8416)
      • Unicorn-21632.exe (PID: 9632)
      • Unicorn-32348.exe (PID: 9456)
      • Unicorn-35407.exe (PID: 10188)
      • Unicorn-3428.exe (PID: 10936)
      • Unicorn-14180.exe (PID: 8120)
      • Unicorn-57782.exe (PID: 7988)
      • Unicorn-17622.exe (PID: 8760)
      • Unicorn-57886.exe (PID: 8524)
      • Unicorn-6039.exe (PID: 8360)
      • Unicorn-25982.exe (PID: 8668)
      • Unicorn-55456.exe (PID: 8604)
      • Unicorn-7460.exe (PID: 8636)
      • Unicorn-39910.exe (PID: 7664)
      • Unicorn-56557.exe (PID: 8352)
      • Unicorn-54814.exe (PID: 10364)
      • Unicorn-13407.exe (PID: 9088)
      • Unicorn-17163.exe (PID: 10996)
      • Unicorn-42178.exe (PID: 10428)
      • Unicorn-18560.exe (PID: 9128)
      • Unicorn-4692.exe (PID: 12756)
      • Unicorn-12305.exe (PID: 12776)
      • Unicorn-2339.exe (PID: 8256)
      • Unicorn-48602.exe (PID: 8448)
      • Unicorn-36727.exe (PID: 9656)
      • Unicorn-28286.exe (PID: 9424)
      • Unicorn-54444.exe (PID: 9432)
      • Unicorn-14009.exe (PID: 8232)
      • Unicorn-37002.exe (PID: 12744)
      • Unicorn-25296.exe (PID: 12040)
      • Unicorn-8741.exe (PID: 11212)
      • Unicorn-35664.exe (PID: 9340)
      • Unicorn-3428.exe (PID: 10944)
      • Unicorn-47658.exe (PID: 9912)
      • Unicorn-11243.exe (PID: 9380)
      • Unicorn-23330.exe (PID: 8300)
      • Unicorn-58904.exe (PID: 10512)
      • Unicorn-65161.exe (PID: 7644)
      • Unicorn-16036.exe (PID: 14028)
      • Unicorn-21771.exe (PID: 9412)
      • Unicorn-34150.exe (PID: 8656)
      • Unicorn-19363.exe (PID: 7876)
      • Unicorn-3729.exe (PID: 7800)
      • Unicorn-35774.exe (PID: 8284)
      • Unicorn-7739.exe (PID: 9728)
      • Unicorn-46101.exe (PID: 10828)

    • Reads security settings of Internet Explorer

      • BackgroundTransferHost.exe (PID: 5332)
      • BackgroundTransferHost.exe (PID: 3272)
      • BackgroundTransferHost.exe (PID: 4408)
      • BackgroundTransferHost.exe (PID: 4436)
      • BackgroundTransferHost.exe (PID: 6760)

    • Creates files or folders in the user directory

      • BackgroundTransferHost.exe (PID: 3272)
      • WerFault.exe (PID: 9748)
      • WerFault.exe (PID: 10592)

    • Checks proxy server information

      • BackgroundTransferHost.exe (PID: 3272)

    • Reads the software policy settings

      • BackgroundTransferHost.exe (PID: 3272)
Find more information about signature artifacts and mapping to MITRE ATT&CK™ MATRIX at the full report
No Malware configuration.

TRiD

.exe | Win32 Executable Microsoft Visual Basic 6 (90.6)
.exe | Win32 Executable (generic) (4.9)
.exe | Generic Win/DOS Executable (2.2)
.exe | DOS Executable Generic (2.2)

EXIF

EXE

MachineType: Intel 386 or later, and compatibles
TimeStamp: 2019:01:19 13:34:56+00:00
ImageFileCharacteristics: No relocs, Executable, No line numbers, No symbols, 32-bit, No debug, Removable run from swap, Net run from swap, Uniprocessor only, Bytes reversed hi
PEType: PE32
LinkerVersion: 6
CodeSize: 176128
InitializedDataSize: 299008
UninitializedDataSize: -
EntryPoint: 0x13d4
OSVersion: 4
ImageVersion: 1
SubsystemVersion: 4
Subsystem: Windows GUI
FileVersionNumber: 1.0.0.0
ProductVersionNumber: 1.0.0.0
FileFlagsMask: 0x003f
FileFlags: (none)
FileOS: Win32
ObjectFileType: Executable application
FileSubtype: -
LanguageCode: Chinese (Simplified)
CharacterSet: Unicode
CompanyName: UEFI
ProductName: Kawaii-Unicorn
FileVersion: 1
ProductVersion: 1
InternalName: Kawaii-Unicorn
OriginalFileName: Kawaii-Unicorn.exe
No data.
screenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshotscreenshot
All screenshots are available in the full report
All screenshots are available in the full report
Total processes
675
Monitored processes
536
Malicious processes
83
Suspicious processes
60

Behavior graph

Click at the process to see the details
start 1 (1215).exe sppextcomobj.exe no specs slui.exe unicorn-36910.exe unicorn-59598.exe unicorn-27480.exe backgroundtransferhost.exe no specs backgroundtransferhost.exe backgroundtransferhost.exe no specs backgroundtransferhost.exe no specs unicorn-20870.exe unicorn-50205.exe unicorn-53542.exe unicorn-47412.exe backgroundtransferhost.exe no specs unicorn-35234.exe unicorn-64569.exe unicorn-24326.exe unicorn-53661.exe unicorn-32302.exe unicorn-22087.exe unicorn-27953.exe unicorn-47206.exe unicorn-23256.exe unicorn-18426.exe unicorn-49052.exe unicorn-2452.exe unicorn-10065.exe unicorn-59074.exe unicorn-18788.exe unicorn-7827.exe unicorn-42546.exe unicorn-8919.exe unicorn-1248.exe unicorn-47185.exe unicorn-17850.exe unicorn-17850.exe unicorn-53402.exe unicorn-13116.exe unicorn-20538.exe unicorn-57294.exe unicorn-51164.exe unicorn-52945.exe unicorn-24238.exe unicorn-4372.exe unicorn-42110.exe unicorn-46002.exe unicorn-62893.exe unicorn-21306.exe unicorn-4969.exe unicorn-64376.exe unicorn-17030.exe unicorn-62701.exe unicorn-47656.exe unicorn-33366.exe unicorn-9224.exe unicorn-59214.exe unicorn-59214.exe unicorn-54865.exe unicorn-13328.exe unicorn-32663.exe unicorn-54938.exe unicorn-29365.exe unicorn-42686.exe unicorn-17227.exe unicorn-2208.exe unicorn-22806.exe unicorn-26890.exe unicorn-56033.exe unicorn-36904.exe unicorn-40294.exe unicorn-11513.exe unicorn-3080.exe unicorn-36018.exe unicorn-61077.exe unicorn-65161.exe unicorn-39910.exe unicorn-22811.exe unicorn-60330.exe unicorn-10937.exe unicorn-29172.exe unicorn-59244.exe unicorn-36594.exe unicorn-3729.exe unicorn-24704.exe unicorn-38440.exe unicorn-19363.exe unicorn-5628.exe unicorn-41638.exe unicorn-29121.exe unicorn-4113.exe unicorn-20834.exe unicorn-57782.exe unicorn-30900.exe unicorn-58934.exe unicorn-30708.exe unicorn-38322.exe unicorn-14180.exe unicorn-13433.exe unicorn-35198.exe unicorn-31114.exe no specs unicorn-60257.exe no specs unicorn-43174.exe unicorn-34044.exe unicorn-12255.exe unicorn-34622.exe unicorn-14009.exe unicorn-2339.exe unicorn-2836.exe unicorn-48773.exe unicorn-35774.exe unicorn-23330.exe unicorn-52665.exe unicorn-51918.exe unicorn-37620.exe unicorn-19800.exe unicorn-56557.exe unicorn-6039.exe unicorn-48986.exe unicorn-32650.exe unicorn-11772.exe unicorn-48602.exe unicorn-11653.exe unicorn-48410.exe unicorn-8645.exe unicorn-57886.exe unicorn-50081.exe unicorn-133.exe unicorn-41720.exe unicorn-55456.exe unicorn-57502.exe unicorn-61394.exe no specs unicorn-34150.exe unicorn-25982.exe unicorn-11683.exe unicorn-63485.exe unicorn-5924.exe unicorn-17622.exe unicorn-4300.exe no specs unicorn-50294.exe no specs unicorn-16723.exe no specs unicorn-36589.exe unicorn-40673.exe no specs unicorn-20427.exe unicorn-34726.exe unicorn-34726.exe unicorn-50870.exe unicorn-5561.exe unicorn-13407.exe unicorn-26174.exe unicorn-38161.exe unicorn-18560.exe unicorn-13219.exe unicorn-19084.exe unicorn-7460.exe unicorn-2629.exe unicorn-43470.exe unicorn-15436.exe unicorn-60418.exe unicorn-54553.exe unicorn-35664.exe unicorn-15842.exe unicorn-11243.exe unicorn-20480.exe no specs unicorn-8036.exe unicorn-21771.exe unicorn-28286.exe unicorn-54444.exe unicorn-32348.exe unicorn-46084.exe unicorn-32873.exe unicorn-10479.exe unicorn-58005.exe unicorn-14371.exe unicorn-27775.exe unicorn-2887.exe unicorn-21632.exe unicorn-51704.exe unicorn-36727.exe unicorn-7739.exe werfault.exe no specs unicorn-1664.exe unicorn-47658.exe unicorn-10709.exe unicorn-15156.exe unicorn-28891.exe unicorn-42428.exe no specs unicorn-42998.exe no specs unicorn-11285.exe unicorn-43958.exe no specs unicorn-23346.exe no specs unicorn-32858.exe unicorn-57362.exe no specs unicorn-28582.exe unicorn-35407.exe unicorn-49002.exe unicorn-356.exe unicorn-49365.exe unicorn-45281.exe unicorn-12416.exe unicorn-58824.exe unicorn-39488.exe unicorn-64689.exe unicorn-36920.exe no specs unicorn-45089.exe unicorn-33394.exe unicorn-37326.exe no specs unicorn-59370.exe no specs unicorn-54814.exe unicorn-50730.exe unicorn-21950.exe no specs unicorn-13589.exe unicorn-42178.exe unicorn-41986.exe no specs unicorn-28665.exe no specs unicorn-22910.exe no specs unicorn-33131.exe unicorn-58904.exe unicorn-47969.exe unicorn-61704.exe no specs unicorn-39800.exe no specs werfault.exe no specs unicorn-31440.exe unicorn-18442.exe unicorn-9379.exe unicorn-44792.exe no specs unicorn-54741.exe unicorn-50922.exe no specs unicorn-63564.exe unicorn-23029.exe no specs unicorn-3428.exe no specs unicorn-3428.exe unicorn-3428.exe unicorn-3428.exe unicorn-3428.exe unicorn-3428.exe unicorn-14363.exe unicorn-23656.exe no specs unicorn-17163.exe unicorn-17163.exe unicorn-16971.exe no specs unicorn-34651.exe unicorn-61949.exe no specs unicorn-10147.exe unicorn-16012.exe unicorn-20532.exe unicorn-7268.exe unicorn-31715.exe unicorn-45451.exe no specs unicorn-8741.exe unicorn-53060.exe unicorn-4373.exe unicorn-17163.exe no specs unicorn-26639.exe no specs unicorn-61358.exe no specs unicorn-26500.exe no specs unicorn-46101.exe unicorn-38198.exe no specs unicorn-56380.exe unicorn-33730.exe no specs unicorn-56188.exe unicorn-17202.exe unicorn-62126.exe no specs unicorn-30798.exe unicorn-51218.exe unicorn-42288.exe unicorn-4247.exe unicorn-4247.exe unicorn-4247.exe no specs unicorn-57118.exe unicorn-2785.exe unicorn-31182.exe no specs unicorn-10761.exe unicorn-27652.exe unicorn-47518.exe no specs unicorn-28250.exe no specs unicorn-46624.exe unicorn-15806.exe no specs unicorn-17752.exe unicorn-60730.exe unicorn-52138.exe unicorn-19698.exe unicorn-44010.exe no specs unicorn-20850.exe no specs unicorn-28561.exe unicorn-4129.exe unicorn-39032.exe unicorn-25296.exe unicorn-16744.exe no specs unicorn-45525.exe no specs unicorn-40621.exe unicorn-31955.exe no specs unicorn-49444.exe no specs unicorn-32486.exe unicorn-57917.exe unicorn-52244.exe no specs unicorn-52244.exe no specs unicorn-52244.exe unicorn-52244.exe unicorn-38508.exe unicorn-164.exe no specs unicorn-27163.exe no specs unicorn-33029.exe no specs unicorn-33029.exe unicorn-12608.exe unicorn-52464.exe no specs werfault.exe no specs unicorn-21736.exe unicorn-64880.exe unicorn-64880.exe no specs unicorn-64880.exe no specs unicorn-45544.exe unicorn-5208.exe no specs unicorn-51145.exe no specs unicorn-15265.exe unicorn-36020.exe no specs unicorn-555.exe no specs unicorn-32158.exe no specs unicorn-3785.exe no specs unicorn-9700.exe no specs unicorn-19906.exe unicorn-1067.exe unicorn-11132.exe unicorn-16315.exe unicorn-2580.exe unicorn-40872.exe no specs unicorn-58500.exe no specs unicorn-27298.exe no specs unicorn-43124.exe no specs unicorn-37002.exe no specs unicorn-37002.exe unicorn-4692.exe unicorn-12305.exe unicorn-44713.exe no specs unicorn-42038.exe unicorn-64437.exe unicorn-28450.exe no specs unicorn-39550.exe no specs unicorn-64220.exe no specs unicorn-4713.exe no specs unicorn-57806.exe no specs unicorn-53530.exe no specs unicorn-59076.exe no specs unicorn-22703.exe unicorn-22703.exe no specs unicorn-60538.exe no specs unicorn-12497.exe no specs unicorn-245.exe unicorn-38538.exe unicorn-44208.exe no specs unicorn-33272.exe no specs unicorn-44208.exe no specs unicorn-47008.exe no specs unicorn-52873.exe no specs unicorn-52873.exe no specs unicorn-52873.exe no specs unicorn-56276.exe no specs unicorn-56436.exe no specs unicorn-9373.exe no specs unicorn-46322.exe no specs unicorn-17350.exe no specs unicorn-5487.exe no specs unicorn-14152.exe no specs unicorn-55377.exe no specs unicorn-28707.exe no specs unicorn-55642.exe no specs unicorn-22778.exe no specs unicorn-30562.exe no specs unicorn-59150.exe no specs unicorn-29493.exe no specs unicorn-9627.exe no specs unicorn-11293.exe no specs unicorn-27115.exe no specs unicorn-11656.exe no specs unicorn-60665.exe no specs unicorn-19078.exe no specs unicorn-52134.exe no specs unicorn-18620.exe no specs unicorn-61262.exe no specs unicorn-19907.exe no specs unicorn-52305.exe no specs unicorn-20230.exe no specs unicorn-12061.exe no specs unicorn-28952.exe no specs unicorn-48413.exe no specs unicorn-24676.exe no specs unicorn-24676.exe no specs unicorn-4478.exe no specs unicorn-12040.exe no specs unicorn-7640.exe no specs unicorn-48588.exe no specs unicorn-12144.exe no specs unicorn-2899.exe unicorn-24397.exe no specs unicorn-10171.exe unicorn-16036.exe unicorn-7364.exe unicorn-22615.exe no specs unicorn-2907.exe no specs unicorn-14116.exe no specs unicorn-22284.exe no specs unicorn-39773.exe no specs unicorn-37801.exe no specs unicorn-58446.exe no specs unicorn-41766.exe no specs unicorn-58102.exe no specs unicorn-5092.exe no specs unicorn-63701.exe no specs unicorn-44973.exe no specs slui.exe no specs unicorn-27542.exe no specs unicorn-47008.exe no specs unicorn-47008.exe no specs unicorn-47008.exe no specs unicorn-49808.exe no specs unicorn-49808.exe no specs unicorn-30472.exe no specs unicorn-36072.exe no specs unicorn-36072.exe no specs unicorn-36072.exe no specs unicorn-49808.exe no specs unicorn-49808.exe no specs unicorn-49808.exe no specs unicorn-49808.exe no specs unicorn-55673.exe no specs unicorn-41448.exe no specs unicorn-41448.exe no specs unicorn-41448.exe no specs unicorn-33087.exe no specs unicorn-33087.exe no specs unicorn-29340.exe no specs unicorn-37365.exe no specs unicorn-32321.exe no specs unicorn-64201.exe no specs unicorn-34698.exe no specs unicorn-42866.exe no specs unicorn-51205.exe no specs unicorn-38782.exe no specs unicorn-48657.exe no specs unicorn-48657.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-9160.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-51013.exe no specs unicorn-17676.exe no specs unicorn-14256.exe no specs unicorn-27991.exe no specs unicorn-38096.exe no specs unicorn-44641.exe no specs unicorn-32975.exe no specs unicorn-33857.exe no specs werfault.exe no specs unicorn-64660.exe no specs unicorn-36264.exe no specs unicorn-16803.exe no specs unicorn-16803.exe unicorn-14168.exe unicorn-4167.exe unicorn-45725.exe no specs unicorn-32975.exe no specs unicorn-32975.exe no specs unicorn-6213.exe no specs unicorn-36264.exe no specs unicorn-42129.exe no specs unicorn-34396.exe no specs unicorn-24011.exe no specs unicorn-33463.exe no specs unicorn-22528.exe no specs unicorn-28796.exe no specs unicorn-32773.exe no specs unicorn-45725.exe no specs unicorn-1724.exe no specs unicorn-14189.exe no specs unicorn-54817.exe no specs unicorn-34396.exe no specs unicorn-34396.exe no specs unicorn-42970.exe no specs unicorn-45332.exe no specs unicorn-34396.exe no specs unicorn-28796.exe no specs unicorn-34396.exe no specs unicorn-28796.exe no specs unicorn-45332.exe no specs unicorn-48132.exe no specs unicorn-53997.exe no specs unicorn-45332.exe no specs unicorn-36264.exe no specs unicorn-22528.exe no specs unicorn-37547.exe no specs unicorn-22528.exe no specs unicorn-42129.exe no specs unicorn-36264.exe no specs unicorn-22528.exe no specs unicorn-36264.exe no specs unicorn-45332.exe no specs unicorn-33994.exe no specs unicorn-13765.exe no specs unicorn-2187.exe no specs unicorn-44454.exe no specs unicorn-8377.exe no specs unicorn-209.exe no specs unicorn-1812.exe no specs unicorn-468.exe no specs unicorn-33857.exe no specs unicorn-33857.exe no specs unicorn-25191.exe no specs unicorn-5841.exe no specs unicorn-1812.exe no specs unicorn-50681.exe no specs unicorn-39663.exe no specs unicorn-25497.exe no specs unicorn-49092.exe no specs unicorn-12747.exe no specs unicorn-34396.exe no specs unicorn-45332.exe no specs unicorn-50925.exe no specs unicorn-34396.exe no specs unicorn-55009.exe no specs unicorn-33857.exe no specs unicorn-61368.exe no specs unicorn-296.exe no specs unicorn-12747.exe no specs unicorn-21412.exe no specs unicorn-49940.exe no specs unicorn-43229.exe no specs unicorn-55009.exe no specs unicorn-55673.exe no specs unicorn-48132.exe no specs unicorn-30731.exe no specs unicorn-45793.exe no specs unicorn-16996.exe no specs

Process information

PID
CMD
Path
Indicators
Parent process
632C:\Users\admin\AppData\Local\Temp\Unicorn-64569.exeC:\Users\admin\AppData\Local\Temp\Unicorn-64569.exe
Unicorn-59598.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-64569.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
728C:\Users\admin\AppData\Local\Temp\Unicorn-53542.exeC:\Users\admin\AppData\Local\Temp\Unicorn-53542.exe
Unicorn-27480.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-53542.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
856C:\Users\admin\AppData\Local\Temp\Unicorn-2452.exeC:\Users\admin\AppData\Local\Temp\Unicorn-2452.exe
Unicorn-50205.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-2452.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
864C:\Users\admin\AppData\Local\Temp\Unicorn-1248.exeC:\Users\admin\AppData\Local\Temp\Unicorn-1248.exe
Unicorn-36910.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-1248.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1012C:\Users\admin\AppData\Local\Temp\Unicorn-47206.exeC:\Users\admin\AppData\Local\Temp\Unicorn-47206.exe
Unicorn-35234.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-47206.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1096C:\Users\admin\AppData\Local\Temp\Unicorn-13116.exeC:\Users\admin\AppData\Local\Temp\Unicorn-13116.exe
Unicorn-35234.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-13116.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1116C:\Users\admin\AppData\Local\Temp\Unicorn-4247.exeC:\Users\admin\AppData\Local\Temp\Unicorn-4247.exe
Unicorn-3729.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-4247.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1168C:\Users\admin\AppData\Local\Temp\Unicorn-57294.exeC:\Users\admin\AppData\Local\Temp\Unicorn-57294.exe
Unicorn-49052.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-57294.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1196C:\Users\admin\AppData\Local\Temp\Unicorn-51205.exeC:\Users\admin\AppData\Local\Temp\Unicorn-51205.exeUnicorn-4247.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-51205.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
1312C:\Users\admin\AppData\Local\Temp\Unicorn-7827.exeC:\Users\admin\AppData\Local\Temp\Unicorn-7827.exe
Unicorn-27480.exe
User:
admin
Company:
UEFI
Integrity Level:
MEDIUM
Version:
1.00
Modules
Images
c:\users\admin\appdata\local\temp\unicorn-7827.exe
c:\windows\system32\ntdll.dll
c:\windows\syswow64\ntdll.dll
c:\windows\system32\wow64.dll
c:\windows\system32\wow64win.dll
c:\windows\system32\wow64cpu.dll
c:\windows\syswow64\kernel32.dll
c:\windows\syswow64\kernelbase.dll
c:\windows\syswow64\apphelp.dll
c:\windows\syswow64\msvbvm60.dll
Total events
16 198
Read events
16 183
Write events
15
Delete events
0

Modification events

(PID) Process:(5332) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(5332) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(5332) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(3272) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(3272) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(3272) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(4408) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
(PID) Process:(4408) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Cookies
Operation:writeName:CachePrefix
Value:
Cookie:
(PID) Process:(4408) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\History
Operation:writeName:CachePrefix
Value:
Visited:
(PID) Process:(4436) BackgroundTransferHost.exeKey:HKEY_CLASSES_ROOT\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.windows.contentdeliverymanager_cw5n1h2txyewy\Internet Settings\Cache\Content
Operation:writeName:CachePrefix
Value:
Executable files
773
Suspicious files
11
Text files
6
Unknown types
0

Dropped files

PID
Process
Filename
Type
3272BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\f7ec3dab-fdeb-472b-9fab-502df53e6c5e.down_data
MD5:
SHA256:
56801 (1215).exeC:\Users\admin\AppData\Local\Temp\Unicorn-27480.exeexecutable
MD5:F9E78400991AD4302D9F1DEF9C06E87A
SHA256:D20E480C3320F97C3E4B2957FA079DDEA5FCFF5128C13191CE0AF38ED82BB1FA
56801 (1215).exeC:\Users\admin\AppData\Local\Temp\Unicorn-36910.exeexecutable
MD5:0247203002AB74032AEA2BF06557AB21
SHA256:3970ED2618B6F7E762EB1169AD9BCDF7F44F8E49C32BF5D542B44076DD8C60A3
56801 (1215).exeC:\Users\admin\AppData\Local\Temp\Unicorn-47412.exeexecutable
MD5:23F2FA13789204767342FCD838F2847A
SHA256:25FC0E18E1D40F9E3EEB2FEDC567DE422A9AB11E976DB4876166FE9CE58536AA
3272BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\26C212D9399727259664BDFCA073966E_F9F7D6A7ECE73106D2A8C63168CDA10Dbinary
MD5:4872BABAF39AA62B8D32695EBB7E9173
SHA256:2EE85DF86EE29BBEB3DCA81AA29B6DE204F605A2769B84C728A329178A2D0999
3272BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\66786ebf-4b06-4fe7-b120-008da4ff9bb5.up_meta_securebinary
MD5:CA413A4E326CC59B07E2D7C3B79D3428
SHA256:555F14F6CA2C327D1231969CF344482D1CBE3BA21AFACCB4438DA0459493879C
6004Unicorn-36910.exeC:\Users\admin\AppData\Local\Temp\Unicorn-50205.exeexecutable
MD5:2C75A6880D13F6F9340BC0D1187861C7
SHA256:2AA0149FEF73692C754F071EFB6083734C98C83E1F1F9E9EE29B05CF490E0365
2100Unicorn-27480.exeC:\Users\admin\AppData\Local\Temp\Unicorn-53542.exeexecutable
MD5:B417F9F7E0E2878DD7E554590B7AC004
SHA256:50CBDDE51C88302A6A6566F16026D6249D21754F370A00F5F9628ECDDE20E7CF
3272BackgroundTransferHost.exeC:\Users\admin\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\AC\BackgroundTransferApi\f7ec3dab-fdeb-472b-9fab-502df53e6c5e.70bb9089-1472-49fd-a1a8-81a96b3a6abb.down_metabinary
MD5:95786E1ADA61A9267D5CB8DA3EFEB43C
SHA256:B25F9066E3B0536D1B62348A299B04619E52CA68CC333232B7C0490A74C0B009
6004Unicorn-36910.exeC:\Users\admin\AppData\Local\Temp\Unicorn-59598.exeexecutable
MD5:2499A6EA401B9A732D3CD559BFF34A75
SHA256:582AFAB802AF751A8860E8D1F8E6F86057A0FA9224C5835AF2672F8A276B009E
Download PCAP, analyze network streams, HTTP content and a lot more at the full report
HTTP(S) requests
8
TCP/UDP connections
27
DNS requests
16
Threats
0

HTTP requests

PID
Process
Method
HTTP Code
IP
URL
CN
Type
Size
Reputation
GET
200
23.48.23.190:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
5496
MoUsoCoreWorker.exe
GET
200
23.48.23.190:80
http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crl
unknown
whitelisted
6544
svchost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
3272
BackgroundTransferHost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTrjrydRyt%2BApF3GSPypfHBxR5XtQQUs9tIpPmhxdiuNkHMEWNpYim8S8YCEAI5PUjXAkJafLQcAAsO18o%3D
unknown
whitelisted
6544
svchost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSAUQYBMq2awn1Rh6Doh%2FsBYgFV7gQUA95QNVbRTLtm8KPiGxvDl7I90VUCEAJ0LqoXyo4hxxe7H%2Fz9DKA%3D
unknown
whitelisted
536
backgroundTaskHost.exe
GET
200
184.30.131.245:80
http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAUZZSZEml49Gjh0j13P68w%3D
unknown
whitelisted
7936
SIHClient.exe
GET
200
2.23.181.156:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Product%20Root%20Certificate%20Authority%202018.crl
unknown
whitelisted
7936
SIHClient.exe
GET
200
2.23.181.156:80
http://www.microsoft.com/pkiops/crl/Microsoft%20ECC%20Update%20Secure%20Server%20CA%202.1.crl
unknown
whitelisted
Download PCAP, analyze network streams, HTTP content and a lot more at the full report

Connections

PID
Process
IP
Domain
ASN
CN
Reputation
4
System
192.168.100.255:137
whitelisted
40.127.240.158:443
MICROSOFT-CORP-MSN-AS-BLOCK
IE
unknown
2104
svchost.exe
40.127.240.158:443
MICROSOFT-CORP-MSN-AS-BLOCK
IE
unknown
5496
MoUsoCoreWorker.exe
23.48.23.190:80
crl.microsoft.com
Akamai International B.V.
DE
whitelisted
23.48.23.190:80
crl.microsoft.com
Akamai International B.V.
DE
whitelisted
5496
MoUsoCoreWorker.exe
40.127.240.158:443
MICROSOFT-CORP-MSN-AS-BLOCK
IE
unknown
4
System
192.168.100.255:138
whitelisted
2112
svchost.exe
51.104.136.2:443
settings-win.data.microsoft.com
MICROSOFT-CORP-MSN-AS-BLOCK
IE
whitelisted
3216
svchost.exe
40.115.3.253:443
client.wns.windows.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted
6544
svchost.exe
40.126.32.68:443
login.live.com
MICROSOFT-CORP-MSN-AS-BLOCK
NL
whitelisted

DNS requests

Domain
IP
Reputation
google.com
  • 142.250.185.142
whitelisted
crl.microsoft.com
  • 23.48.23.190
  • 23.48.23.141
  • 23.48.23.147
  • 23.48.23.143
  • 23.48.23.176
  • 23.48.23.173
  • 23.48.23.177
  • 23.48.23.158
  • 23.48.23.180
whitelisted
settings-win.data.microsoft.com
  • 51.104.136.2
  • 4.231.128.59
whitelisted
client.wns.windows.com
  • 40.115.3.253
whitelisted
login.live.com
  • 40.126.32.68
  • 20.190.160.128
  • 40.126.32.133
  • 20.190.160.66
  • 20.190.160.67
  • 20.190.160.64
  • 20.190.160.17
  • 40.126.32.74
whitelisted
ocsp.digicert.com
  • 184.30.131.245
whitelisted
arc.msn.com
  • 20.199.58.43
whitelisted
www.bing.com
  • 2.16.204.153
  • 2.16.204.155
  • 2.16.204.158
  • 2.16.204.161
  • 2.16.204.134
  • 2.16.204.157
  • 2.16.204.160
  • 2.16.204.132
  • 2.16.204.156
whitelisted
slscr.update.microsoft.com
  • 20.12.23.50
whitelisted
www.microsoft.com
  • 2.23.181.156
whitelisted

Threats

No threats detected
No debug info
Interactive malware hunting service ANY.RUN
© 2017-2025 ANY.RUN ALL RIGHTS RESERVED
ANY.RUN
Reports
1 (1215)