Cuckoo Sandbox

File c33722dc7ab60d8f_unicorn-51916.exe

Summary
Download Resubmit sample

Size	468.0KB
Type	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
MD5	`331fbd7d1cd2e8d17ccda96d5b23bee9`
SHA1	`2811c2d8850318d107762ef411c5717983e30c72`
SHA256	`c33722dc7ab60d8fef932bc8aa3b9d88f09a68eb60df92cc42c23c735161cad9`
SHA512	`e1f7872f04241c38823e8c1796968ae65152ec7662ba73fd06c63691754c96794494ac4d2d1677681fd12a154b63632b3a7eecbeb87be9a257363b94fb1070c2`
CRC32	`888815DA`
ssdeep	`None`
Yara	SEH__vba - (no description)

Score

This file is very suspicious, with a score of 10.0 out of 10!

Please notice: The scoring system is currently still in development and should be considered an alpha feature.

Autosubmit

Parent_Task_ID:6098504

Feedback

Expecting different results? Send us this analysis and we will inspect it. Click here

Information on Execution

Analysis

Category	Started	Completed	Duration	Routing	Logs
FILE	March 17, 2025, 11:24 a.m.	March 17, 2025, 11:32 a.m.	477 seconds	internet	Show Analyzer Log Show Cuckoo Log

Analyzer Log

2025-03-14 16:22:22,030 [analyzer] DEBUG: Starting analyzer from: C:\tmpk4d6bl
2025-03-14 16:22:22,078 [analyzer] DEBUG: Pipe server name: \??\PIPE\LLJVywCyxUxttsOrLRyaG
2025-03-14 16:22:22,078 [analyzer] DEBUG: Log pipe server name: \??\PIPE\RJKNRDmaTNthFMmSDutpsnlTSMiupr
2025-03-14 16:22:22,078 [analyzer] DEBUG: No analysis package specified, trying to detect it automagically.
2025-03-14 16:22:22,108 [analyzer] INFO: Automatically selected analysis package "exe"
2025-03-14 16:22:22,640 [analyzer] DEBUG: Started auxiliary module Curtain
2025-03-14 16:22:22,640 [analyzer] DEBUG: Started auxiliary module DbgView
2025-03-14 16:22:23,358 [analyzer] DEBUG: Started auxiliary module Disguise
2025-03-14 16:22:23,578 [analyzer] DEBUG: Loaded monitor into process with pid 512
2025-03-14 16:22:23,578 [analyzer] DEBUG: Started auxiliary module DumpTLSMasterSecrets
2025-03-14 16:22:23,578 [analyzer] DEBUG: Started auxiliary module Human
2025-03-14 16:22:23,578 [analyzer] DEBUG: Started auxiliary module InstallCertificate
2025-03-14 16:22:23,578 [analyzer] DEBUG: Started auxiliary module Reboot
2025-03-14 16:22:23,687 [analyzer] DEBUG: Started auxiliary module RecentFiles
2025-03-14 16:22:23,687 [analyzer] DEBUG: Started auxiliary module Screenshots
2025-03-14 16:22:23,687 [analyzer] DEBUG: Started auxiliary module Sysmon
2025-03-14 16:22:23,687 [analyzer] DEBUG: Started auxiliary module LoadZer0m0n
2025-03-14 16:22:23,953 [lib.api.process] INFO: Successfully executed process from path u'C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\c33722dc7ab60d8f_unicorn-51916.exe' with arguments '' and pid 2388
2025-03-14 16:22:24,233 [analyzer] DEBUG: Loaded monitor into process with pid 2388
2025-03-14 16:22:27,312 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38138.exe
2025-03-14 16:22:27,453 [analyzer] INFO: Injected into process with pid 2808 and name u'Unicorn-38138.exe'
2025-03-14 16:22:27,640 [analyzer] DEBUG: Loaded monitor into process with pid 2808
2025-03-14 16:22:30,750 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16732.exe
2025-03-14 16:22:30,812 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54043.exe
2025-03-14 16:22:31,092 [analyzer] INFO: Injected into process with pid 1904 and name u'Unicorn-16732.exe'
2025-03-14 16:22:31,092 [analyzer] INFO: Injected into process with pid 1504 and name u'Unicorn-54043.exe'
2025-03-14 16:22:31,265 [analyzer] DEBUG: Loaded monitor into process with pid 1504
2025-03-14 16:22:31,280 [analyzer] DEBUG: Loaded monitor into process with pid 1904
2025-03-14 16:22:34,437 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24490.exe
2025-03-14 16:22:34,467 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55216.exe
2025-03-14 16:22:34,562 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1831.exe
2025-03-14 16:22:34,608 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49549.exe
2025-03-14 16:22:34,703 [analyzer] INFO: Injected into process with pid 2508 and name u'Unicorn-55216.exe'
2025-03-14 16:22:34,703 [analyzer] INFO: Injected into process with pid 2724 and name u'Unicorn-24490.exe'
2025-03-14 16:22:34,733 [analyzer] INFO: Injected into process with pid 2352 and name u'Unicorn-1831.exe'
2025-03-14 16:22:34,765 [analyzer] INFO: Injected into process with pid 2644 and name u'Unicorn-49549.exe'
2025-03-14 16:22:34,875 [analyzer] DEBUG: Loaded monitor into process with pid 2508
2025-03-14 16:22:34,890 [analyzer] DEBUG: Loaded monitor into process with pid 2724
2025-03-14 16:22:34,921 [analyzer] DEBUG: Loaded monitor into process with pid 2352
2025-03-14 16:22:34,921 [analyzer] DEBUG: Loaded monitor into process with pid 2644
2025-03-14 16:22:38,187 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58890.exe
2025-03-14 16:22:38,280 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46446.exe
2025-03-14 16:22:38,328 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42362.exe
2025-03-14 16:22:38,390 [analyzer] INFO: Injected into process with pid 2260 and name u'Unicorn-58890.exe'
2025-03-14 16:22:38,467 [analyzer] INFO: Injected into process with pid 2184 and name u'Unicorn-42362.exe'
2025-03-14 16:22:38,483 [analyzer] INFO: Injected into process with pid 2884 and name u'Unicorn-46446.exe'
2025-03-14 16:22:38,483 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21676.exe
2025-03-14 16:22:38,608 [analyzer] DEBUG: Loaded monitor into process with pid 2260
2025-03-14 16:22:38,687 [analyzer] INFO: Injected into process with pid 2484 and name u'Unicorn-21676.exe'
2025-03-14 16:22:38,703 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58698.exe
2025-03-14 16:22:38,780 [analyzer] DEBUG: Loaded monitor into process with pid 2884
2025-03-14 16:22:38,842 [analyzer] DEBUG: Loaded monitor into process with pid 2184
2025-03-14 16:22:38,905 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14136.exe
2025-03-14 16:22:38,983 [analyzer] INFO: Injected into process with pid 2620 and name u'Unicorn-58698.exe'
2025-03-14 16:22:39,046 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8027.exe
2025-03-14 16:22:39,078 [analyzer] INFO: Injected into process with pid 2428 and name u'Unicorn-14136.exe'
2025-03-14 16:22:39,187 [analyzer] DEBUG: Loaded monitor into process with pid 2484
2025-03-14 16:22:39,203 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8682.exe
2025-03-14 16:22:39,265 [analyzer] INFO: Injected into process with pid 1320 and name u'Unicorn-8027.exe'
2025-03-14 16:22:39,467 [analyzer] DEBUG: Loaded monitor into process with pid 2620
2025-03-14 16:22:39,467 [analyzer] INFO: Injected into process with pid 3000 and name u'Unicorn-8682.exe'
2025-03-14 16:22:39,483 [analyzer] DEBUG: Loaded monitor into process with pid 2428
2025-03-14 16:22:39,875 [analyzer] DEBUG: Loaded monitor into process with pid 1320
2025-03-14 16:22:39,875 [analyzer] DEBUG: Loaded monitor into process with pid 3000
2025-03-14 16:22:41,780 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35118.exe
2025-03-14 16:22:41,890 [analyzer] INFO: Injected into process with pid 3116 and name u'Unicorn-35118.exe'
2025-03-14 16:22:42,062 [analyzer] DEBUG: Loaded monitor into process with pid 3116
2025-03-14 16:22:42,108 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25580.exe
2025-03-14 16:22:42,375 [analyzer] INFO: Injected into process with pid 3168 and name u'Unicorn-25580.exe'
2025-03-14 16:22:42,578 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13690.exe
2025-03-14 16:22:42,671 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21304.exe
2025-03-14 16:22:42,671 [analyzer] DEBUG: Loaded monitor into process with pid 3168
2025-03-14 16:22:42,717 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23996.exe
2025-03-14 16:22:42,765 [analyzer] INFO: Injected into process with pid 3212 and name u'Unicorn-13690.exe'
2025-03-14 16:22:42,842 [analyzer] INFO: Injected into process with pid 3252 and name u'Unicorn-23996.exe'
2025-03-14 16:22:42,967 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45808.exe
2025-03-14 16:22:43,155 [analyzer] INFO: Injected into process with pid 3236 and name u'Unicorn-21304.exe'
2025-03-14 16:22:43,155 [analyzer] DEBUG: Loaded monitor into process with pid 3212
2025-03-14 16:22:43,280 [analyzer] INFO: Injected into process with pid 3316 and name u'Unicorn-45808.exe'
2025-03-14 16:22:43,280 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40162.exe
2025-03-14 16:22:43,328 [analyzer] DEBUG: Loaded monitor into process with pid 3252
2025-03-14 16:22:43,342 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8044.exe
2025-03-14 16:22:43,342 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18979.exe
2025-03-14 16:22:43,437 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15658.exe
2025-03-14 16:22:43,562 [analyzer] INFO: Injected into process with pid 3372 and name u'Unicorn-40162.exe'
2025-03-14 16:22:43,578 [analyzer] DEBUG: Loaded monitor into process with pid 3236
2025-03-14 16:22:43,578 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14074.exe
2025-03-14 16:22:43,780 [analyzer] INFO: Injected into process with pid 3388 and name u'Unicorn-8044.exe'
2025-03-14 16:22:43,780 [analyzer] INFO: Injected into process with pid 3448 and name u'Unicorn-15658.exe'
2025-03-14 16:22:43,780 [analyzer] INFO: Injected into process with pid 3380 and name u'Unicorn-18979.exe'
2025-03-14 16:22:43,796 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39970.exe
2025-03-14 16:22:43,796 [analyzer] DEBUG: Loaded monitor into process with pid 3316
2025-03-14 16:22:43,967 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5251.exe
2025-03-14 16:22:44,030 [analyzer] INFO: Injected into process with pid 3516 and name u'Unicorn-14074.exe'
2025-03-14 16:22:44,062 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38600.exe
2025-03-14 16:22:44,062 [analyzer] INFO: Injected into process with pid 3556 and name u'Unicorn-39970.exe'
2025-03-14 16:22:44,217 [analyzer] DEBUG: Loaded monitor into process with pid 3448
2025-03-14 16:22:44,265 [analyzer] DEBUG: Loaded monitor into process with pid 3388
2025-03-14 16:22:44,265 [analyzer] DEBUG: Loaded monitor into process with pid 3380
2025-03-14 16:22:44,280 [analyzer] INFO: Injected into process with pid 3616 and name u'Unicorn-5251.exe'
2025-03-14 16:22:44,296 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5470.exe
2025-03-14 16:22:44,328 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56974.exe
2025-03-14 16:22:44,328 [analyzer] DEBUG: Loaded monitor into process with pid 3372
2025-03-14 16:22:44,375 [analyzer] INFO: Injected into process with pid 3660 and name u'Unicorn-38600.exe'
2025-03-14 16:22:44,467 [analyzer] INFO: Injected into process with pid 3716 and name u'Unicorn-5470.exe'
2025-03-14 16:22:44,500 [analyzer] INFO: Injected into process with pid 3740 and name u'Unicorn-56974.exe'
2025-03-14 16:22:44,671 [analyzer] DEBUG: Loaded monitor into process with pid 3556
2025-03-14 16:22:44,842 [analyzer] DEBUG: Loaded monitor into process with pid 3516
2025-03-14 16:22:44,842 [analyzer] DEBUG: Loaded monitor into process with pid 3616
2025-03-14 16:22:45,187 [analyzer] DEBUG: Loaded monitor into process with pid 3716
2025-03-14 16:22:45,187 [analyzer] DEBUG: Loaded monitor into process with pid 3740
2025-03-14 16:22:45,233 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18564.exe
2025-03-14 16:22:45,265 [analyzer] DEBUG: Loaded monitor into process with pid 3660
2025-03-14 16:22:45,437 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62097.exe
2025-03-14 16:22:45,483 [analyzer] INFO: Injected into process with pid 3840 and name u'Unicorn-18564.exe'
2025-03-14 16:22:45,608 [analyzer] INFO: Injected into process with pid 3876 and name u'Unicorn-62097.exe'
2025-03-14 16:22:45,733 [analyzer] DEBUG: Loaded monitor into process with pid 3840
2025-03-14 16:22:45,828 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32570.exe
2025-03-14 16:22:46,092 [analyzer] DEBUG: Loaded monitor into process with pid 3876
2025-03-14 16:22:46,108 [analyzer] INFO: Injected into process with pid 3920 and name u'Unicorn-32570.exe'
2025-03-14 16:22:46,405 [analyzer] DEBUG: Loaded monitor into process with pid 3920
2025-03-14 16:22:46,578 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23586.exe
2025-03-14 16:22:46,812 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37038.exe
2025-03-14 16:22:46,828 [analyzer] INFO: Injected into process with pid 3980 and name u'Unicorn-23586.exe'
2025-03-14 16:22:47,108 [analyzer] INFO: Injected into process with pid 4016 and name u'Unicorn-37038.exe'
2025-03-14 16:22:47,265 [analyzer] DEBUG: Loaded monitor into process with pid 3980
2025-03-14 16:22:47,375 [analyzer] DEBUG: Loaded monitor into process with pid 4016
2025-03-14 16:22:47,421 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36222.exe
2025-03-14 16:22:47,530 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43836.exe
2025-03-14 16:22:48,453 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26922.exe
2025-03-14 16:22:48,483 [analyzer] INFO: Injected into process with pid 4076 and name u'Unicorn-43836.exe'
2025-03-14 16:22:48,483 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17578.exe
2025-03-14 16:22:48,562 [analyzer] INFO: Injected into process with pid 4068 and name u'Unicorn-36222.exe'
2025-03-14 16:22:48,717 [analyzer] INFO: Injected into process with pid 3232 and name u'Unicorn-26922.exe'
2025-03-14 16:22:48,780 [analyzer] INFO: Injected into process with pid 3268 and name u'Unicorn-17578.exe'
2025-03-14 16:22:48,858 [analyzer] DEBUG: Loaded monitor into process with pid 4076
2025-03-14 16:22:48,875 [analyzer] DEBUG: Loaded monitor into process with pid 4068
2025-03-14 16:22:49,203 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39128.exe
2025-03-14 16:22:49,250 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58994.exe
2025-03-14 16:22:49,296 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38382.exe
2025-03-14 16:22:49,375 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30214.exe
2025-03-14 16:22:49,483 [analyzer] DEBUG: Loaded monitor into process with pid 3232
2025-03-14 16:22:49,500 [analyzer] INFO: Injected into process with pid 3528 and name u'Unicorn-58994.exe'
2025-03-14 16:22:49,530 [analyzer] DEBUG: Loaded monitor into process with pid 3268
2025-03-14 16:22:49,530 [analyzer] INFO: Injected into process with pid 3504 and name u'Unicorn-39128.exe'
2025-03-14 16:22:49,546 [analyzer] INFO: Injected into process with pid 3628 and name u'Unicorn-38382.exe'
2025-03-14 16:22:49,625 [analyzer] INFO: Injected into process with pid 3696 and name u'Unicorn-30214.exe'
2025-03-14 16:22:49,750 [analyzer] DEBUG: Loaded monitor into process with pid 3528
2025-03-14 16:22:49,765 [analyzer] DEBUG: Loaded monitor into process with pid 3504
2025-03-14 16:22:49,780 [analyzer] DEBUG: Loaded monitor into process with pid 3628
2025-03-14 16:22:49,796 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32059.exe
2025-03-14 16:22:49,890 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19807.exe
2025-03-14 16:22:49,937 [analyzer] DEBUG: Loaded monitor into process with pid 3696
2025-03-14 16:22:49,967 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17770.exe
2025-03-14 16:22:50,062 [analyzer] INFO: Injected into process with pid 3112 and name u'Unicorn-32059.exe'
2025-03-14 16:22:50,265 [analyzer] INFO: Injected into process with pid 3996 and name u'Unicorn-19807.exe'
2025-03-14 16:22:50,280 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16400.exe
2025-03-14 16:22:50,421 [analyzer] DEBUG: Loaded monitor into process with pid 3112
2025-03-14 16:22:50,421 [analyzer] INFO: Injected into process with pid 4048 and name u'Unicorn-17770.exe'
2025-03-14 16:22:50,625 [analyzer] INFO: Injected into process with pid 3284 and name u'Unicorn-16400.exe'
2025-03-14 16:22:50,640 [analyzer] DEBUG: Loaded monitor into process with pid 3996
2025-03-14 16:22:50,655 [analyzer] DEBUG: Loaded monitor into process with pid 4048
2025-03-14 16:22:51,000 [analyzer] DEBUG: Loaded monitor into process with pid 3284
2025-03-14 16:22:51,453 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41842.exe
2025-03-14 16:22:51,562 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37012.exe
2025-03-14 16:22:51,625 [analyzer] INFO: Injected into process with pid 3588 and name u'Unicorn-41842.exe'
2025-03-14 16:22:51,671 [analyzer] INFO: Injected into process with pid 2692 and name u'Unicorn-37012.exe'
2025-03-14 16:22:51,750 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36912.exe
2025-03-14 16:22:52,062 [analyzer] INFO: Injected into process with pid 4000 and name u'Unicorn-36912.exe'
2025-03-14 16:22:52,108 [analyzer] DEBUG: Loaded monitor into process with pid 2692
2025-03-14 16:22:52,171 [analyzer] DEBUG: Loaded monitor into process with pid 3588
2025-03-14 16:22:52,217 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25336.exe
2025-03-14 16:22:52,328 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26519.exe
2025-03-14 16:22:52,500 [analyzer] DEBUG: Loaded monitor into process with pid 4000
2025-03-14 16:22:52,983 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49648.exe
2025-03-14 16:22:53,092 [analyzer] INFO: Injected into process with pid 3440 and name u'Unicorn-25336.exe'
2025-03-14 16:22:53,155 [analyzer] INFO: Injected into process with pid 3732 and name u'Unicorn-26519.exe'
2025-03-14 16:22:53,203 [analyzer] INFO: Injected into process with pid 3968 and name u'Unicorn-49648.exe'
2025-03-14 16:22:53,328 [analyzer] DEBUG: Loaded monitor into process with pid 3440
2025-03-14 16:22:53,358 [analyzer] DEBUG: Loaded monitor into process with pid 3732
2025-03-14 16:22:53,437 [analyzer] DEBUG: Loaded monitor into process with pid 3968
2025-03-14 16:22:53,515 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10872.exe
2025-03-14 16:22:53,562 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17914.exe
2025-03-14 16:22:53,780 [analyzer] INFO: Injected into process with pid 3952 and name u'Unicorn-10872.exe'
2025-03-14 16:22:53,780 [analyzer] INFO: Injected into process with pid 1448 and name u'Unicorn-17914.exe'
2025-03-14 16:22:54,046 [analyzer] DEBUG: Loaded monitor into process with pid 1448
2025-03-14 16:22:54,125 [analyzer] DEBUG: Loaded monitor into process with pid 3952
2025-03-14 16:22:54,140 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54784.exe
2025-03-14 16:22:54,500 [analyzer] INFO: Injected into process with pid 4156 and name u'Unicorn-54784.exe'
2025-03-14 16:22:54,703 [analyzer] DEBUG: Loaded monitor into process with pid 4156
2025-03-14 16:22:54,842 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1215.exe
2025-03-14 16:22:55,092 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38740.exe
2025-03-14 16:22:55,187 [analyzer] INFO: Injected into process with pid 4200 and name u'Unicorn-1215.exe'
2025-03-14 16:22:55,358 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12652.exe
2025-03-14 16:22:55,390 [analyzer] INFO: Injected into process with pid 4232 and name u'Unicorn-38740.exe'
2025-03-14 16:22:55,500 [analyzer] DEBUG: Loaded monitor into process with pid 4200
2025-03-14 16:22:55,515 [analyzer] INFO: Injected into process with pid 4276 and name u'Unicorn-12652.exe'
2025-03-14 16:22:55,625 [analyzer] DEBUG: Loaded monitor into process with pid 4232
2025-03-14 16:22:55,796 [analyzer] DEBUG: Loaded monitor into process with pid 4276
2025-03-14 16:22:56,187 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21360.exe
2025-03-14 16:22:56,328 [analyzer] INFO: Injected into process with pid 4332 and name u'Unicorn-21360.exe'
2025-03-14 16:22:56,530 [analyzer] DEBUG: Loaded monitor into process with pid 4332
2025-03-14 16:22:56,858 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-556.exe
2025-03-14 16:22:56,858 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20422.exe
2025-03-14 16:22:56,967 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8169.exe
2025-03-14 16:22:57,125 [analyzer] INFO: Injected into process with pid 4376 and name u'Unicorn-556.exe'
2025-03-14 16:22:57,140 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29912.exe
2025-03-14 16:22:57,375 [analyzer] INFO: Injected into process with pid 4384 and name u'Unicorn-20422.exe'
2025-03-14 16:22:57,405 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10783.exe
2025-03-14 16:22:57,421 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62585.exe
2025-03-14 16:22:57,467 [analyzer] INFO: Injected into process with pid 4424 and name u'Unicorn-8169.exe'
2025-03-14 16:22:57,640 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18594.exe
2025-03-14 16:22:57,640 [analyzer] DEBUG: Loaded monitor into process with pid 4376
2025-03-14 16:22:57,640 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18860.exe
2025-03-14 16:22:57,655 [analyzer] DEBUG: Loaded monitor into process with pid 4384
2025-03-14 16:22:57,671 [analyzer] DEBUG: Loaded monitor into process with pid 4424
2025-03-14 16:22:57,687 [analyzer] INFO: Injected into process with pid 4480 and name u'Unicorn-29912.exe'
2025-03-14 16:22:57,858 [analyzer] INFO: Injected into process with pid 4516 and name u'Unicorn-62585.exe'
2025-03-14 16:22:57,875 [analyzer] INFO: Injected into process with pid 4508 and name u'Unicorn-10783.exe'
2025-03-14 16:22:57,890 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51267.exe
2025-03-14 16:22:58,015 [analyzer] INFO: Injected into process with pid 4608 and name u'Unicorn-18594.exe'
2025-03-14 16:22:58,030 [analyzer] INFO: Injected into process with pid 4616 and name u'Unicorn-18860.exe'
2025-03-14 16:22:58,062 [analyzer] DEBUG: Loaded monitor into process with pid 4480
2025-03-14 16:22:58,078 [analyzer] DEBUG: Loaded monitor into process with pid 4516
2025-03-14 16:22:58,092 [analyzer] INFO: Injected into process with pid 4672 and name u'Unicorn-51267.exe'
2025-03-14 16:22:58,140 [analyzer] DEBUG: Loaded monitor into process with pid 4508
2025-03-14 16:22:58,217 [analyzer] DEBUG: Loaded monitor into process with pid 4608
2025-03-14 16:22:58,265 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31779.exe
2025-03-14 16:22:58,312 [analyzer] DEBUG: Loaded monitor into process with pid 4616
2025-03-14 16:22:58,358 [analyzer] DEBUG: Loaded monitor into process with pid 4672
2025-03-14 16:22:58,592 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38272.exe
2025-03-14 16:22:58,640 [analyzer] INFO: Injected into process with pid 4772 and name u'Unicorn-31779.exe'
2025-03-14 16:22:58,842 [analyzer] INFO: Injected into process with pid 4812 and name u'Unicorn-38272.exe'
2025-03-14 16:22:58,875 [analyzer] DEBUG: Loaded monitor into process with pid 4772
2025-03-14 16:22:59,062 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62798.exe
2025-03-14 16:22:59,108 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19820.exe
2025-03-14 16:22:59,171 [analyzer] DEBUG: Loaded monitor into process with pid 4812
2025-03-14 16:22:59,312 [analyzer] INFO: Injected into process with pid 4860 and name u'Unicorn-62798.exe'
2025-03-14 16:22:59,467 [analyzer] INFO: Injected into process with pid 4888 and name u'Unicorn-19820.exe'
2025-03-14 16:22:59,546 [analyzer] DEBUG: Loaded monitor into process with pid 4860
2025-03-14 16:22:59,608 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23712.exe
2025-03-14 16:22:59,703 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11459.exe
2025-03-14 16:22:59,750 [analyzer] DEBUG: Loaded monitor into process with pid 4888
2025-03-14 16:22:59,937 [analyzer] INFO: Injected into process with pid 4948 and name u'Unicorn-23712.exe'
2025-03-14 16:22:59,937 [analyzer] INFO: Injected into process with pid 4976 and name u'Unicorn-11459.exe'
2025-03-14 16:22:59,983 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50909.exe
2025-03-14 16:23:00,140 [analyzer] DEBUG: Loaded monitor into process with pid 4976
2025-03-14 16:23:00,203 [analyzer] DEBUG: Loaded monitor into process with pid 4948
2025-03-14 16:23:00,296 [analyzer] INFO: Injected into process with pid 5024 and name u'Unicorn-50909.exe'
2025-03-14 16:23:00,437 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38578.exe
2025-03-14 16:23:00,640 [analyzer] DEBUG: Loaded monitor into process with pid 5024
2025-03-14 16:23:00,671 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50738.exe
2025-03-14 16:23:00,828 [analyzer] INFO: Injected into process with pid 5076 and name u'Unicorn-38578.exe'
2025-03-14 16:23:00,953 [analyzer] INFO: Injected into process with pid 5116 and name u'Unicorn-50738.exe'
2025-03-14 16:23:01,078 [analyzer] DEBUG: Loaded monitor into process with pid 5076
2025-03-14 16:23:01,217 [analyzer] DEBUG: Loaded monitor into process with pid 5116
2025-03-14 16:23:01,375 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33394.exe
2025-03-14 16:23:01,562 [analyzer] INFO: Injected into process with pid 4188 and name u'Unicorn-33394.exe'
2025-03-14 16:23:01,765 [analyzer] DEBUG: Loaded monitor into process with pid 4188
2025-03-14 16:23:02,046 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9274.exe
2025-03-14 16:23:02,265 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19580.exe
2025-03-14 16:23:02,296 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57496.exe
2025-03-14 16:23:02,342 [analyzer] INFO: Injected into process with pid 4272 and name u'Unicorn-9274.exe'
2025-03-14 16:23:02,515 [analyzer] INFO: Injected into process with pid 4344 and name u'Unicorn-19580.exe'
2025-03-14 16:23:02,546 [analyzer] DEBUG: Loaded monitor into process with pid 4272
2025-03-14 16:23:02,562 [analyzer] INFO: Injected into process with pid 4396 and name u'Unicorn-57496.exe'
2025-03-14 16:23:02,671 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27556.exe
2025-03-14 16:23:02,780 [analyzer] DEBUG: Loaded monitor into process with pid 4344
2025-03-14 16:23:02,812 [analyzer] DEBUG: Loaded monitor into process with pid 4396
2025-03-14 16:23:03,092 [analyzer] INFO: Injected into process with pid 4500 and name u'Unicorn-27556.exe'
2025-03-14 16:23:03,125 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15225.exe
2025-03-14 16:23:03,265 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58859.exe
2025-03-14 16:23:03,483 [analyzer] DEBUG: Loaded monitor into process with pid 4500
2025-03-14 16:23:03,625 [analyzer] INFO: Injected into process with pid 2356 and name u'Unicorn-15225.exe'
2025-03-14 16:23:03,687 [analyzer] INFO: Injected into process with pid 4632 and name u'Unicorn-58859.exe'
2025-03-14 16:23:03,703 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43457.exe
2025-03-14 16:23:03,780 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43722.exe
2025-03-14 16:23:03,953 [analyzer] DEBUG: Loaded monitor into process with pid 2356
2025-03-14 16:23:04,000 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6773.exe
2025-03-14 16:23:04,030 [analyzer] DEBUG: Loaded monitor into process with pid 4632
2025-03-14 16:23:04,078 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48937.exe
2025-03-14 16:23:04,203 [analyzer] INFO: Injected into process with pid 1876 and name u'Unicorn-43457.exe'
2025-03-14 16:23:04,233 [analyzer] INFO: Injected into process with pid 4828 and name u'Unicorn-43722.exe'
2025-03-14 16:23:04,390 [analyzer] INFO: Injected into process with pid 4924 and name u'Unicorn-6773.exe'
2025-03-14 16:23:04,405 [analyzer] DEBUG: Loaded monitor into process with pid 1876
2025-03-14 16:23:04,421 [analyzer] DEBUG: Loaded monitor into process with pid 4828
2025-03-14 16:23:04,421 [analyzer] INFO: Injected into process with pid 4988 and name u'Unicorn-48937.exe'
2025-03-14 16:23:04,625 [analyzer] DEBUG: Loaded monitor into process with pid 4924
2025-03-14 16:23:04,655 [analyzer] DEBUG: Loaded monitor into process with pid 4988
2025-03-14 16:23:05,155 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52850.exe
2025-03-14 16:23:05,187 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7825.exe
2025-03-14 16:23:05,233 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20732.exe
2025-03-14 16:23:05,312 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62964.exe
2025-03-14 16:23:05,390 [analyzer] INFO: Injected into process with pid 4256 and name u'Unicorn-52850.exe'
2025-03-14 16:23:05,421 [analyzer] INFO: Injected into process with pid 4316 and name u'Unicorn-7825.exe'
2025-03-14 16:23:05,453 [analyzer] INFO: Injected into process with pid 4404 and name u'Unicorn-20732.exe'
2025-03-14 16:23:05,530 [analyzer] INFO: Injected into process with pid 2472 and name u'Unicorn-62964.exe'
2025-03-14 16:23:05,578 [analyzer] DEBUG: Loaded monitor into process with pid 4256
2025-03-14 16:23:05,625 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21666.exe
2025-03-14 16:23:05,671 [analyzer] DEBUG: Loaded monitor into process with pid 4404
2025-03-14 16:23:05,703 [analyzer] DEBUG: Loaded monitor into process with pid 4316
2025-03-14 16:23:05,750 [analyzer] DEBUG: Loaded monitor into process with pid 2472
2025-03-14 16:23:05,796 [analyzer] INFO: Injected into process with pid 4900 and name u'Unicorn-21666.exe'
2025-03-14 16:23:06,062 [analyzer] DEBUG: Loaded monitor into process with pid 4900
2025-03-14 16:23:07,312 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43867.exe
2025-03-14 16:23:07,328 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7540.exe
2025-03-14 16:23:07,375 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50718.exe
2025-03-14 16:23:07,375 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53518.exe
2025-03-14 16:23:08,671 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18734.exe
2025-03-14 16:23:08,812 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19000.exe
2025-03-14 16:23:08,905 [analyzer] INFO: Injected into process with pid 1808 and name u'Unicorn-7540.exe'
2025-03-14 16:23:08,921 [analyzer] INFO: Injected into process with pid 2860 and name u'Unicorn-43867.exe'
2025-03-14 16:23:08,921 [analyzer] INFO: Injected into process with pid 4108 and name u'Unicorn-43867.exe'
2025-03-14 16:23:08,937 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62533.exe
2025-03-14 16:23:08,983 [analyzer] INFO: Injected into process with pid 4740 and name u'Unicorn-50718.exe'
2025-03-14 16:23:09,015 [analyzer] INFO: Injected into process with pid 4744 and name u'Unicorn-53518.exe'
2025-03-14 16:23:09,125 [analyzer] INFO: Injected into process with pid 5172 and name u'Unicorn-18734.exe'
2025-03-14 16:23:09,250 [analyzer] DEBUG: Loaded monitor into process with pid 1808
2025-03-14 16:23:09,296 [analyzer] DEBUG: Loaded monitor into process with pid 2860
2025-03-14 16:23:09,296 [analyzer] DEBUG: Loaded monitor into process with pid 4108
2025-03-14 16:23:09,296 [analyzer] DEBUG: Loaded monitor into process with pid 4744
2025-03-14 16:23:09,296 [analyzer] DEBUG: Loaded monitor into process with pid 4740
2025-03-14 16:23:09,375 [analyzer] INFO: Injected into process with pid 5232 and name u'Unicorn-62533.exe'
2025-03-14 16:23:09,390 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5740.exe
2025-03-14 16:23:09,405 [analyzer] INFO: Injected into process with pid 5192 and name u'Unicorn-19000.exe'
2025-03-14 16:23:09,530 [analyzer] DEBUG: Loaded monitor into process with pid 5172
2025-03-14 16:23:09,625 [analyzer] INFO: Injected into process with pid 5344 and name u'Unicorn-5740.exe'
2025-03-14 16:23:09,812 [analyzer] DEBUG: Loaded monitor into process with pid 5192
2025-03-14 16:23:09,812 [analyzer] DEBUG: Loaded monitor into process with pid 5232
2025-03-14 16:23:10,046 [analyzer] DEBUG: Loaded monitor into process with pid 5344
2025-03-14 16:23:10,530 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64784.exe
2025-03-14 16:23:12,640 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36169.exe
2025-03-14 16:23:12,640 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44835.exe
2025-03-14 16:23:12,640 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36169.exe
2025-03-14 16:23:12,640 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38970.exe
2025-03-14 16:23:12,640 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25234.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38970.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38970.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38970.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44835.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25234.exe
2025-03-14 16:23:12,655 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25234.exe
2025-03-14 16:23:12,750 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4159.exe
2025-03-14 16:23:12,765 [analyzer] INFO: Injected into process with pid 5420 and name u'Unicorn-64784.exe'
2025-03-14 16:23:12,937 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53823.exe
2025-03-14 16:23:12,953 [analyzer] INFO: Injected into process with pid 5492 and name u'Unicorn-44835.exe'
2025-03-14 16:23:12,967 [analyzer] DEBUG: Loaded monitor into process with pid 5420
2025-03-14 16:23:12,967 [analyzer] INFO: Injected into process with pid 5484 and name u'Unicorn-38970.exe'
2025-03-14 16:23:12,983 [analyzer] INFO: Injected into process with pid 5540 and name u'Unicorn-4159.exe'
2025-03-14 16:23:12,983 [analyzer] INFO: Injected into process with pid 5500 and name u'Unicorn-25234.exe'
2025-03-14 16:23:13,000 [analyzer] INFO: Injected into process with pid 5476 and name u'Unicorn-36169.exe'
2025-03-14 16:23:13,078 [analyzer] INFO: Injected into process with pid 5652 and name u'Unicorn-53823.exe'
2025-03-14 16:23:13,125 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25810.exe
2025-03-14 16:23:13,171 [analyzer] DEBUG: Loaded monitor into process with pid 5492
2025-03-14 16:23:13,233 [analyzer] DEBUG: Loaded monitor into process with pid 5484
2025-03-14 16:23:13,280 [analyzer] DEBUG: Loaded monitor into process with pid 5540
2025-03-14 16:23:13,312 [analyzer] DEBUG: Loaded monitor into process with pid 5476
2025-03-14 16:23:13,342 [analyzer] DEBUG: Loaded monitor into process with pid 5500
2025-03-14 16:23:13,390 [analyzer] DEBUG: Loaded monitor into process with pid 5652
2025-03-14 16:23:13,405 [analyzer] INFO: Injected into process with pid 5716 and name u'Unicorn-25810.exe'
2025-03-14 16:23:13,405 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12811.exe
2025-03-14 16:23:13,562 [analyzer] INFO: Injected into process with pid 5788 and name u'Unicorn-12811.exe'
2025-03-14 16:23:13,592 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29702.exe
2025-03-14 16:23:13,703 [analyzer] DEBUG: Loaded monitor into process with pid 5716
2025-03-14 16:23:13,780 [analyzer] INFO: Injected into process with pid 5828 and name u'Unicorn-29702.exe'
2025-03-14 16:23:13,812 [analyzer] DEBUG: Loaded monitor into process with pid 5788
2025-03-14 16:23:13,983 [analyzer] DEBUG: Loaded monitor into process with pid 5828
2025-03-14 16:23:15,562 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13479.exe
2025-03-14 16:23:15,671 [analyzer] INFO: Injected into process with pid 5888 and name u'Unicorn-13479.exe'
2025-03-14 16:23:15,765 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4450.exe
2025-03-14 16:23:15,765 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20985.exe
2025-03-14 16:23:15,796 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21290.exe
2025-03-14 16:23:15,812 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15425.exe
2025-03-14 16:23:15,828 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52017.exe
2025-03-14 16:23:15,828 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19509.exe
2025-03-14 16:23:15,842 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25375.exe
2025-03-14 16:23:15,921 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5219.exe
2025-03-14 16:23:15,967 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31597.exe
2025-03-14 16:23:16,000 [analyzer] INFO: Injected into process with pid 5928 and name u'Unicorn-4450.exe'
2025-03-14 16:23:16,015 [analyzer] INFO: Injected into process with pid 5952 and name u'Unicorn-21290.exe'
2025-03-14 16:23:16,030 [analyzer] INFO: Injected into process with pid 5936 and name u'Unicorn-20985.exe'
2025-03-14 16:23:16,108 [analyzer] DEBUG: Loaded monitor into process with pid 5888
2025-03-14 16:23:16,108 [analyzer] INFO: Injected into process with pid 6092 and name u'Unicorn-5219.exe'
2025-03-14 16:23:16,125 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26962.exe
2025-03-14 16:23:16,125 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40698.exe
2025-03-14 16:23:16,140 [analyzer] INFO: Injected into process with pid 6016 and name u'Unicorn-19509.exe'
2025-03-14 16:23:16,140 [analyzer] INFO: Injected into process with pid 6048 and name u'Unicorn-25375.exe'
2025-03-14 16:23:16,203 [analyzer] INFO: Injected into process with pid 6000 and name u'Unicorn-52017.exe'
2025-03-14 16:23:16,203 [analyzer] INFO: Injected into process with pid 5976 and name u'Unicorn-15425.exe'
2025-03-14 16:23:16,233 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4645.exe
2025-03-14 16:23:16,358 [analyzer] DEBUG: Loaded monitor into process with pid 5952
2025-03-14 16:23:16,375 [analyzer] DEBUG: Loaded monitor into process with pid 5928
2025-03-14 16:23:16,390 [analyzer] INFO: Injected into process with pid 1088 and name u'Unicorn-31597.exe'
2025-03-14 16:23:16,405 [analyzer] DEBUG: Loaded monitor into process with pid 5936
2025-03-14 16:23:16,608 [analyzer] DEBUG: Loaded monitor into process with pid 6092
2025-03-14 16:23:16,625 [analyzer] INFO: Injected into process with pid 5256 and name u'Unicorn-40698.exe'
2025-03-14 16:23:16,625 [analyzer] DEBUG: Loaded monitor into process with pid 6000
2025-03-14 16:23:16,640 [analyzer] DEBUG: Loaded monitor into process with pid 5976
2025-03-14 16:23:16,640 [analyzer] INFO: Injected into process with pid 5456 and name u'Unicorn-4645.exe'
2025-03-14 16:23:16,655 [analyzer] INFO: Injected into process with pid 5248 and name u'Unicorn-40698.exe'
2025-03-14 16:23:16,655 [analyzer] INFO: Injected into process with pid 5204 and name u'Unicorn-26962.exe'
2025-03-14 16:23:16,655 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36422.exe
2025-03-14 16:23:16,687 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1611.exe
2025-03-14 16:23:16,687 [analyzer] DEBUG: Loaded monitor into process with pid 1088
2025-03-14 16:23:16,780 [analyzer] DEBUG: Loaded monitor into process with pid 6048
2025-03-14 16:23:16,858 [analyzer] DEBUG: Loaded monitor into process with pid 6016
2025-03-14 16:23:16,890 [analyzer] DEBUG: Loaded monitor into process with pid 5456
2025-03-14 16:23:16,921 [analyzer] DEBUG: Loaded monitor into process with pid 5256
2025-03-14 16:23:16,967 [analyzer] DEBUG: Loaded monitor into process with pid 5248
2025-03-14 16:23:16,983 [analyzer] DEBUG: Loaded monitor into process with pid 5204
2025-03-14 16:23:17,078 [analyzer] INFO: Injected into process with pid 5700 and name u'Unicorn-36422.exe'
2025-03-14 16:23:17,078 [analyzer] INFO: Injected into process with pid 5784 and name u'Unicorn-1611.exe'
2025-03-14 16:23:17,140 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42863.exe
2025-03-14 16:23:17,233 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28829.exe
2025-03-14 16:23:17,265 [analyzer] DEBUG: Loaded monitor into process with pid 5784
2025-03-14 16:23:17,312 [analyzer] DEBUG: Loaded monitor into process with pid 5700
2025-03-14 16:23:17,342 [analyzer] INFO: Injected into process with pid 6080 and name u'Unicorn-42863.exe'
2025-03-14 16:23:17,437 [analyzer] INFO: Injected into process with pid 6140 and name u'Unicorn-28829.exe'
2025-03-14 16:23:17,437 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40990.exe
2025-03-14 16:23:17,467 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36906.exe
2025-03-14 16:23:17,608 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51104.exe
2025-03-14 16:23:17,608 [analyzer] DEBUG: Loaded monitor into process with pid 6080
2025-03-14 16:23:17,717 [analyzer] DEBUG: Loaded monitor into process with pid 6140
2025-03-14 16:23:17,733 [analyzer] INFO: Injected into process with pid 4604 and name u'Unicorn-36906.exe'
2025-03-14 16:23:17,733 [analyzer] INFO: Injected into process with pid 6044 and name u'Unicorn-40990.exe'
2025-03-14 16:23:17,750 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10818.exe
2025-03-14 16:23:17,765 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21753.exe
2025-03-14 16:23:17,858 [analyzer] INFO: Injected into process with pid 5360 and name u'Unicorn-51104.exe'
2025-03-14 16:23:17,858 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18240.exe
2025-03-14 16:23:17,953 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51659.exe
2025-03-14 16:23:18,015 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22991.exe
2025-03-14 16:23:18,030 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29122.exe
2025-03-14 16:23:18,046 [analyzer] DEBUG: Loaded monitor into process with pid 4604
2025-03-14 16:23:18,062 [analyzer] DEBUG: Loaded monitor into process with pid 6044
2025-03-14 16:23:18,155 [analyzer] INFO: Injected into process with pid 5620 and name u'Unicorn-21753.exe'
2025-03-14 16:23:18,155 [analyzer] INFO: Injected into process with pid 5592 and name u'Unicorn-10818.exe'
2025-03-14 16:23:18,187 [analyzer] DEBUG: Loaded monitor into process with pid 5360
2025-03-14 16:23:18,203 [analyzer] INFO: Injected into process with pid 5988 and name u'Unicorn-18240.exe'
2025-03-14 16:23:18,217 [analyzer] INFO: Injected into process with pid 6072 and name u'Unicorn-51659.exe'
2025-03-14 16:23:18,250 [analyzer] INFO: Injected into process with pid 5528 and name u'Unicorn-22991.exe'
2025-03-14 16:23:18,296 [analyzer] INFO: Injected into process with pid 5432 and name u'Unicorn-29122.exe'
2025-03-14 16:23:18,375 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49542.exe
2025-03-14 16:23:18,405 [analyzer] DEBUG: Loaded monitor into process with pid 5620
2025-03-14 16:23:18,453 [analyzer] DEBUG: Loaded monitor into process with pid 5592
2025-03-14 16:23:18,467 [analyzer] DEBUG: Loaded monitor into process with pid 5988
2025-03-14 16:23:18,483 [analyzer] DEBUG: Loaded monitor into process with pid 6072
2025-03-14 16:23:18,578 [analyzer] INFO: Injected into process with pid 6100 and name u'Unicorn-49542.exe'
2025-03-14 16:23:18,608 [analyzer] DEBUG: Loaded monitor into process with pid 5432
2025-03-14 16:23:18,625 [analyzer] DEBUG: Loaded monitor into process with pid 5528
2025-03-14 16:23:18,717 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35152.exe
2025-03-14 16:23:18,812 [analyzer] DEBUG: Loaded monitor into process with pid 6100
2025-03-14 16:23:18,875 [analyzer] INFO: Injected into process with pid 6192 and name u'Unicorn-35152.exe'
2025-03-14 16:23:19,030 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60232.exe
2025-03-14 16:23:19,092 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56148.exe
2025-03-14 16:23:19,092 [analyzer] DEBUG: Loaded monitor into process with pid 6192
2025-03-14 16:23:19,108 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62925.exe
2025-03-14 16:23:19,108 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11123.exe
2025-03-14 16:23:19,125 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16988.exe
2025-03-14 16:23:19,217 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35463.exe
2025-03-14 16:23:19,312 [analyzer] INFO: Injected into process with pid 6248 and name u'Unicorn-60232.exe'
2025-03-14 16:23:19,328 [analyzer] INFO: Injected into process with pid 6280 and name u'Unicorn-56148.exe'
2025-03-14 16:23:19,375 [analyzer] INFO: Injected into process with pid 6312 and name u'Unicorn-62925.exe'
2025-03-14 16:23:19,390 [analyzer] INFO: Injected into process with pid 6400 and name u'Unicorn-35463.exe'
2025-03-14 16:23:19,390 [analyzer] INFO: Injected into process with pid 6304 and name u'Unicorn-62925.exe'
2025-03-14 16:23:19,390 [analyzer] INFO: Injected into process with pid 6328 and name u'Unicorn-16988.exe'
2025-03-14 16:23:19,390 [analyzer] INFO: Injected into process with pid 6320 and name u'Unicorn-11123.exe'
2025-03-14 16:23:19,467 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59470.exe
2025-03-14 16:23:19,515 [analyzer] DEBUG: Loaded monitor into process with pid 6248
2025-03-14 16:23:19,592 [analyzer] DEBUG: Loaded monitor into process with pid 6280
2025-03-14 16:23:19,625 [analyzer] DEBUG: Loaded monitor into process with pid 6320
2025-03-14 16:23:19,640 [analyzer] DEBUG: Loaded monitor into process with pid 6312
2025-03-14 16:23:19,655 [analyzer] DEBUG: Loaded monitor into process with pid 6328
2025-03-14 16:23:19,703 [analyzer] INFO: Injected into process with pid 6528 and name u'Unicorn-59470.exe'
2025-03-14 16:23:19,828 [analyzer] DEBUG: Loaded monitor into process with pid 6400
2025-03-14 16:23:19,842 [analyzer] DEBUG: Loaded monitor into process with pid 6304
2025-03-14 16:23:19,983 [analyzer] DEBUG: Loaded monitor into process with pid 6528
2025-03-14 16:23:20,467 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27843.exe
2025-03-14 16:23:20,578 [analyzer] INFO: Injected into process with pid 6616 and name u'Unicorn-27843.exe'
2025-03-14 16:23:20,765 [analyzer] DEBUG: Loaded monitor into process with pid 6616
2025-03-14 16:23:21,625 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63501.exe
2025-03-14 16:23:21,828 [analyzer] INFO: Injected into process with pid 6680 and name u'Unicorn-63501.exe'
2025-03-14 16:23:22,015 [analyzer] DEBUG: Loaded monitor into process with pid 6680
2025-03-14 16:23:22,453 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61152.exe
2025-03-14 16:23:22,546 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20251.exe
2025-03-14 16:23:22,608 [analyzer] INFO: Injected into process with pid 6724 and name u'Unicorn-61152.exe'
2025-03-14 16:23:22,687 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9780.exe
2025-03-14 16:23:22,687 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50117.exe
2025-03-14 16:23:22,750 [analyzer] INFO: Injected into process with pid 6764 and name u'Unicorn-20251.exe'
2025-03-14 16:23:22,765 [analyzer] INFO: Injected into process with pid 6756 and name u'Unicorn-20251.exe'
2025-03-14 16:23:22,890 [analyzer] DEBUG: Loaded monitor into process with pid 6724
2025-03-14 16:23:22,890 [analyzer] INFO: Injected into process with pid 6832 and name u'Unicorn-50117.exe'
2025-03-14 16:23:22,905 [analyzer] INFO: Injected into process with pid 6824 and name u'Unicorn-9780.exe'
2025-03-14 16:23:22,967 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25619.exe
2025-03-14 16:23:23,000 [analyzer] DEBUG: Loaded monitor into process with pid 6764
2025-03-14 16:23:23,015 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41902.exe
2025-03-14 16:23:23,030 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24911.exe
2025-03-14 16:23:23,030 [analyzer] DEBUG: Loaded monitor into process with pid 6756
2025-03-14 16:23:23,140 [analyzer] DEBUG: Loaded monitor into process with pid 6832
2025-03-14 16:23:23,155 [analyzer] DEBUG: Loaded monitor into process with pid 6824
2025-03-14 16:23:23,265 [analyzer] INFO: Injected into process with pid 6928 and name u'Unicorn-25619.exe'
2025-03-14 16:23:23,280 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53500.exe
2025-03-14 16:23:23,342 [analyzer] INFO: Injected into process with pid 6976 and name u'Unicorn-24911.exe'
2025-03-14 16:23:23,342 [analyzer] INFO: Injected into process with pid 6968 and name u'Unicorn-41902.exe'
2025-03-14 16:23:23,500 [analyzer] DEBUG: Loaded monitor into process with pid 6928
2025-03-14 16:23:23,562 [analyzer] DEBUG: Loaded monitor into process with pid 6976
2025-03-14 16:23:23,578 [analyzer] INFO: Injected into process with pid 7052 and name u'Unicorn-53500.exe'
2025-03-14 16:23:23,578 [analyzer] DEBUG: Loaded monitor into process with pid 6968
2025-03-14 16:23:23,780 [analyzer] DEBUG: Loaded monitor into process with pid 7052
2025-03-14 16:23:24,187 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41732.exe
2025-03-14 16:23:24,280 [analyzer] INFO: Injected into process with pid 7136 and name u'Unicorn-41732.exe'
2025-03-14 16:23:24,500 [analyzer] DEBUG: Loaded monitor into process with pid 7136
2025-03-14 16:23:25,750 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64290.exe
2025-03-14 16:23:25,812 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60206.exe
2025-03-14 16:23:26,092 [analyzer] INFO: Injected into process with pid 6212 and name u'Unicorn-64290.exe'
2025-03-14 16:23:26,155 [analyzer] INFO: Injected into process with pid 6272 and name u'Unicorn-60206.exe'
2025-03-14 16:23:26,296 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38416.exe
2025-03-14 16:23:26,328 [analyzer] DEBUG: Loaded monitor into process with pid 6212
2025-03-14 16:23:26,328 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21622.exe
2025-03-14 16:23:26,530 [analyzer] DEBUG: Loaded monitor into process with pid 6272
2025-03-14 16:23:26,530 [analyzer] INFO: Injected into process with pid 6392 and name u'Unicorn-38416.exe'
2025-03-14 16:23:26,546 [analyzer] INFO: Injected into process with pid 6420 and name u'Unicorn-21622.exe'
2025-03-14 16:23:26,562 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33178.exe
2025-03-14 16:23:26,562 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49714.exe
2025-03-14 16:23:26,578 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58379.exe
2025-03-14 16:23:26,640 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17703.exe
2025-03-14 16:23:26,750 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1367.exe
2025-03-14 16:23:26,937 [analyzer] DEBUG: Loaded monitor into process with pid 6392
2025-03-14 16:23:26,967 [analyzer] DEBUG: Loaded monitor into process with pid 6420
2025-03-14 16:23:27,015 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26447.exe
2025-03-14 16:23:27,062 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23954.exe
2025-03-14 16:23:27,078 [analyzer] INFO: Injected into process with pid 6596 and name u'Unicorn-58379.exe'
2025-03-14 16:23:27,078 [analyzer] INFO: Injected into process with pid 2020 and name u'Unicorn-58379.exe'
2025-03-14 16:23:27,092 [analyzer] INFO: Injected into process with pid 6556 and name u'Unicorn-49714.exe'
2025-03-14 16:23:27,108 [analyzer] INFO: Injected into process with pid 6480 and name u'Unicorn-33178.exe'
2025-03-14 16:23:27,140 [analyzer] INFO: Injected into process with pid 6700 and name u'Unicorn-17703.exe'
2025-03-14 16:23:27,155 [analyzer] INFO: Injected into process with pid 6776 and name u'Unicorn-1367.exe'
2025-03-14 16:23:27,265 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34716.exe
2025-03-14 16:23:27,280 [analyzer] INFO: Injected into process with pid 6944 and name u'Unicorn-26447.exe'
2025-03-14 16:23:27,390 [analyzer] DEBUG: Loaded monitor into process with pid 2020
2025-03-14 16:23:27,405 [analyzer] DEBUG: Loaded monitor into process with pid 6596
2025-03-14 16:23:27,405 [analyzer] INFO: Injected into process with pid 7044 and name u'Unicorn-23954.exe'
2025-03-14 16:23:27,421 [analyzer] DEBUG: Loaded monitor into process with pid 6556
2025-03-14 16:23:27,437 [analyzer] DEBUG: Loaded monitor into process with pid 6480
2025-03-14 16:23:27,453 [analyzer] DEBUG: Loaded monitor into process with pid 6700
2025-03-14 16:23:27,530 [analyzer] DEBUG: Loaded monitor into process with pid 6776
2025-03-14 16:23:27,625 [analyzer] INFO: Injected into process with pid 120 and name u'Unicorn-34716.exe'
2025-03-14 16:23:27,687 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16050.exe
2025-03-14 16:23:27,717 [analyzer] DEBUG: Loaded monitor into process with pid 7044
2025-03-14 16:23:27,796 [analyzer] DEBUG: Loaded monitor into process with pid 6944
2025-03-14 16:23:27,921 [analyzer] DEBUG: Loaded monitor into process with pid 120
2025-03-14 16:23:27,921 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44373.exe
2025-03-14 16:23:27,937 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13911.exe
2025-03-14 16:23:27,983 [analyzer] INFO: Injected into process with pid 6456 and name u'Unicorn-16050.exe'
2025-03-14 16:23:28,187 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61441.exe
2025-03-14 16:23:28,233 [analyzer] DEBUG: Loaded monitor into process with pid 6456
2025-03-14 16:23:28,233 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61706.exe
2025-03-14 16:23:28,250 [analyzer] INFO: Injected into process with pid 6644 and name u'Unicorn-44373.exe'
2025-03-14 16:23:28,250 [analyzer] INFO: Injected into process with pid 6628 and name u'Unicorn-13911.exe'
2025-03-14 16:23:29,530 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20600.exe
2025-03-14 16:23:29,562 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1000.exe
2025-03-14 16:23:29,608 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20866.exe
2025-03-14 16:23:29,608 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20866.exe
2025-03-14 16:23:29,671 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35024.exe
2025-03-14 16:23:29,687 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57052.exe
2025-03-14 16:23:29,875 [analyzer] DEBUG: Loaded monitor into process with pid 6644
2025-03-14 16:23:29,905 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28072.exe
2025-03-14 16:23:29,953 [analyzer] INFO: Injected into process with pid 1112 and name u'Unicorn-61441.exe'
2025-03-14 16:23:30,078 [analyzer] DEBUG: Loaded monitor into process with pid 6628
2025-03-14 16:23:30,108 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50830.exe
2025-03-14 16:23:30,125 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59495.exe
2025-03-14 16:23:30,187 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39894.exe
2025-03-14 16:23:30,421 [analyzer] INFO: Injected into process with pid 2100 and name u'Unicorn-61706.exe'
2025-03-14 16:23:30,437 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6289.exe
2025-03-14 16:23:30,515 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64155.exe
2025-03-14 16:23:30,671 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20984.exe
2025-03-14 16:23:30,780 [analyzer] DEBUG: Loaded monitor into process with pid 1112
2025-03-14 16:23:30,890 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56152.exe
2025-03-14 16:23:30,937 [analyzer] INFO: Injected into process with pid 2452 and name u'Unicorn-20600.exe'
2025-03-14 16:23:30,937 [analyzer] INFO: Injected into process with pid 1776 and name u'Unicorn-20866.exe'
2025-03-14 16:23:30,953 [analyzer] INFO: Injected into process with pid 604 and name u'Unicorn-1000.exe'
2025-03-14 16:23:31,000 [analyzer] INFO: Injected into process with pid 2920 and name u'Unicorn-20866.exe'
2025-03-14 16:23:31,000 [analyzer] INFO: Injected into process with pid 7080 and name u'Unicorn-35024.exe'
2025-03-14 16:23:31,092 [analyzer] DEBUG: Loaded monitor into process with pid 2100
2025-03-14 16:23:31,125 [analyzer] INFO: Injected into process with pid 6948 and name u'Unicorn-57052.exe'
2025-03-14 16:23:31,140 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35453.exe
2025-03-14 16:23:31,187 [analyzer] INFO: Injected into process with pid 6696 and name u'Unicorn-28072.exe'
2025-03-14 16:23:31,217 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9573.exe
2025-03-14 16:23:31,312 [analyzer] DEBUG: Loaded monitor into process with pid 2452
2025-03-14 16:23:31,312 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1140.exe
2025-03-14 16:23:31,358 [analyzer] INFO: Injected into process with pid 216 and name u'Unicorn-39894.exe'
2025-03-14 16:23:31,358 [analyzer] INFO: Injected into process with pid 2936 and name u'Unicorn-59495.exe'
2025-03-14 16:23:31,390 [analyzer] INFO: Injected into process with pid 404 and name u'Unicorn-59495.exe'
2025-03-14 16:23:31,390 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53107.exe
2025-03-14 16:23:31,390 [analyzer] INFO: Injected into process with pid 3040 and name u'Unicorn-50830.exe'
2025-03-14 16:23:31,405 [analyzer] DEBUG: Loaded monitor into process with pid 1776
2025-03-14 16:23:31,437 [analyzer] DEBUG: Loaded monitor into process with pid 604
2025-03-14 16:23:31,437 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28048.exe
2025-03-14 16:23:31,467 [analyzer] INFO: Injected into process with pid 1816 and name u'Unicorn-50830.exe'
2025-03-14 16:23:31,515 [analyzer] DEBUG: Loaded monitor into process with pid 2920
2025-03-14 16:23:31,608 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6044.exe
2025-03-14 16:23:31,608 [analyzer] INFO: Injected into process with pid 7228 and name u'Unicorn-64155.exe'
2025-03-14 16:23:31,608 [analyzer] DEBUG: Loaded monitor into process with pid 7080
2025-03-14 16:23:31,687 [analyzer] DEBUG: Loaded monitor into process with pid 6948
2025-03-14 16:23:31,733 [analyzer] INFO: Injected into process with pid 7272 and name u'Unicorn-20984.exe'
2025-03-14 16:23:31,733 [analyzer] INFO: Injected into process with pid 7212 and name u'Unicorn-6289.exe'
2025-03-14 16:23:31,765 [analyzer] INFO: Injected into process with pid 7320 and name u'Unicorn-56152.exe'
2025-03-14 16:23:31,828 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58582.exe
2025-03-14 16:23:31,875 [analyzer] DEBUG: Loaded monitor into process with pid 6696
2025-03-14 16:23:31,890 [analyzer] DEBUG: Loaded monitor into process with pid 3040
2025-03-14 16:23:31,937 [analyzer] DEBUG: Loaded monitor into process with pid 2936
2025-03-14 16:23:31,953 [analyzer] DEBUG: Loaded monitor into process with pid 216
2025-03-14 16:23:31,967 [analyzer] INFO: Injected into process with pid 7436 and name u'Unicorn-35453.exe'
2025-03-14 16:23:31,983 [analyzer] INFO: Injected into process with pid 7464 and name u'Unicorn-9573.exe'
2025-03-14 16:23:31,983 [analyzer] INFO: Injected into process with pid 7536 and name u'Unicorn-1140.exe'
2025-03-14 16:23:32,046 [analyzer] DEBUG: Loaded monitor into process with pid 1816
2025-03-14 16:23:32,062 [analyzer] DEBUG: Loaded monitor into process with pid 7212
2025-03-14 16:23:32,062 [analyzer] INFO: Injected into process with pid 7576 and name u'Unicorn-53107.exe'
2025-03-14 16:23:32,078 [analyzer] INFO: Injected into process with pid 7592 and name u'Unicorn-28048.exe'
2025-03-14 16:23:32,078 [analyzer] DEBUG: Loaded monitor into process with pid 404
2025-03-14 16:23:32,140 [analyzer] INFO: Injected into process with pid 7656 and name u'Unicorn-6044.exe'
2025-03-14 16:23:32,217 [analyzer] DEBUG: Loaded monitor into process with pid 7228
2025-03-14 16:23:32,280 [analyzer] DEBUG: Loaded monitor into process with pid 7272
2025-03-14 16:23:32,296 [analyzer] DEBUG: Loaded monitor into process with pid 7320
2025-03-14 16:23:32,358 [analyzer] INFO: Injected into process with pid 7720 and name u'Unicorn-58582.exe'
2025-03-14 16:23:32,500 [analyzer] DEBUG: Loaded monitor into process with pid 7464
2025-03-14 16:23:32,515 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11903.exe
2025-03-14 16:23:32,562 [analyzer] DEBUG: Loaded monitor into process with pid 7536
2025-03-14 16:23:32,578 [analyzer] DEBUG: Loaded monitor into process with pid 7592
2025-03-14 16:23:32,578 [analyzer] DEBUG: Loaded monitor into process with pid 7436
2025-03-14 16:23:32,625 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20626.exe
2025-03-14 16:23:32,687 [analyzer] DEBUG: Loaded monitor into process with pid 7576
2025-03-14 16:23:32,703 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8374.exe
2025-03-14 16:23:32,812 [analyzer] DEBUG: Loaded monitor into process with pid 7656
2025-03-14 16:23:32,921 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44476.exe
2025-03-14 16:23:32,921 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30740.exe
2025-03-14 16:23:32,937 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25140.exe
2025-03-14 16:23:33,046 [analyzer] DEBUG: Loaded monitor into process with pid 7720
2025-03-14 16:23:41,515 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40056.exe
2025-03-14 16:23:41,562 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20819.exe
2025-03-14 16:23:41,562 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35010.exe
2025-03-14 16:23:41,608 [analyzer] INFO: Injected into process with pid 7912 and name u'Unicorn-11903.exe'
2025-03-14 16:23:41,625 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32250.exe
2025-03-14 16:23:41,937 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37818.exe
2025-03-14 16:23:41,937 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43683.exe
2025-03-14 16:23:41,937 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24082.exe
2025-03-14 16:23:41,953 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24082.exe
2025-03-14 16:23:41,953 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35017.exe
2025-03-14 16:23:41,953 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28166.exe
2025-03-14 16:23:41,967 [analyzer] INFO: Injected into process with pid 7944 and name u'Unicorn-20626.exe'
2025-03-14 16:23:42,483 [analyzer] DEBUG: Loaded monitor into process with pid 7912
2025-03-14 16:23:44,608 [analyzer] DEBUG: Loaded monitor into process with pid 7944
2025-03-14 16:23:44,937 [analyzer] INFO: Injected into process with pid 7968 and name u'Unicorn-8374.exe'
2025-03-14 16:23:44,937 [analyzer] INFO: Injected into process with pid 7976 and name u'Unicorn-8374.exe'
2025-03-14 16:23:45,453 [analyzer] INFO: Injected into process with pid 8048 and name u'Unicorn-44476.exe'
2025-03-14 16:23:45,453 [analyzer] INFO: Injected into process with pid 8060 and name u'Unicorn-25140.exe'
2025-03-14 16:23:45,453 [analyzer] INFO: Injected into process with pid 8040 and name u'Unicorn-30740.exe'
2025-03-14 16:23:45,640 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62772.exe
2025-03-14 16:23:45,655 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53543.exe
2025-03-14 16:23:45,812 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2204.exe
2025-03-14 16:23:45,858 [analyzer] INFO: Injected into process with pid 7336 and name u'Unicorn-20819.exe'
2025-03-14 16:23:45,875 [analyzer] INFO: Injected into process with pid 7316 and name u'Unicorn-40056.exe'
2025-03-14 16:23:45,875 [analyzer] INFO: Injected into process with pid 7352 and name u'Unicorn-35010.exe'
2025-03-14 16:23:45,875 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59573.exe
2025-03-14 16:23:45,921 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24763.exe
2025-03-14 16:23:46,030 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30826.exe
2025-03-14 16:23:46,030 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30295.exe
2025-03-14 16:23:46,092 [analyzer] INFO: Injected into process with pid 7388 and name u'Unicorn-32250.exe'
2025-03-14 16:23:46,171 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49768.exe
2025-03-14 16:23:46,187 [analyzer] DEBUG: Loaded monitor into process with pid 7976
2025-03-14 16:23:46,187 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60969.exe
2025-03-14 16:23:46,217 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26158.exe
2025-03-14 16:23:46,265 [analyzer] DEBUG: Loaded monitor into process with pid 7968
2025-03-14 16:23:46,280 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16093.exe
2025-03-14 16:23:46,358 [analyzer] INFO: Injected into process with pid 7628 and name u'Unicorn-24082.exe'
2025-03-14 16:23:46,390 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36464.exe
2025-03-14 16:23:46,390 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46116.exe
2025-03-14 16:23:46,467 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14336.exe
2025-03-14 16:23:46,546 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4726.exe
2025-03-14 16:23:46,546 [analyzer] INFO: Injected into process with pid 7572 and name u'Unicorn-37818.exe'
2025-03-14 16:23:46,546 [analyzer] INFO: Injected into process with pid 7632 and name u'Unicorn-43683.exe'
2025-03-14 16:23:46,546 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61598.exe
2025-03-14 16:23:46,546 [analyzer] INFO: Injected into process with pid 7736 and name u'Unicorn-28166.exe'
2025-03-14 16:23:46,562 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64398.exe
2025-03-14 16:23:46,578 [analyzer] DEBUG: Loaded monitor into process with pid 8040
2025-03-14 16:23:46,625 [analyzer] DEBUG: Loaded monitor into process with pid 8060
2025-03-14 16:23:46,640 [analyzer] DEBUG: Loaded monitor into process with pid 8048
2025-03-14 16:23:46,687 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27285.exe
2025-03-14 16:23:46,703 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18619.exe
2025-03-14 16:23:46,765 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59453.exe
2025-03-14 16:23:46,765 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10451.exe
2025-03-14 16:23:46,828 [analyzer] DEBUG: Loaded monitor into process with pid 7316
2025-03-14 16:23:46,858 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65053.exe
2025-03-14 16:23:46,905 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13251.exe
2025-03-14 16:23:46,905 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19116.exe
2025-03-14 16:23:46,953 [analyzer] DEBUG: Loaded monitor into process with pid 7336
2025-03-14 16:23:46,953 [analyzer] DEBUG: Loaded monitor into process with pid 7352
2025-03-14 16:23:46,967 [analyzer] INFO: Injected into process with pid 7560 and name u'Unicorn-35017.exe'
2025-03-14 16:23:47,046 [analyzer] INFO: Added new file to list with pid 3588 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9630.exe
2025-03-14 16:23:47,046 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29231.exe
2025-03-14 16:23:47,046 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9630.exe
2025-03-14 16:23:47,046 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10981.exe
2025-03-14 16:23:47,062 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29231.exe
2025-03-14 16:23:47,062 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9630.exe
2025-03-14 16:23:47,078 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16481.exe
2025-03-14 16:23:47,078 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19281.exe
2025-03-14 16:23:47,125 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55753.exe
2025-03-14 16:23:47,125 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6751.exe
2025-03-14 16:23:47,140 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55753.exe
2025-03-14 16:23:47,155 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7281.exe
2025-03-14 16:23:47,375 [analyzer] DEBUG: Loaded monitor into process with pid 7388
2025-03-14 16:23:47,390 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4613.exe
2025-03-14 16:23:47,437 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53615.exe
2025-03-14 16:23:47,453 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13278.exe
2025-03-14 16:23:47,467 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7413.exe
2025-03-14 16:23:47,467 [analyzer] DEBUG: Loaded monitor into process with pid 7628
2025-03-14 16:23:47,812 [analyzer] DEBUG: Loaded monitor into process with pid 7736
2025-03-14 16:23:47,905 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53423.exe
2025-03-14 16:23:47,921 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59023.exe
2025-03-14 16:23:47,953 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7221.exe
2025-03-14 16:23:48,000 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37948.exe
2025-03-14 16:23:48,030 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4421.exe
2025-03-14 16:23:48,030 [analyzer] DEBUG: Loaded monitor into process with pid 7572
2025-03-14 16:23:48,078 [analyzer] DEBUG: Loaded monitor into process with pid 7560
2025-03-14 16:23:48,125 [analyzer] DEBUG: Loaded monitor into process with pid 7632
2025-03-14 16:23:48,125 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7876.exe
2025-03-14 16:23:48,140 [analyzer] INFO: Injected into process with pid 7308 and name u'Unicorn-53543.exe'
2025-03-14 16:23:48,858 [analyzer] INFO: Injected into process with pid 7260 and name u'Unicorn-62772.exe'
2025-03-14 16:23:48,875 [analyzer] INFO: Injected into process with pid 7488 and name u'Unicorn-2204.exe'
2025-03-14 16:23:48,983 [analyzer] INFO: Injected into process with pid 8200 and name u'Unicorn-16093.exe'
2025-03-14 16:23:48,983 [analyzer] INFO: Injected into process with pid 8072 and name u'Unicorn-30295.exe'
2025-03-14 16:23:48,983 [analyzer] INFO: Injected into process with pid 7568 and name u'Unicorn-59573.exe'
2025-03-14 16:23:49,030 [analyzer] INFO: Injected into process with pid 7928 and name u'Unicorn-30826.exe'
2025-03-14 16:23:49,078 [analyzer] INFO: Injected into process with pid 7516 and name u'Unicorn-24763.exe'
2025-03-14 16:23:49,092 [analyzer] INFO: Injected into process with pid 7380 and name u'Unicorn-26158.exe'
2025-03-14 16:23:49,140 [analyzer] INFO: Injected into process with pid 7732 and name u'Unicorn-60969.exe'
2025-03-14 16:23:49,203 [analyzer] INFO: Injected into process with pid 7616 and name u'Unicorn-49768.exe'
2025-03-14 16:23:49,328 [analyzer] DEBUG: Loaded monitor into process with pid 7308
2025-03-14 16:23:49,342 [analyzer] INFO: Injected into process with pid 8376 and name u'Unicorn-4726.exe'
2025-03-14 16:23:49,358 [analyzer] INFO: Injected into process with pid 8316 and name u'Unicorn-36464.exe'
2025-03-14 16:23:49,375 [analyzer] INFO: Injected into process with pid 8392 and name u'Unicorn-64398.exe'
2025-03-14 16:23:49,421 [analyzer] INFO: Injected into process with pid 8384 and name u'Unicorn-61598.exe'
2025-03-14 16:23:49,421 [analyzer] INFO: Injected into process with pid 8324 and name u'Unicorn-46116.exe'
2025-03-14 16:23:49,421 [analyzer] INFO: Injected into process with pid 8344 and name u'Unicorn-14336.exe'
2025-03-14 16:23:49,467 [analyzer] DEBUG: Loaded monitor into process with pid 7260
2025-03-14 16:23:49,483 [analyzer] DEBUG: Loaded monitor into process with pid 7488
2025-03-14 16:23:49,515 [analyzer] INFO: Injected into process with pid 8464 and name u'Unicorn-27285.exe'
2025-03-14 16:23:49,515 [analyzer] INFO: Injected into process with pid 8588 and name u'Unicorn-13251.exe'
2025-03-14 16:23:49,562 [analyzer] INFO: Injected into process with pid 8604 and name u'Unicorn-13251.exe'
2025-03-14 16:23:49,562 [analyzer] INFO: Injected into process with pid 8580 and name u'Unicorn-65053.exe'
2025-03-14 16:23:49,625 [analyzer] DEBUG: Loaded monitor into process with pid 8200
2025-03-14 16:23:49,640 [analyzer] DEBUG: Loaded monitor into process with pid 7568
2025-03-14 16:23:49,640 [analyzer] INFO: Injected into process with pid 8572 and name u'Unicorn-10451.exe'
2025-03-14 16:23:49,640 [analyzer] INFO: Injected into process with pid 8496 and name u'Unicorn-59453.exe'
2025-03-14 16:23:49,655 [analyzer] DEBUG: Loaded monitor into process with pid 7928
2025-03-14 16:23:49,671 [analyzer] DEBUG: Loaded monitor into process with pid 8072
2025-03-14 16:23:49,687 [analyzer] INFO: Injected into process with pid 8556 and name u'Unicorn-10451.exe'
2025-03-14 16:23:49,687 [analyzer] INFO: Injected into process with pid 8564 and name u'Unicorn-65053.exe'
2025-03-14 16:23:49,703 [analyzer] INFO: Injected into process with pid 8504 and name u'Unicorn-10451.exe'
2025-03-14 16:23:49,765 [analyzer] INFO: Injected into process with pid 8596 and name u'Unicorn-19116.exe'
2025-03-14 16:23:49,765 [analyzer] INFO: Injected into process with pid 8548 and name u'Unicorn-59453.exe'
2025-03-14 16:23:49,765 [analyzer] INFO: Injected into process with pid 8540 and name u'Unicorn-10451.exe'
2025-03-14 16:23:49,765 [analyzer] INFO: Injected into process with pid 8620 and name u'Unicorn-27285.exe'
2025-03-14 16:23:49,765 [analyzer] INFO: Injected into process with pid 8512 and name u'Unicorn-10451.exe'
2025-03-14 16:23:49,780 [analyzer] DEBUG: Loaded monitor into process with pid 7516
2025-03-14 16:23:49,780 [analyzer] DEBUG: Loaded monitor into process with pid 7380
2025-03-14 16:23:49,812 [analyzer] DEBUG: Loaded monitor into process with pid 7732
2025-03-14 16:23:49,828 [analyzer] INFO: Injected into process with pid 8476 and name u'Unicorn-18619.exe'
2025-03-14 16:23:49,842 [analyzer] INFO: Injected into process with pid 8880 and name u'Unicorn-55753.exe'
2025-03-14 16:23:49,842 [analyzer] INFO: Injected into process with pid 8836 and name u'Unicorn-19281.exe'
2025-03-14 16:23:49,858 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46984.exe
2025-03-14 16:23:49,875 [analyzer] INFO: Injected into process with pid 8796 and name u'Unicorn-9630.exe'
2025-03-14 16:23:49,875 [analyzer] INFO: Injected into process with pid 8812 and name u'Unicorn-16481.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30648.exe
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 8860 and name u'Unicorn-6751.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 8772 and name u'Unicorn-10981.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 9132 and name u'Unicorn-4613.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 9140 and name u'Unicorn-53615.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 9124 and name u'Unicorn-4613.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 9148 and name u'Unicorn-13278.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 8804 and name u'Unicorn-29231.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 8872 and name u'Unicorn-7281.exe'
2025-03-14 16:23:49,983 [analyzer] INFO: Injected into process with pid 9156 and name u'Unicorn-7413.exe'
2025-03-14 16:23:50,000 [analyzer] DEBUG: Loaded monitor into process with pid 7616
2025-03-14 16:23:50,140 [analyzer] DEBUG: Loaded monitor into process with pid 8376
2025-03-14 16:23:50,155 [analyzer] INFO: Injected into process with pid 9000 and name u'Unicorn-59023.exe'
2025-03-14 16:23:50,171 [analyzer] INFO: Injected into process with pid 8224 and name u'Unicorn-59023.exe'
2025-03-14 16:23:50,187 [analyzer] INFO: Injected into process with pid 8312 and name u'Unicorn-7221.exe'
2025-03-14 16:23:50,203 [analyzer] DEBUG: Loaded monitor into process with pid 8384
2025-03-14 16:23:50,233 [analyzer] INFO: Injected into process with pid 8296 and name u'Unicorn-37948.exe'
2025-03-14 16:23:50,233 [analyzer] INFO: Injected into process with pid 8248 and name u'Unicorn-53423.exe'
2025-03-14 16:23:50,328 [analyzer] DEBUG: Loaded monitor into process with pid 8392
2025-03-14 16:23:50,342 [analyzer] DEBUG: Loaded monitor into process with pid 8344
2025-03-14 16:23:50,342 [analyzer] INFO: Injected into process with pid 8284 and name u'Unicorn-4421.exe'
2025-03-14 16:23:50,358 [analyzer] INFO: Injected into process with pid 9308 and name u'Unicorn-7876.exe'
2025-03-14 16:23:50,358 [analyzer] DEBUG: Loaded monitor into process with pid 8324
2025-03-14 16:23:50,421 [analyzer] DEBUG: Loaded monitor into process with pid 8316
2025-03-14 16:23:50,467 [analyzer] DEBUG: Loaded monitor into process with pid 8496
2025-03-14 16:23:50,562 [analyzer] DEBUG: Loaded monitor into process with pid 8588
2025-03-14 16:23:50,562 [analyzer] DEBUG: Loaded monitor into process with pid 8464
2025-03-14 16:23:50,562 [analyzer] DEBUG: Loaded monitor into process with pid 8572
2025-03-14 16:23:50,562 [analyzer] DEBUG: Loaded monitor into process with pid 8604
2025-03-14 16:23:50,562 [analyzer] DEBUG: Loaded monitor into process with pid 8580
2025-03-14 16:23:50,905 [analyzer] DEBUG: Loaded monitor into process with pid 8504
2025-03-14 16:23:50,905 [analyzer] DEBUG: Loaded monitor into process with pid 8812
2025-03-14 16:23:50,905 [analyzer] DEBUG: Loaded monitor into process with pid 8556
2025-03-14 16:23:59,062 [analyzer] DEBUG: Loaded monitor into process with pid 8836
2025-03-14 16:23:59,108 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53682.exe
2025-03-14 16:23:59,203 [analyzer] DEBUG: Loaded monitor into process with pid 8596
2025-03-14 16:23:59,217 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7805.exe
2025-03-14 16:23:59,233 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10075.exe
2025-03-14 16:23:59,250 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7275.exe
2025-03-14 16:23:59,265 [analyzer] DEBUG: Loaded monitor into process with pid 8476
2025-03-14 16:23:59,342 [analyzer] DEBUG: Loaded monitor into process with pid 8860
2025-03-14 16:23:59,358 [analyzer] DEBUG: Loaded monitor into process with pid 8548
2025-03-14 16:23:59,358 [analyzer] DEBUG: Loaded monitor into process with pid 8880
2025-03-14 16:23:59,375 [analyzer] DEBUG: Loaded monitor into process with pid 8796
2025-03-14 16:23:59,421 [analyzer] DEBUG: Loaded monitor into process with pid 8540
2025-03-14 16:23:59,437 [analyzer] DEBUG: Loaded monitor into process with pid 8564
2025-03-14 16:23:59,467 [analyzer] DEBUG: Loaded monitor into process with pid 9140
2025-03-14 16:23:59,515 [analyzer] DEBUG: Loaded monitor into process with pid 8620
2025-03-14 16:23:59,530 [analyzer] DEBUG: Loaded monitor into process with pid 9148
2025-03-14 16:23:59,530 [analyzer] DEBUG: Loaded monitor into process with pid 8872
2025-03-14 16:23:59,546 [analyzer] DEBUG: Loaded monitor into process with pid 8772
2025-03-14 16:23:59,578 [analyzer] DEBUG: Loaded monitor into process with pid 9132
2025-03-14 16:23:59,592 [analyzer] DEBUG: Loaded monitor into process with pid 8512
2025-03-14 16:23:59,671 [analyzer] DEBUG: Loaded monitor into process with pid 9124
2025-03-14 16:23:59,687 [analyzer] DEBUG: Loaded monitor into process with pid 8804
2025-03-14 16:23:59,703 [analyzer] DEBUG: Loaded monitor into process with pid 9156
2025-03-14 16:23:59,717 [analyzer] DEBUG: Loaded monitor into process with pid 8312
2025-03-14 16:23:59,750 [analyzer] DEBUG: Loaded monitor into process with pid 9000
2025-03-14 16:23:59,812 [analyzer] DEBUG: Loaded monitor into process with pid 8224
2025-03-14 16:23:59,842 [analyzer] DEBUG: Loaded monitor into process with pid 8248
2025-03-14 16:23:59,842 [analyzer] DEBUG: Loaded monitor into process with pid 9308
2025-03-14 16:23:59,875 [analyzer] DEBUG: Loaded monitor into process with pid 8284
2025-03-14 16:23:59,890 [analyzer] DEBUG: Loaded monitor into process with pid 8296
2025-03-14 16:24:00,046 [analyzer] INFO: Injected into process with pid 9976 and name u'Unicorn-46984.exe'
2025-03-14 16:24:00,187 [analyzer] INFO: Injected into process with pid 10016 and name u'Unicorn-30648.exe'
2025-03-14 16:24:10,983 [analyzer] INFO: Injected into process with pid 8980 and name u'Unicorn-7275.exe'
2025-03-14 16:24:10,983 [analyzer] INFO: Injected into process with pid 8764 and name u'Unicorn-53682.exe'
2025-03-14 16:24:11,155 [analyzer] DEBUG: Loaded monitor into process with pid 9976
2025-03-14 16:24:11,250 [analyzer] INFO: Injected into process with pid 8900 and name u'Unicorn-10075.exe'
2025-03-14 16:24:11,312 [analyzer] INFO: Injected into process with pid 9068 and name u'Unicorn-7805.exe'
2025-03-14 16:24:11,625 [analyzer] INFO: Injected into process with pid 8892 and name u'Unicorn-10075.exe'
2025-03-14 16:24:12,750 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24761.exe
2025-03-14 16:24:12,765 [analyzer] DEBUG: Loaded monitor into process with pid 10016
2025-03-14 16:24:13,171 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26352.exe
2025-03-14 16:24:13,171 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51404.exe
2025-03-14 16:24:13,280 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34875.exe
2025-03-14 16:24:13,296 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36466.exe
2025-03-14 16:24:14,015 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52172.exe
2025-03-14 16:24:14,046 [analyzer] DEBUG: Loaded monitor into process with pid 8764
2025-03-14 16:24:14,078 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20497.exe
2025-03-14 16:24:14,217 [analyzer] DEBUG: Loaded monitor into process with pid 8980
2025-03-14 16:24:14,280 [analyzer] DEBUG: Loaded monitor into process with pid 9068
2025-03-14 16:24:14,296 [analyzer] DEBUG: Loaded monitor into process with pid 8900
2025-03-14 16:24:14,296 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13496.exe
2025-03-14 16:24:14,328 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4831.exe
2025-03-14 16:24:14,328 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53833.exe
2025-03-14 16:24:14,375 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7631.exe
2025-03-14 16:24:14,405 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5361.exe
2025-03-14 16:24:14,437 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59433.exe
2025-03-14 16:24:14,437 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38358.exe
2025-03-14 16:24:14,483 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35557.exe
2025-03-14 16:24:14,562 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2305.exe
2025-03-14 16:24:14,562 [analyzer] DEBUG: Loaded monitor into process with pid 8892
2025-03-14 16:24:14,703 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-555.exe
2025-03-14 16:24:14,842 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52556.exe
2025-03-14 16:24:15,437 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11437.exe
2025-03-14 16:24:15,453 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65027.exe
2025-03-14 16:24:15,546 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38385.exe
2025-03-14 16:24:15,562 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60976.exe
2025-03-14 16:24:15,592 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43910.exe
2025-03-14 16:24:15,625 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3574.exe
2025-03-14 16:24:15,796 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33604.exe
2025-03-14 16:24:15,812 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50140.exe
2025-03-14 16:24:15,828 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50670.exe
2025-03-14 16:24:15,875 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58805.exe
2025-03-14 16:24:15,905 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52940.exe
2025-03-14 16:24:15,937 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64331.exe
2025-03-14 16:24:15,953 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15859.exe
2025-03-14 16:24:16,000 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15329.exe
2025-03-14 16:24:16,000 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59865.exe
2025-03-14 16:24:16,030 [analyzer] INFO: Added new file to list with pid 5116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48856.exe
2025-03-14 16:24:16,046 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25055.exe
2025-03-14 16:24:16,078 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46056.exe
2025-03-14 16:24:16,078 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46586.exe
2025-03-14 16:24:16,108 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54721.exe
2025-03-14 16:24:16,108 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23995.exe
2025-03-14 16:24:16,171 [analyzer] INFO: Injected into process with pid 9580 and name u'Unicorn-36466.exe'
2025-03-14 16:24:16,187 [analyzer] INFO: Injected into process with pid 9792 and name u'Unicorn-51404.exe'
2025-03-14 16:24:16,187 [analyzer] INFO: Injected into process with pid 9504 and name u'Unicorn-26352.exe'
2025-03-14 16:24:16,250 [analyzer] INFO: Injected into process with pid 9588 and name u'Unicorn-34875.exe'
2025-03-14 16:24:16,296 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55261.exe
2025-03-14 16:24:16,296 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18669.exe
2025-03-14 16:24:16,312 [analyzer] INFO: Injected into process with pid 9476 and name u'Unicorn-24761.exe'
2025-03-14 16:24:16,312 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18669.exe
2025-03-14 16:24:16,483 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57240.exe
2025-03-14 16:24:16,483 [analyzer] INFO: Injected into process with pid 9628 and name u'Unicorn-52172.exe'
2025-03-14 16:24:16,578 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8363.exe
2025-03-14 16:24:16,578 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19754.exe
2025-03-14 16:24:16,717 [analyzer] INFO: Injected into process with pid 9944 and name u'Unicorn-20497.exe'
2025-03-14 16:24:16,765 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8826.exe
2025-03-14 16:24:16,765 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8826.exe
2025-03-14 16:24:17,000 [analyzer] INFO: Injected into process with pid 9732 and name u'Unicorn-13496.exe'
2025-03-14 16:24:17,000 [analyzer] DEBUG: Loaded monitor into process with pid 9792
2025-03-14 16:24:17,000 [analyzer] INFO: Injected into process with pid 9984 and name u'Unicorn-13496.exe'
2025-03-14 16:24:17,062 [analyzer] DEBUG: Loaded monitor into process with pid 9580
2025-03-14 16:24:17,125 [analyzer] DEBUG: Loaded monitor into process with pid 9588
2025-03-14 16:24:17,125 [analyzer] DEBUG: Loaded monitor into process with pid 9504
2025-03-14 16:24:17,155 [analyzer] INFO: Injected into process with pid 10028 and name u'Unicorn-7631.exe'
2025-03-14 16:24:17,155 [analyzer] INFO: Injected into process with pid 9772 and name u'Unicorn-53833.exe'
2025-03-14 16:24:17,187 [analyzer] INFO: Injected into process with pid 9740 and name u'Unicorn-4831.exe'
2025-03-14 16:24:17,187 [analyzer] INFO: Injected into process with pid 9756 and name u'Unicorn-4831.exe'
2025-03-14 16:24:17,265 [analyzer] INFO: Injected into process with pid 9860 and name u'Unicorn-53833.exe'
2025-03-14 16:24:17,265 [analyzer] INFO: Injected into process with pid 10060 and name u'Unicorn-35557.exe'
2025-03-14 16:24:17,280 [analyzer] INFO: Injected into process with pid 10192 and name u'Unicorn-7631.exe'
2025-03-14 16:24:17,342 [analyzer] INFO: Injected into process with pid 9004 and name u'Unicorn-7631.exe'
2025-03-14 16:24:17,358 [analyzer] INFO: Injected into process with pid 8920 and name u'Unicorn-5361.exe'
2025-03-14 16:24:17,358 [analyzer] INFO: Injected into process with pid 10204 and name u'Unicorn-53833.exe'
2025-03-14 16:24:17,375 [analyzer] INFO: Injected into process with pid 10084 and name u'Unicorn-7631.exe'
2025-03-14 16:24:17,500 [analyzer] DEBUG: Loaded monitor into process with pid 9476
2025-03-14 16:24:17,515 [analyzer] DEBUG: Loaded monitor into process with pid 9628
2025-03-14 16:24:17,703 [analyzer] INFO: Injected into process with pid 10200 and name u'Unicorn-5361.exe'
2025-03-14 16:24:17,703 [analyzer] INFO: Injected into process with pid 10288 and name u'Unicorn-555.exe'
2025-03-14 16:24:17,703 [analyzer] INFO: Injected into process with pid 10212 and name u'Unicorn-59433.exe'
2025-03-14 16:24:17,703 [analyzer] INFO: Injected into process with pid 10044 and name u'Unicorn-38358.exe'
2025-03-14 16:24:17,703 [analyzer] DEBUG: Loaded monitor into process with pid 9944
2025-03-14 16:24:17,733 [analyzer] INFO: Injected into process with pid 9164 and name u'Unicorn-2305.exe'
2025-03-14 16:24:17,750 [analyzer] INFO: Injected into process with pid 10420 and name u'Unicorn-52556.exe'
2025-03-14 16:24:17,875 [analyzer] INFO: Injected into process with pid 10516 and name u'Unicorn-3574.exe'
2025-03-14 16:24:17,937 [analyzer] INFO: Injected into process with pid 10460 and name u'Unicorn-65027.exe'
2025-03-14 16:24:17,967 [analyzer] DEBUG: Loaded monitor into process with pid 9732
2025-03-14 16:24:17,967 [analyzer] INFO: Injected into process with pid 10452 and name u'Unicorn-11437.exe'
2025-03-14 16:24:17,983 [analyzer] DEBUG: Loaded monitor into process with pid 9984
2025-03-14 16:24:18,015 [analyzer] DEBUG: Loaded monitor into process with pid 10028
2025-03-14 16:24:18,015 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11156.exe
2025-03-14 16:24:18,125 [analyzer] INFO: Injected into process with pid 10492 and name u'Unicorn-38385.exe'
2025-03-14 16:24:18,140 [analyzer] INFO: Injected into process with pid 10508 and name u'Unicorn-43910.exe'
2025-03-14 16:24:18,155 [analyzer] INFO: Injected into process with pid 10500 and name u'Unicorn-60976.exe'
2025-03-14 16:24:18,155 [analyzer] DEBUG: Loaded monitor into process with pid 9756
2025-03-14 16:24:18,187 [analyzer] DEBUG: Loaded monitor into process with pid 9740
2025-03-14 16:24:18,203 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15862.exe
2025-03-14 16:24:18,203 [analyzer] DEBUG: Loaded monitor into process with pid 9772
2025-03-14 16:24:18,358 [analyzer] DEBUG: Loaded monitor into process with pid 9860
2025-03-14 16:24:18,390 [analyzer] DEBUG: Loaded monitor into process with pid 10192
2025-03-14 16:24:18,390 [analyzer] DEBUG: Loaded monitor into process with pid 10060
2025-03-14 16:24:18,483 [analyzer] DEBUG: Loaded monitor into process with pid 9004
2025-03-14 16:24:18,500 [analyzer] DEBUG: Loaded monitor into process with pid 8920
2025-03-14 16:24:18,515 [analyzer] DEBUG: Loaded monitor into process with pid 10084
2025-03-14 16:24:18,515 [analyzer] INFO: Injected into process with pid 10740 and name u'Unicorn-64331.exe'
2025-03-14 16:24:18,530 [analyzer] INFO: Injected into process with pid 10640 and name u'Unicorn-33604.exe'
2025-03-14 16:24:18,530 [analyzer] INFO: Injected into process with pid 10732 and name u'Unicorn-52940.exe'
2025-03-14 16:24:18,530 [analyzer] INFO: Injected into process with pid 10712 and name u'Unicorn-33604.exe'
2025-03-14 16:24:18,530 [analyzer] INFO: Injected into process with pid 10664 and name u'Unicorn-50670.exe'
2025-03-14 16:24:18,562 [analyzer] DEBUG: Loaded monitor into process with pid 10204
2025-03-14 16:24:18,625 [analyzer] DEBUG: Loaded monitor into process with pid 10212
2025-03-14 16:24:18,640 [analyzer] DEBUG: Loaded monitor into process with pid 10200
2025-03-14 16:24:18,655 [analyzer] DEBUG: Loaded monitor into process with pid 10044
2025-03-14 16:24:18,655 [analyzer] INFO: Injected into process with pid 10672 and name u'Unicorn-33604.exe'
2025-03-14 16:24:18,812 [analyzer] INFO: Injected into process with pid 10680 and name u'Unicorn-50670.exe'
2025-03-14 16:24:18,812 [analyzer] INFO: Injected into process with pid 10624 and name u'Unicorn-33604.exe'
2025-03-14 16:24:18,812 [analyzer] INFO: Injected into process with pid 10656 and name u'Unicorn-33604.exe'
2025-03-14 16:24:18,812 [analyzer] DEBUG: Loaded monitor into process with pid 9164
2025-03-14 16:24:18,828 [analyzer] INFO: Injected into process with pid 10648 and name u'Unicorn-50140.exe'
2025-03-14 16:24:18,828 [analyzer] INFO: Injected into process with pid 10688 and name u'Unicorn-50140.exe'
2025-03-14 16:24:18,812 [analyzer] INFO: Injected into process with pid 10632 and name u'Unicorn-50140.exe'
2025-03-14 16:24:18,812 [analyzer] DEBUG: Loaded monitor into process with pid 10420
2025-03-14 16:24:18,842 [analyzer] DEBUG: Loaded monitor into process with pid 10288
2025-03-14 16:24:18,905 [analyzer] INFO: Injected into process with pid 10696 and name u'Unicorn-58805.exe'
2025-03-14 16:24:19,000 [analyzer] INFO: Injected into process with pid 10748 and name u'Unicorn-64331.exe'
2025-03-14 16:24:19,000 [analyzer] INFO: Injected into process with pid 10788 and name u'Unicorn-59865.exe'
2025-03-14 16:24:19,000 [analyzer] INFO: Injected into process with pid 10820 and name u'Unicorn-46586.exe'
2025-03-14 16:24:19,015 [analyzer] INFO: Injected into process with pid 10704 and name u'Unicorn-33604.exe'
2025-03-14 16:24:19,015 [analyzer] INFO: Injected into process with pid 10796 and name u'Unicorn-48856.exe'
2025-03-14 16:24:19,015 [analyzer] INFO: Injected into process with pid 10720 and name u'Unicorn-33604.exe'
2025-03-14 16:24:19,030 [analyzer] INFO: Injected into process with pid 10836 and name u'Unicorn-54721.exe'
2025-03-14 16:24:19,030 [analyzer] INFO: Injected into process with pid 10812 and name u'Unicorn-46056.exe'
2025-03-14 16:24:19,030 [analyzer] INFO: Injected into process with pid 10756 and name u'Unicorn-15859.exe'
2025-03-14 16:24:19,030 [analyzer] DEBUG: Loaded monitor into process with pid 10516
2025-03-14 16:24:19,030 [analyzer] INFO: Injected into process with pid 10780 and name u'Unicorn-15329.exe'
2025-03-14 16:24:19,046 [analyzer] DEBUG: Loaded monitor into process with pid 10452
2025-03-14 16:24:19,092 [analyzer] INFO: Injected into process with pid 11072 and name u'Unicorn-55261.exe'
2025-03-14 16:24:19,108 [analyzer] INFO: Injected into process with pid 11236 and name u'Unicorn-18669.exe'
2025-03-14 16:24:19,108 [analyzer] INFO: Injected into process with pid 10804 and name u'Unicorn-25055.exe'
2025-03-14 16:24:19,171 [analyzer] DEBUG: Loaded monitor into process with pid 10460
2025-03-14 16:24:19,171 [analyzer] DEBUG: Loaded monitor into process with pid 10492
2025-03-14 16:24:19,187 [analyzer] INFO: Injected into process with pid 10844 and name u'Unicorn-23995.exe'
2025-03-14 16:24:19,187 [analyzer] INFO: Injected into process with pid 10828 and name u'Unicorn-54721.exe'
2025-03-14 16:24:19,187 [analyzer] INFO: Injected into process with pid 9548 and name u'Unicorn-57240.exe'
2025-03-14 16:24:19,203 [analyzer] DEBUG: Loaded monitor into process with pid 10508
2025-03-14 16:24:19,203 [analyzer] INFO: Injected into process with pid 9232 and name u'Unicorn-8363.exe'
2025-03-14 16:24:19,203 [analyzer] INFO: Injected into process with pid 10528 and name u'Unicorn-8826.exe'
2025-03-14 16:24:19,203 [analyzer] INFO: Injected into process with pid 7960 and name u'Unicorn-19754.exe'
2025-03-14 16:24:19,217 [analyzer] DEBUG: Loaded monitor into process with pid 10500
2025-03-14 16:24:19,483 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50191.exe
2025-03-14 16:24:19,515 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42056.exe
2025-03-14 16:24:19,530 [analyzer] DEBUG: Loaded monitor into process with pid 10688
2025-03-14 16:24:19,562 [analyzer] DEBUG: Loaded monitor into process with pid 10640
2025-03-14 16:24:19,608 [analyzer] DEBUG: Loaded monitor into process with pid 10672
2025-03-14 16:24:19,625 [analyzer] DEBUG: Loaded monitor into process with pid 10696
2025-03-14 16:24:19,625 [analyzer] DEBUG: Loaded monitor into process with pid 10664
2025-03-14 16:24:19,640 [analyzer] DEBUG: Loaded monitor into process with pid 10704
2025-03-14 16:24:19,640 [analyzer] DEBUG: Loaded monitor into process with pid 10732
2025-03-14 16:24:19,655 [analyzer] DEBUG: Loaded monitor into process with pid 10740
2025-03-14 16:24:19,671 [analyzer] DEBUG: Loaded monitor into process with pid 10712
2025-03-14 16:24:19,780 [analyzer] DEBUG: Loaded monitor into process with pid 10648
2025-03-14 16:24:19,780 [analyzer] DEBUG: Loaded monitor into process with pid 10624
2025-03-14 16:24:19,812 [analyzer] DEBUG: Loaded monitor into process with pid 10656
2025-03-14 16:24:19,828 [analyzer] DEBUG: Loaded monitor into process with pid 10680
2025-03-14 16:24:19,967 [analyzer] DEBUG: Loaded monitor into process with pid 10632
2025-03-14 16:24:20,015 [analyzer] INFO: Injected into process with pid 9828 and name u'Unicorn-11156.exe'
2025-03-14 16:24:20,030 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27441.exe
2025-03-14 16:24:20,062 [analyzer] INFO: Injected into process with pid 9720 and name u'Unicorn-15862.exe'
2025-03-14 16:24:20,108 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28373.exe
2025-03-14 16:24:20,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11320,11324,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:21,203 [analyzer] INFO: Injected into process with pid 10432 and name u'Unicorn-42056.exe'
2025-03-14 16:24:21,203 [analyzer] INFO: Injected into process with pid 11220 and name u'Unicorn-50191.exe'
2025-03-14 16:24:21,530 [analyzer] INFO: Injected into process with pid 11304 and name u'Unicorn-27441.exe'
2025-03-14 16:24:28,687 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3750.exe
2025-03-14 16:24:28,703 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24867.exe
2025-03-14 16:24:29,092 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21048.exe
2025-03-14 16:24:36,687 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25957.exe
2025-03-14 16:24:36,717 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61828.exe
2025-03-14 16:24:38,250 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34125.exe
2025-03-14 16:24:38,233 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2504.exe
2025-03-14 16:24:38,280 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64851.exe
2025-03-14 16:24:38,296 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64851.exe
2025-03-14 16:24:38,296 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34050.exe
2025-03-14 16:24:38,640 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55505.exe
2025-03-14 16:24:38,640 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11616,11620,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:38,655 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24704.exe
2025-03-14 16:24:38,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11632,11636,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:38,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11648,11652,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,062 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11720,11724,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,092 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11712,11716,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,108 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4166.exe
2025-03-14 16:24:39,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11760,11764,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47721.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47721.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47721.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47721.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39586.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22520.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39056.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22520.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18055.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22520.exe
2025-03-14 16:24:39,437 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39586.exe
2025-03-14 16:24:39,421 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39056.exe
2025-03-14 16:24:39,437 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4245.exe
2025-03-14 16:24:39,546 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53247.exe
2025-03-14 16:24:39,562 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12910.exe
2025-03-14 16:24:39,562 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7045.exe
2025-03-14 16:24:39,625 [analyzer] INFO: Injected into process with pid 11428 and name u'Unicorn-3750.exe'
2025-03-14 16:24:39,625 [analyzer] INFO: Injected into process with pid 11436 and name u'Unicorn-24867.exe'
2025-03-14 16:24:39,655 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31194.exe
2025-03-14 16:24:39,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11796,11800,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11828,11832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11804,11808,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11856,11860,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11840,11844,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:39,858 [analyzer] INFO: Injected into process with pid 11476 and name u'Unicorn-21048.exe'
2025-03-14 16:24:39,875 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38864.exe
2025-03-14 16:24:40,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12044,12048,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:40,342 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11641.exe
2025-03-14 16:24:40,375 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16106.exe
2025-03-14 16:24:40,467 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61998.exe
2025-03-14 16:24:40,467 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62528.exe
2025-03-14 16:24:40,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12076,12080,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:40,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12068,12072,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:40,890 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55195.exe
2025-03-14 16:24:40,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12104,12108,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:40,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12112,12116,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,000 [analyzer] INFO: Injected into process with pid 11532 and name u'Unicorn-25957.exe'
2025-03-14 16:24:41,015 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12148,12152,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,062 [analyzer] INFO: Injected into process with pid 11624 and name u'Unicorn-34125.exe'
2025-03-14 16:24:41,078 [analyzer] INFO: Injected into process with pid 11524 and name u'Unicorn-25957.exe'
2025-03-14 16:24:41,140 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-349.exe
2025-03-14 16:24:41,171 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52606.exe
2025-03-14 16:24:41,203 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31075.exe
2025-03-14 16:24:41,217 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60741.exe
2025-03-14 16:24:41,233 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35540.exe
2025-03-14 16:24:41,280 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52076.exe
2025-03-14 16:24:41,328 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25740.exe
2025-03-14 16:24:41,405 [analyzer] INFO: Injected into process with pid 11540 and name u'Unicorn-61828.exe'
2025-03-14 16:24:41,437 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39824.exe
2025-03-14 16:24:41,437 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48489.exe
2025-03-14 16:24:41,437 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39824.exe
2025-03-14 16:24:41,453 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18823.exe
2025-03-14 16:24:41,453 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40354.exe
2025-03-14 16:24:41,453 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42624.exe
2025-03-14 16:24:41,640 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34132.exe
2025-03-14 16:24:41,640 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33601.exe
2025-03-14 16:24:41,640 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12601.exe
2025-03-14 16:24:41,640 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36402.exe
2025-03-14 16:24:41,655 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42267.exe
2025-03-14 16:24:41,655 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33601.exe
2025-03-14 16:24:41,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12228,12232,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11168,11300,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '9396,10320,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1912,11288,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12260,12264,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12220,12224,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12268,12272,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12276,12280,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '9388,9832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12252,12256,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12284,11292,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11200,11344,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12236,12240,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11296,2856,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,733 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11328,11340,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2836,11408,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11316,11332,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12244,12248,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1432,1116,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11400,11360,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11700,11728,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11404,11392,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,842 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11588,11496,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11396,11352,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11756,11784,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11732,11752,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2028,1032,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2816,2068,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '700,2364,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11584,11604,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12120,11916,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,890 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19019.exe
2025-03-14 16:24:41,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12128,12156,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11948,11964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11676,11668,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12096,11680,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:41,953 [analyzer] INFO: Injected into process with pid 11812 and name u'Unicorn-4245.exe'
2025-03-14 16:24:41,953 [analyzer] INFO: Injected into process with pid 11820 and name u'Unicorn-39586.exe'
2025-03-14 16:24:42,030 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11656,12144,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:42,092 [analyzer] INFO: Injected into process with pid 11788 and name u'Unicorn-47721.exe'
2025-03-14 16:24:42,140 [analyzer] INFO: Injected into process with pid 11848 and name u'Unicorn-12910.exe'
2025-03-14 16:24:42,217 [analyzer] INFO: Injected into process with pid 11952 and name u'Unicorn-31194.exe'
2025-03-14 16:24:42,717 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40546.exe
2025-03-14 16:24:42,750 [analyzer] INFO: Injected into process with pid 11252 and name u'Unicorn-52076.exe'
2025-03-14 16:24:42,812 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6763.exe
2025-03-14 16:24:42,828 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11228.exe
2025-03-14 16:24:42,842 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28294.exe
2025-03-14 16:24:42,875 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62574.exe
2025-03-14 16:24:42,875 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27763.exe
2025-03-14 16:24:42,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '3088,11464,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:43,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11996,11492,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:24:43,375 [analyzer] INFO: Injected into process with pid 12208 and name u'Unicorn-40546.exe'
2025-03-14 16:24:43,500 [analyzer] INFO: Injected into process with pid 2772 and name u'Unicorn-62574.exe'
2025-03-14 16:24:43,562 [analyzer] INFO: Injected into process with pid 2712 and name u'Unicorn-28294.exe'
2025-03-14 16:24:43,562 [analyzer] INFO: Injected into process with pid 12200 and name u'Unicorn-28294.exe'
2025-03-14 16:24:43,578 [analyzer] INFO: Injected into process with pid 12000 and name u'Unicorn-27763.exe'
2025-03-14 16:24:44,717 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20164.exe
2025-03-14 16:24:53,546 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52365.exe
2025-03-14 16:24:53,625 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58395.exe
2025-03-14 16:25:05,530 [analyzer] INFO: Injected into process with pid 1804 and name u'Unicorn-20164.exe'
2025-03-14 16:25:10,312 [analyzer] INFO: Injected into process with pid 11768 and name u'Unicorn-52365.exe'
2025-03-14 16:25:10,546 [analyzer] INFO: Injected into process with pid 12296 and name u'Unicorn-58395.exe'
2025-03-14 16:25:11,296 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3538.exe
2025-03-14 16:25:11,312 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36874.exe
2025-03-14 16:25:11,328 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49326.exe
2025-03-14 16:25:11,328 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64991.exe
2025-03-14 16:25:11,328 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62191.exe
2025-03-14 16:25:11,328 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49326.exe
2025-03-14 16:25:11,405 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32790.exe
2025-03-14 16:25:11,546 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12416,12420,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:11,546 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12400,12404,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:11,578 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38439.exe
2025-03-14 16:25:11,608 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16991.exe
2025-03-14 16:25:11,625 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59863.exe
2025-03-14 16:25:11,625 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55662.exe
2025-03-14 16:25:11,655 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65463.exe
2025-03-14 16:25:11,687 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60997.exe
2025-03-14 16:25:11,733 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25127.exe
2025-03-14 16:25:11,750 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16461.exe
2025-03-14 16:25:12,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12584,12588,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,140 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12560,12564,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12608,12612,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12600,12604,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12632,12636,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12592,12596,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12648,12652,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12576,12580,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12640,12644,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12656,12660,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12568,12572,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12552,12556,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12624,12628,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12616,12620,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14124.exe
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9659.exe
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9659.exe
2025-03-14 16:25:12,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12664,12668,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50451.exe
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9659.exe
2025-03-14 16:25:12,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12680,12684,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,233 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48934.exe
2025-03-14 16:25:12,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12688,12692,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12696,12700,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12744,12748,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12712,12716,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,265 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12760,12764,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,265 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12720,12724,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12768,12772,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12896,12900,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12824,12828,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12864,12868,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12800,12804,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12904,12908,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12888,12892,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12880,12884,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12808,12812,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12736,12740,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12728,12732,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12776,12780,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12872,12876,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12704,12708,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12840,12844,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12672,12676,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,546 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12792,12796,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,625 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12784,12788,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,655 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13000,13004,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,655 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12968,12972,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12952,12956,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12856,12860,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12816,12820,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12832,12836,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12936,12940,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12960,12964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12752,12756,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12920,12924,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12976,12980,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12984,12988,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12912,12916,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12848,12852,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12928,12932,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12944,12948,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13128,13132,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12992,12996,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,937 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12428,9708,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:12,937 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2328,13316,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:13,030 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51464.exe
2025-03-14 16:25:13,375 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13588,13592,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:13,890 [analyzer] INFO: Injected into process with pid 12448 and name u'Unicorn-32790.exe'
2025-03-14 16:25:13,890 [analyzer] INFO: Injected into process with pid 12384 and name u'Unicorn-3538.exe'
2025-03-14 16:25:13,905 [analyzer] INFO: Injected into process with pid 12432 and name u'Unicorn-49326.exe'
2025-03-14 16:25:13,967 [analyzer] INFO: Injected into process with pid 12392 and name u'Unicorn-36874.exe'
2025-03-14 16:25:13,967 [analyzer] INFO: Injected into process with pid 12408 and name u'Unicorn-62191.exe'
2025-03-14 16:25:14,530 [analyzer] INFO: Injected into process with pid 13320 and name u'Unicorn-9659.exe'
2025-03-14 16:25:14,530 [analyzer] INFO: Injected into process with pid 12364 and name u'Unicorn-14124.exe'
2025-03-14 16:25:14,717 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7108.exe
2025-03-14 16:25:16,453 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51360.exe
2025-03-14 16:25:16,483 [analyzer] INFO: Injected into process with pid 13684 and name u'Unicorn-7108.exe'
2025-03-14 16:25:17,217 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42086.exe
2025-03-14 16:25:17,842 [analyzer] INFO: Injected into process with pid 13720 and name u'Unicorn-51360.exe'
2025-03-14 16:25:17,842 [analyzer] INFO: Injected into process with pid 13728 and name u'Unicorn-51360.exe'
2025-03-14 16:25:18,608 [analyzer] INFO: Injected into process with pid 13952 and name u'Unicorn-42086.exe'
2025-03-14 16:25:21,578 [analyzer] INFO: Added new file to list with pid 4376 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11886.exe
2025-03-14 16:25:21,967 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11462.exe
2025-03-14 16:25:22,358 [analyzer] INFO: Injected into process with pid 14012 and name u'Unicorn-11886.exe'
2025-03-14 16:25:22,750 [analyzer] INFO: Injected into process with pid 14044 and name u'Unicorn-11462.exe'
2025-03-14 16:25:27,078 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63800.exe
2025-03-14 16:25:27,108 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12263.exe
2025-03-14 16:25:28,265 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50139.exe
2025-03-14 16:25:29,358 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-788.exe
2025-03-14 16:25:29,390 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22318.exe
2025-03-14 16:25:30,233 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24111.exe
2025-03-14 16:25:30,250 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18511.exe
2025-03-14 16:25:31,062 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61490.exe
2025-03-14 16:25:31,078 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49345.exe
2025-03-14 16:25:31,092 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32279.exe
2025-03-14 16:25:31,108 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18088.exe
2025-03-14 16:25:31,125 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1553.exe
2025-03-14 16:25:31,155 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62625.exe
2025-03-14 16:25:31,171 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18618.exe
2025-03-14 16:25:31,171 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57289.exe
2025-03-14 16:25:31,217 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7687.exe
2025-03-14 16:25:31,233 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57559.exe
2025-03-14 16:25:31,250 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31223.exe
2025-03-14 16:25:31,250 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41023.exe
2025-03-14 16:25:31,265 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58089.exe
2025-03-14 16:25:31,437 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64480.exe
2025-03-14 16:25:31,530 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64012.exe
2025-03-14 16:25:31,625 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13328,13332,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,625 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14332,12500,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,625 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13364,12460,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15271.exe
2025-03-14 16:25:31,671 [analyzer] INFO: Added new file to list with pid 4608 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60267.exe
2025-03-14 16:25:31,671 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15271.exe
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14300,14304,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13344,13348,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13336,13340,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13020,13116,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13360,12444,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12508,13068,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13036,13392,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13308,13260,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14308,14312,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,937 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51951.exe
2025-03-14 16:25:31,953 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13400,13404,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:31,953 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9080.exe
2025-03-14 16:25:31,953 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57552.exe
2025-03-14 16:25:31,967 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8550.exe
2025-03-14 16:25:31,967 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24216.exe
2025-03-14 16:25:32,000 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53086.exe
2025-03-14 16:25:32,125 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47751.exe
2025-03-14 16:25:32,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13352,13356,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '6444,13604,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12340,13108,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13052,13084,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13092,13580,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2348,7208,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14316,14320,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '7264,12316,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13180,13124,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12328,13076,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,280 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14324,14328,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,296 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '8008,12308,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,296 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13428,12376,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,296 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46029.exe
2025-03-14 16:25:32,328 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17824.exe
2025-03-14 16:25:32,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13828,13820,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,328 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20795.exe
2025-03-14 16:25:32,328 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55095.exe
2025-03-14 16:25:32,328 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37861.exe
2025-03-14 16:25:32,328 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40131.exe
2025-03-14 16:25:32,342 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,342 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,358 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,358 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,358 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,358 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24498.exe
2025-03-14 16:25:32,375 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28963.exe
2025-03-14 16:25:32,390 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23363.exe
2025-03-14 16:25:32,390 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19163.exe
2025-03-14 16:25:32,390 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19163.exe
2025-03-14 16:25:32,780 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13996,13964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,812 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13992,13972,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13712,13716,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13836,13832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13980,13988,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14028,14024,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13984,14008,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:32,858 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60696.exe
2025-03-14 16:25:32,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1324,3436,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,046 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34161.exe
2025-03-14 16:25:33,125 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27011.exe
2025-03-14 16:25:33,125 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13011.exe
2025-03-14 16:25:33,125 [analyzer] INFO: Injected into process with pid 14132 and name u'Unicorn-50139.exe'
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14272,1412,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] INFO: Injected into process with pid 14100 and name u'Unicorn-63800.exe'
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14168,14120,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14152,14148,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2848,2700,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14164,14160,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14192,12548,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14140,14144,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14128,2784,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13184,13160,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '6892,13216,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,280 [analyzer] INFO: Injected into process with pid 14108 and name u'Unicorn-12263.exe'
2025-03-14 16:25:33,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13248,14288,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:33,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14260,2420,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:34,640 [analyzer] INFO: Injected into process with pid 14172 and name u'Unicorn-788.exe'
2025-03-14 16:25:34,671 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24207.exe
2025-03-14 16:25:34,687 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51073.exe
2025-03-14 16:25:34,765 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58514.exe
2025-03-14 16:25:34,796 [analyzer] INFO: Added new file to list with pid 4672 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45467.exe
2025-03-14 16:25:34,921 [analyzer] INFO: Injected into process with pid 14180 and name u'Unicorn-22318.exe'
2025-03-14 16:25:35,030 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14472,14476,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:35,046 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14456,14460,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:35,046 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14464,14468,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:35,280 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6617.exe
2025-03-14 16:25:35,421 [analyzer] INFO: Injected into process with pid 14248 and name u'Unicorn-24111.exe'
2025-03-14 16:25:35,437 [analyzer] INFO: Injected into process with pid 12456 and name u'Unicorn-31223.exe'
2025-03-14 16:25:35,453 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14580,14584,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:35,578 [analyzer] INFO: Injected into process with pid 14232 and name u'Unicorn-18511.exe'
2025-03-14 16:25:35,578 [analyzer] INFO: Injected into process with pid 14240 and name u'Unicorn-24111.exe'
2025-03-14 16:25:35,765 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56520.exe
2025-03-14 16:25:35,983 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12647.exe
2025-03-14 16:25:36,015 [analyzer] INFO: Injected into process with pid 13100 and name u'Unicorn-18618.exe'
2025-03-14 16:25:36,280 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14684,14688,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,280 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14700,14704,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,358 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15133.exe
2025-03-14 16:25:36,358 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10933.exe
2025-03-14 16:25:36,546 [analyzer] INFO: Injected into process with pid 13264 and name u'Unicorn-60696.exe'
2025-03-14 16:25:36,562 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14820,14824,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,562 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14836,14840,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,562 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14828,14832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14812,14816,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14844,14848,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:36,640 [analyzer] INFO: Injected into process with pid 12484 and name u'Unicorn-34161.exe'
2025-03-14 16:25:36,937 [analyzer] INFO: Added new file to list with pid 4376 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34501.exe
2025-03-14 16:25:36,983 [analyzer] INFO: Injected into process with pid 14432 and name u'Unicorn-51073.exe'
2025-03-14 16:25:36,983 [analyzer] INFO: Injected into process with pid 14424 and name u'Unicorn-24207.exe'
2025-03-14 16:25:37,358 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20736.exe
2025-03-14 16:25:37,421 [analyzer] INFO: Injected into process with pid 14564 and name u'Unicorn-6617.exe'
2025-03-14 16:25:37,655 [analyzer] INFO: Injected into process with pid 14636 and name u'Unicorn-56520.exe'
2025-03-14 16:25:37,842 [analyzer] INFO: Injected into process with pid 14692 and name u'Unicorn-12647.exe'
2025-03-14 16:25:37,905 [analyzer] INFO: Injected into process with pid 14676 and name u'Unicorn-12647.exe'
2025-03-14 16:25:37,937 [analyzer] INFO: Injected into process with pid 14708 and name u'Unicorn-12647.exe'
2025-03-14 16:25:38,296 [analyzer] INFO: Injected into process with pid 14804 and name u'Unicorn-15133.exe'
2025-03-14 16:25:39,546 [analyzer] INFO: Injected into process with pid 14948 and name u'Unicorn-34501.exe'
2025-03-14 16:25:39,687 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37558.exe
2025-03-14 16:25:40,390 [analyzer] INFO: Injected into process with pid 15016 and name u'Unicorn-20736.exe'
2025-03-14 16:25:40,765 [analyzer] INFO: Added new file to list with pid 4772 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61933.exe
2025-03-14 16:25:40,967 [analyzer] INFO: Added new file to list with pid 4108 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12732.exe
2025-03-14 16:25:41,500 [analyzer] INFO: Added new file to list with pid 4812 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13308.exe
2025-03-14 16:25:42,108 [analyzer] INFO: Injected into process with pid 15088 and name u'Unicorn-37558.exe'
2025-03-14 16:25:43,108 [analyzer] INFO: Injected into process with pid 15116 and name u'Unicorn-61933.exe'
2025-03-14 16:25:44,187 [analyzer] INFO: Injected into process with pid 15140 and name u'Unicorn-12732.exe'
2025-03-14 16:25:45,453 [analyzer] INFO: Injected into process with pid 15176 and name u'Unicorn-13308.exe'
2025-03-14 16:25:45,467 [analyzer] INFO: Added new file to list with pid 4860 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24575.exe
2025-03-14 16:25:48,515 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42407.exe
2025-03-14 16:25:49,140 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56690.exe
2025-03-14 16:25:50,483 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1950.exe
2025-03-14 16:25:50,500 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64422.exe
2025-03-14 16:25:50,562 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45956.exe
2025-03-14 16:25:50,562 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50422.exe
2025-03-14 16:25:50,733 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40621.exe
2025-03-14 16:25:50,780 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45205.exe
2025-03-14 16:25:50,812 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12532,13044,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:50,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12492,14388,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:50,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14080,14228,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:50,890 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23782.exe
2025-03-14 16:25:50,890 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60448.exe
2025-03-14 16:25:51,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '12528,13444,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13200,13432,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,405 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35752.exe
2025-03-14 16:25:51,421 [analyzer] INFO: Added new file to list with pid 3588 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20616.exe
2025-03-14 16:25:51,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13668,13560,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13480,11900,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,578 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42064.exe
2025-03-14 16:25:51,592 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13193.exe
2025-03-14 16:25:51,655 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13504,13556,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '792,14528,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14552,14560,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14532,14548,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:51,733 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23884.exe
2025-03-14 16:25:52,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1084,14040,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,108 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14352,12292,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '3016,14556,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14360,13456,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14364,14368,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14488,14632,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:52,453 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5012.exe
2025-03-14 16:25:52,500 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49018.exe
2025-03-14 16:25:52,515 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18484.exe
2025-03-14 16:25:52,515 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40015.exe
2025-03-14 16:25:52,530 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52350.exe
2025-03-14 16:25:52,530 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4749.exe
2025-03-14 16:25:52,592 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49202.exe
2025-03-14 16:25:52,608 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30736.exe
2025-03-14 16:25:52,625 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29601.exe
2025-03-14 16:25:52,640 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1865.exe
2025-03-14 16:25:52,687 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37960.exe
2025-03-14 16:25:52,717 [analyzer] INFO: Injected into process with pid 15260 and name u'Unicorn-24575.exe'
2025-03-14 16:25:52,828 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15211.exe
2025-03-14 16:25:52,858 [analyzer] INFO: Added new file to list with pid 4608 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53054.exe
2025-03-14 16:25:52,858 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46012.exe
2025-03-14 16:25:52,890 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16346.exe
2025-03-14 16:25:52,921 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11011.exe
2025-03-14 16:25:52,953 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45629.exe
2025-03-14 16:25:52,953 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14924,14928,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14932,14936,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14628,14760,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14940,14944,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,015 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14648,14656,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,046 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24322.exe
2025-03-14 16:25:53,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14664,14964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14720,14792,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14728,14744,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14752,14772,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,187 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14768,14784,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14992,15028,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15096,15080,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15072,15036,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15084,15068,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15104,15112,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,358 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15148,15108,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,390 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15172,15196,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,390 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56006.exe
2025-03-14 16:25:53,421 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7534.exe
2025-03-14 16:25:53,437 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22670.exe
2025-03-14 16:25:53,453 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46205.exe
2025-03-14 16:25:53,483 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51540.exe
2025-03-14 16:25:53,640 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35204.exe
2025-03-14 16:25:53,640 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29869.exe
2025-03-14 16:25:53,717 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '7340,14280,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,717 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15132,15128,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,780 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15168,15164,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15344,15136,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15216,15244,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15192,15188,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:53,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15240,15228,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,342 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14500,14516,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,358 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27539.exe
2025-03-14 16:25:54,405 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32874.exe
2025-03-14 16:25:54,421 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14544,14600,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,437 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25709.exe
2025-03-14 16:25:54,467 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13564.exe
2025-03-14 16:25:54,467 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13644,14092,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,483 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63510.exe
2025-03-14 16:25:54,500 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14032,13552,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,500 [analyzer] INFO: Added new file to list with pid 5116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48375.exe
2025-03-14 16:25:54,500 [analyzer] INFO: Injected into process with pid 15288 and name u'Unicorn-42407.exe'
2025-03-14 16:25:54,515 [analyzer] INFO: Added new file to list with pid 3168 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28700.exe
2025-03-14 16:25:54,562 [analyzer] INFO: Added new file to list with pid 4672 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57330.exe
2025-03-14 16:25:54,655 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14084,14444,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,780 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15368,15372,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,796 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15400,15404,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,812 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3727.exe
2025-03-14 16:25:54,812 [analyzer] INFO: Added new file to list with pid 4616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14927.exe
2025-03-14 16:25:54,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15408,15412,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15416,15420,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:54,890 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23955.exe
2025-03-14 16:25:54,921 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61756.exe
2025-03-14 16:25:55,000 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25090.exe
2025-03-14 16:25:55,030 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15380,15384,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,078 [analyzer] INFO: Injected into process with pid 15308 and name u'Unicorn-56690.exe'
2025-03-14 16:25:55,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15516,15520,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15532,15536,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,592 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15508,15512,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,608 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15548,15552,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,608 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15540,15544,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,608 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15560,15564,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:55,655 [analyzer] INFO: Injected into process with pid 15352 and name u'Unicorn-1950.exe'
2025-03-14 16:25:55,765 [analyzer] INFO: Injected into process with pid 13464 and name u'Unicorn-1950.exe'
2025-03-14 16:25:55,828 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20255.exe
2025-03-14 16:25:55,828 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21390.exe
2025-03-14 16:25:55,875 [analyzer] INFO: Injected into process with pid 12520 and name u'Unicorn-64422.exe'
2025-03-14 16:25:55,875 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30800.exe
2025-03-14 16:25:56,250 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43666.exe
2025-03-14 16:25:56,375 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25384.exe
2025-03-14 16:25:56,437 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15736,15740,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:56,500 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6909.exe
2025-03-14 16:25:56,578 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15744,15748,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:56,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15788,15792,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:56,717 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15828,15832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:56,717 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15820,15824,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:56,733 [analyzer] INFO: Added new file to list with pid 4376 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10764.exe
2025-03-14 16:25:57,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15880,15884,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:25:57,155 [analyzer] INFO: Injected into process with pid 14592 and name u'Unicorn-5012.exe'
2025-03-14 16:25:57,265 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26434.exe
2025-03-14 16:25:57,280 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21099.exe
2025-03-14 16:25:57,515 [analyzer] INFO: Injected into process with pid 14616 and name u'Unicorn-5012.exe'
2025-03-14 16:25:57,530 [analyzer] INFO: Injected into process with pid 15044 and name u'Unicorn-53054.exe'
2025-03-14 16:25:58,030 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42762.exe
2025-03-14 16:25:58,733 [analyzer] INFO: Added new file to list with pid 4888 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25831.exe
2025-03-14 16:25:59,000 [analyzer] INFO: Added new file to list with pid 5420 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-7356.exe
2025-03-14 16:25:59,125 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52986.exe
2025-03-14 16:25:59,405 [analyzer] INFO: Injected into process with pid 15484 and name u'Unicorn-3727.exe'
2025-03-14 16:25:59,405 [analyzer] INFO: Injected into process with pid 15524 and name u'Unicorn-61756.exe'
2025-03-14 16:25:59,421 [analyzer] INFO: Injected into process with pid 15492 and name u'Unicorn-14927.exe'
2025-03-14 16:25:59,796 [analyzer] INFO: Injected into process with pid 15728 and name u'Unicorn-21390.exe'
2025-03-14 16:25:59,796 [analyzer] INFO: Injected into process with pid 15720 and name u'Unicorn-20255.exe'
2025-03-14 16:25:59,953 [analyzer] INFO: Added new file to list with pid 4108 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39213.exe
2025-03-14 16:26:00,078 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59866.exe
2025-03-14 16:26:00,750 [analyzer] INFO: Injected into process with pid 15908 and name u'Unicorn-26434.exe'
2025-03-14 16:26:00,796 [analyzer] INFO: Injected into process with pid 15916 and name u'Unicorn-21099.exe'
2025-03-14 16:26:00,858 [analyzer] INFO: Added new file to list with pid 6192 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12208.exe
2025-03-14 16:26:01,905 [analyzer] INFO: Injected into process with pid 15996 and name u'Unicorn-42762.exe'
2025-03-14 16:26:02,578 [analyzer] INFO: Injected into process with pid 16028 and name u'Unicorn-25831.exe'
2025-03-14 16:26:02,750 [analyzer] INFO: Added new file to list with pid 4812 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60978.exe
2025-03-14 16:26:02,842 [analyzer] INFO: Injected into process with pid 16052 and name u'Unicorn-7356.exe'
2025-03-14 16:26:02,875 [analyzer] INFO: Injected into process with pid 16068 and name u'Unicorn-52986.exe'
2025-03-14 16:26:03,828 [analyzer] INFO: Added new file to list with pid 4976 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41757.exe
2025-03-14 16:26:04,765 [analyzer] INFO: Added new file to list with pid 5024 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40579.exe
2025-03-14 16:26:04,890 [analyzer] INFO: Injected into process with pid 16140 and name u'Unicorn-39213.exe'
2025-03-14 16:26:04,890 [analyzer] INFO: Injected into process with pid 16148 and name u'Unicorn-39213.exe'
2025-03-14 16:26:05,280 [analyzer] INFO: Injected into process with pid 16172 and name u'Unicorn-59866.exe'
2025-03-14 16:26:06,530 [analyzer] INFO: Added new file to list with pid 4948 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49131.exe
2025-03-14 16:26:06,562 [analyzer] INFO: Added new file to list with pid 4924 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18405.exe
2025-03-14 16:26:07,187 [analyzer] INFO: Injected into process with pid 16244 and name u'Unicorn-12208.exe'
2025-03-14 16:26:10,812 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26171.exe
2025-03-14 16:26:10,828 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63972.exe
2025-03-14 16:26:10,842 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21971.exe
2025-03-14 16:26:10,953 [analyzer] INFO: Injected into process with pid 16308 and name u'Unicorn-60978.exe'
2025-03-14 16:26:11,296 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-32584.exe
2025-03-14 16:26:11,530 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53081.exe
2025-03-14 16:26:11,530 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14410.exe
2025-03-14 16:26:11,967 [analyzer] INFO: Injected into process with pid 16336 and name u'Unicorn-41757.exe'
2025-03-14 16:26:12,046 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42080.exe
2025-03-14 16:26:12,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13512,13536,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:12,171 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29819.exe
2025-03-14 16:26:12,203 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6019.exe
2025-03-14 16:26:12,217 [analyzer] INFO: Added new file to list with pid 3588 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45972.exe
2025-03-14 16:26:12,265 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33711.exe
2025-03-14 16:26:12,296 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40637.exe
2025-03-14 16:26:12,342 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15864,15868,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:12,467 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22739.exe
2025-03-14 16:26:12,467 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15636,15468,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:12,483 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15612,15604,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:12,483 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5516.exe
2025-03-14 16:26:12,483 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15620,15588,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:12,483 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65014.exe
2025-03-14 16:26:12,483 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33591.exe
2025-03-14 16:26:12,500 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65014.exe
2025-03-14 16:26:12,500 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65014.exe
2025-03-14 16:26:13,046 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15596,15580,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,046 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15652,15876,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,078 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15309.exe
2025-03-14 16:26:13,405 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24877.exe
2025-03-14 16:26:13,500 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15784,15812,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,500 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15800,15796,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,578 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9509.exe
2025-03-14 16:26:13,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15760,15776,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15804,15808,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15936,15928,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15952,15964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:13,967 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-9090.exe
2025-03-14 16:26:14,062 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16100,15984,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,140 [analyzer] INFO: Injected into process with pid 16380 and name u'Unicorn-40579.exe'
2025-03-14 16:26:14,155 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29269.exe
2025-03-14 16:26:14,155 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1533.exe
2025-03-14 16:26:14,171 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51405.exe
2025-03-14 16:26:14,187 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25069.exe
2025-03-14 16:26:14,250 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18143.exe
2025-03-14 16:26:14,296 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40428.exe
2025-03-14 16:26:14,296 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63964.exe
2025-03-14 16:26:14,342 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2627.exe
2025-03-14 16:26:14,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16092,16104,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,592 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15339.exe
2025-03-14 16:26:14,592 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39140.exe
2025-03-14 16:26:14,625 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-42205.exe
2025-03-14 16:26:14,655 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20674.exe
2025-03-14 16:26:14,671 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54540.exe
2025-03-14 16:26:14,812 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16128,16216,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,828 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16252,16136,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,875 [analyzer] INFO: Added new file to list with pid 4860 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24709.exe
2025-03-14 16:26:14,905 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16168,16184,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16196,16188,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16164,16192,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1272,16224,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16212,16220,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16272,16204,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:14,967 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64540.exe
2025-03-14 16:26:14,983 [analyzer] INFO: Injected into process with pid 15556 and name u'Unicorn-18405.exe'
2025-03-14 16:26:15,000 [analyzer] INFO: Injected into process with pid 15500 and name u'Unicorn-49131.exe'
2025-03-14 16:26:15,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16320,14780,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:15,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14668,15296,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:15,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16368,16372,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:15,250 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16364,14912,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:15,265 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39767.exe
2025-03-14 16:26:15,296 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40902.exe
2025-03-14 16:26:15,375 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2792,15432,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:15,390 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35567.exe
2025-03-14 16:26:15,483 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17285.exe
2025-03-14 16:26:15,608 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3011.exe
2025-03-14 16:26:15,640 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22611.exe
2025-03-14 16:26:16,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16348,15480,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:16,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16108,16036,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:16,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '15236,15304,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:16,265 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-49556.exe
2025-03-14 16:26:16,342 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54425.exe
2025-03-14 16:26:16,342 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30890.exe
2025-03-14 16:26:16,405 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12689.exe
2025-03-14 16:26:16,421 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31172.exe
2025-03-14 16:26:16,453 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64848.exe
2025-03-14 16:26:16,467 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18911.exe
2025-03-14 16:26:16,483 [analyzer] INFO: Added new file to list with pid 4672 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24246.exe
2025-03-14 16:26:16,515 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37112.exe
2025-03-14 16:26:16,562 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-446.exe
2025-03-14 16:26:16,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '14376,15156,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:16,780 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56252.exe
2025-03-14 16:26:16,780 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24582.exe
2025-03-14 16:26:16,780 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27382.exe
2025-03-14 16:26:16,780 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1364,14620,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,015 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16488,16492,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,015 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16496,16500,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,015 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16480,16484,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,030 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16528,16532,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,030 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51968.exe
2025-03-14 16:26:17,030 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16536,16540,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,062 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16512,16516,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,078 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16504,16508,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,078 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16552,16556,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,092 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16520,16524,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,108 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16568,16572,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,125 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60136.exe
2025-03-14 16:26:17,155 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5799.exe
2025-03-14 16:26:17,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16584,16588,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16560,16564,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16576,16580,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16544,16548,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,233 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-50030.exe
2025-03-14 16:26:17,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16592,16596,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,296 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16612,16616,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16692,16696,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16636,16640,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,405 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16784,16788,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,421 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23379.exe
2025-03-14 16:26:17,592 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16864,16868,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,608 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16828,16832,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,671 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16836,16840,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,937 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16920,16924,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,937 [analyzer] INFO: Added new file to list with pid 4376 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39240.exe
2025-03-14 16:26:17,937 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16928,16932,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:17,953 [analyzer] INFO: Added new file to list with pid 5076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45727.exe
2025-03-14 16:26:18,046 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29802.exe
2025-03-14 16:26:18,078 [analyzer] INFO: Added new file to list with pid 4608 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53603.exe
2025-03-14 16:26:18,140 [analyzer] INFO: Injected into process with pid 14412 and name u'Unicorn-21971.exe'
2025-03-14 16:26:18,140 [analyzer] INFO: Injected into process with pid 14976 and name u'Unicorn-63972.exe'
2025-03-14 16:26:18,171 [analyzer] INFO: Injected into process with pid 14972 and name u'Unicorn-26171.exe'
2025-03-14 16:26:18,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17020,17024,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:18,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17012,17016,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:18,405 [analyzer] INFO: Injected into process with pid 15476 and name u'Unicorn-14410.exe'
2025-03-14 16:26:18,467 [analyzer] INFO: Injected into process with pid 2456 and name u'Unicorn-53081.exe'
2025-03-14 16:26:18,483 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14929.exe
2025-03-14 16:26:18,500 [analyzer] INFO: Injected into process with pid 14380 and name u'Unicorn-32584.exe'
2025-03-14 16:26:18,578 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23097.exe
2025-03-14 16:26:18,578 [analyzer] INFO: Added new file to list with pid 4616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52233.exe
2025-03-14 16:26:18,608 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46898.exe
2025-03-14 16:26:18,640 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65098.exe
2025-03-14 16:26:18,687 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61014.exe
2025-03-14 16:26:18,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17136,17140,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:18,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17120,17124,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:18,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17144,17148,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:18,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17152,17156,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:19,046 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23212.exe
2025-03-14 16:26:19,250 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31189.exe
2025-03-14 16:26:19,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17256,17260,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:19,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17248,17252,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:19,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17264,17268,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:19,467 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17296,17300,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:20,233 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13481.exe
2025-03-14 16:26:20,250 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63618.exe
2025-03-14 16:26:20,467 [analyzer] INFO: Added new file to list with pid 4888 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33043.exe
2025-03-14 16:26:20,530 [analyzer] INFO: Injected into process with pid 14872 and name u'Unicorn-17285.exe'
2025-03-14 16:26:20,608 [analyzer] INFO: Injected into process with pid 14960 and name u'Unicorn-35567.exe'
2025-03-14 16:26:20,733 [analyzer] INFO: Injected into process with pid 15436 and name u'Unicorn-40902.exe'
2025-03-14 16:26:21,217 [analyzer] INFO: Added new file to list with pid 4772 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8268.exe
2025-03-14 16:26:21,328 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30586.exe
2025-03-14 16:26:21,405 [analyzer] INFO: Injected into process with pid 16992 and name u'Unicorn-45727.exe'
2025-03-14 16:26:21,421 [analyzer] INFO: Injected into process with pid 16984 and name u'Unicorn-39240.exe'
2025-03-14 16:26:21,655 [analyzer] INFO: Injected into process with pid 17128 and name u'Unicorn-52233.exe'
2025-03-14 16:26:21,655 [analyzer] INFO: Injected into process with pid 17088 and name u'Unicorn-14929.exe'
2025-03-14 16:26:21,671 [analyzer] INFO: Added new file to list with pid 5420 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63962.exe
2025-03-14 16:26:22,437 [analyzer] INFO: Injected into process with pid 17384 and name u'Unicorn-63618.exe'
2025-03-14 16:26:22,530 [analyzer] INFO: Injected into process with pid 17376 and name u'Unicorn-13481.exe'
2025-03-14 16:26:22,546 [analyzer] INFO: Injected into process with pid 15460 and name u'Unicorn-33043.exe'
2025-03-14 16:26:22,640 [analyzer] INFO: Analysis timeout hit, terminating analysis.
2025-03-14 16:26:22,671 [analyzer] INFO: Added new file to list with pid 6192 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25643.exe
2025-03-14 16:26:23,717 [analyzer] INFO: Injected into process with pid 16796 and name u'Unicorn-8268.exe'
2025-03-14 16:26:23,842 [analyzer] INFO: Injected into process with pid 16804 and name u'Unicorn-8268.exe'
2025-03-14 16:26:23,937 [analyzer] INFO: Injected into process with pid 16852 and name u'Unicorn-30586.exe'
2025-03-14 16:26:24,453 [analyzer] INFO: Injected into process with pid 15968 and name u'Unicorn-63962.exe'
2025-03-14 16:26:24,687 [analyzer] INFO: Added new file to list with pid 5500 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64715.exe
2025-03-14 16:26:25,640 [analyzer] INFO: Added new file to list with pid 4812 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38549.exe
2025-03-14 16:26:25,671 [analyzer] INFO: Added new file to list with pid 5936 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48763.exe
2025-03-14 16:26:26,171 [analyzer] INFO: Injected into process with pid 16456 and name u'Unicorn-25643.exe'
2025-03-14 16:26:27,280 [analyzer] INFO: Added new file to list with pid 4976 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37257.exe
2025-03-14 16:26:27,296 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56356.exe
2025-03-14 16:26:27,328 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51021.exe
2025-03-14 16:26:29,140 [analyzer] INFO: Added new file to list with pid 5828 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2129.exe
2025-03-14 16:26:29,155 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-37130.exe
2025-03-14 16:26:29,217 [analyzer] INFO: Added new file to list with pid 3588 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63466.exe
2025-03-14 16:26:29,515 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4495.exe
2025-03-14 16:26:29,546 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12895.exe
2025-03-14 16:26:29,687 [analyzer] INFO: Injected into process with pid 11708 and name u'Unicorn-64715.exe'
2025-03-14 16:26:30,015 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30945.exe
2025-03-14 16:26:30,046 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '1408,12084,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:30,046 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12819.exe
2025-03-14 16:26:30,078 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17412,17416,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:30,108 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47820.exe
2025-03-14 16:26:30,140 [analyzer] INFO: Added new file to list with pid 3876 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21178.exe
2025-03-14 16:26:30,842 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63966.exe
2025-03-14 16:26:30,842 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-59882.exe
2025-03-14 16:26:31,108 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17460,17464,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,078 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17472,17476,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17492,17496,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17484,17488,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,203 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17520,17524,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,405 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17512,17516,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:32,983 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41932.exe
2025-03-14 16:26:33,280 [analyzer] INFO: Injected into process with pid 908 and name u'Unicorn-38549.exe'
2025-03-14 16:26:33,296 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61531.exe
2025-03-14 16:26:33,390 [analyzer] INFO: Injected into process with pid 9180 and name u'Unicorn-48763.exe'
2025-03-14 16:26:33,967 [analyzer] INFO: Added new file to list with pid 4016 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5559.exe
2025-03-14 16:26:34,405 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56904.exe
2025-03-14 16:26:35,250 [analyzer] INFO: Added new file to list with pid 3968 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16877.exe
2025-03-14 16:26:35,265 [analyzer] INFO: Added new file to list with pid 4000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54678.exe
2025-03-14 16:26:35,453 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36478.exe
2025-03-14 16:26:35,500 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51687.exe
2025-03-14 16:26:35,500 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21152.exe
2025-03-14 16:26:35,671 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1393.exe
2025-03-14 16:26:36,171 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34219.exe
2025-03-14 16:26:36,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17776,17780,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:36,312 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62262.exe
2025-03-14 16:26:36,328 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2060.exe
2025-03-14 16:26:36,483 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17816,17820,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:36,500 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17792,17796,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:36,500 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17784,17788,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:36,515 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4817.exe
2025-03-14 16:26:36,592 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58678.exe
2025-03-14 16:26:36,592 [analyzer] INFO: Added new file to list with pid 4860 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-18076.exe
2025-03-14 16:26:36,625 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19398.exe
2025-03-14 16:26:36,640 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30942.exe
2025-03-14 16:26:36,967 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17880,17884,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:36,983 [analyzer] INFO: Injected into process with pid 592 and name u'Unicorn-37257.exe'
2025-03-14 16:26:36,983 [analyzer] INFO: Injected into process with pid 1012 and name u'Unicorn-56356.exe'
2025-03-14 16:26:36,983 [analyzer] INFO: Injected into process with pid 2056 and name u'Unicorn-51021.exe'
2025-03-14 16:26:36,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17900,17904,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,000 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17892,17896,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,108 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17928,17932,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17960,17964,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17976,17980,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,217 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17968,17972,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17952,17956,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:37,296 [analyzer] INFO: Added new file to list with pid 4924 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30791.exe
2025-03-14 16:26:37,640 [analyzer] INFO: Added new file to list with pid 5700 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48831.exe
2025-03-14 16:26:37,967 [analyzer] INFO: Added new file to list with pid 4948 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23007.exe
2025-03-14 16:26:38,015 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31134.exe
2025-03-14 16:26:38,030 [analyzer] INFO: Added new file to list with pid 2352 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28334.exe
2025-03-14 16:26:38,108 [analyzer] INFO: Added new file to list with pid 4384 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23943.exe
2025-03-14 16:26:38,171 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63144.exe
2025-03-14 16:26:38,187 [analyzer] INFO: Added new file to list with pid 5024 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47512.exe
2025-03-14 16:26:38,250 [analyzer] INFO: Injected into process with pid 888 and name u'Unicorn-63466.exe'
2025-03-14 16:26:38,280 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24681.exe
2025-03-14 16:26:38,312 [analyzer] INFO: Added new file to list with pid 5116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26081.exe
2025-03-14 16:26:38,467 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-19155.exe
2025-03-14 16:26:38,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18180,18184,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18164,18168,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,875 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18172,18176,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18188,18192,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,967 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18124,18128,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,967 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18140,18144,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:38,983 [analyzer] INFO: Injected into process with pid 16648 and name u'Unicorn-2129.exe'
2025-03-14 16:26:38,983 [analyzer] INFO: Injected into process with pid 2252 and name u'Unicorn-37130.exe'
2025-03-14 16:26:38,983 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53966.exe
2025-03-14 16:26:38,983 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30165.exe
2025-03-14 16:26:39,000 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3829.exe
2025-03-14 16:26:39,000 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53966.exe
2025-03-14 16:26:39,015 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30165.exe
2025-03-14 16:26:39,015 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53966.exe
2025-03-14 16:26:39,015 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3829.exe
2025-03-14 16:26:39,030 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-3829.exe
2025-03-14 16:26:39,046 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-6629.exe
2025-03-14 16:26:39,108 [analyzer] INFO: Added new file to list with pid 4672 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65166.exe
2025-03-14 16:26:39,140 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56501.exe
2025-03-14 16:26:39,171 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34365.exe
2025-03-14 16:26:39,233 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18260,18264,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,296 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44236.exe
2025-03-14 16:26:39,328 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-321.exe
2025-03-14 16:26:39,437 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18212,18216,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,437 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18220,18224,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,483 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14711.exe
2025-03-14 16:26:39,592 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18356,18360,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,592 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18364,18368,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,592 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18348,18352,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,608 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18372,18376,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,687 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52788.exe
2025-03-14 16:26:39,703 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-5451.exe
2025-03-14 16:26:39,717 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-10705.exe
2025-03-14 16:26:39,750 [analyzer] INFO: Added new file to list with pid 4276 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33187.exe
2025-03-14 16:26:39,765 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16040.exe
2025-03-14 16:26:39,796 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14905.exe
2025-03-14 16:26:39,812 [analyzer] INFO: Added new file to list with pid 4608 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45706.exe
2025-03-14 16:26:39,921 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18412,18416,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,967 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '13948,8212,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,953 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18396,18400,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,967 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18388,18392,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18404,18408,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18380,18384,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:39,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18424,18428,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,125 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17552,16656,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,155 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-323.exe
2025-03-14 16:26:40,171 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2269.exe
2025-03-14 16:26:40,171 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62205.exe
2025-03-14 16:26:40,203 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21869.exe
2025-03-14 16:26:40,265 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '936,17432,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17888,17508,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17428,17448,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17908,17920,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,312 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17456,17532,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11940,17500,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,328 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17568,17580,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,358 [analyzer] INFO: Added new file to list with pid 2884 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2891.exe
2025-03-14 16:26:40,358 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2891.exe
2025-03-14 16:26:40,375 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-43492.exe
2025-03-14 16:26:40,483 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-13115.exe
2025-03-14 16:26:40,483 [analyzer] INFO: Injected into process with pid 17636 and name u'Unicorn-61531.exe'
2025-03-14 16:26:40,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '4352,13424,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18284,18288,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,515 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18292,18296,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,530 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18308,17736,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,546 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17840,2488,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:40,562 [analyzer] INFO: Injected into process with pid 17624 and name u'Unicorn-41932.exe'
2025-03-14 16:26:40,592 [analyzer] INFO: Added new file to list with pid 4156 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24274.exe
2025-03-14 16:26:40,687 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17876,17924,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:41,171 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17860,17864,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:41,187 [analyzer] INFO: Injected into process with pid 17676 and name u'Unicorn-5559.exe'
2025-03-14 16:26:41,203 [analyzer] INFO: Added new file to list with pid 3980 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39565.exe
2025-03-14 16:26:41,233 [analyzer] INFO: Added new file to list with pid 4616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4829.exe
2025-03-14 16:26:41,296 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35365.exe
2025-03-14 16:26:41,515 [analyzer] INFO: Added new file to list with pid 5076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2141.exe
2025-03-14 16:26:41,546 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25942.exe
2025-03-14 16:26:41,640 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18420,18120,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:41,640 [analyzer] INFO: Injected into process with pid 17692 and name u'Unicorn-56904.exe'
2025-03-14 16:26:41,858 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18272,18248,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:41,858 [analyzer] INFO: Added new file to list with pid 4068 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-26181.exe
2025-03-14 16:26:41,858 [analyzer] INFO: Added new file to list with pid 4888 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56717.exe
2025-03-14 16:26:41,905 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18208,18200,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:42,108 [analyzer] INFO: Added new file to list with pid 4108 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-56360.exe
2025-03-14 16:26:42,328 [analyzer] INFO: Injected into process with pid 17768 and name u'Unicorn-54678.exe'
2025-03-14 16:26:42,890 [analyzer] INFO: Injected into process with pid 17760 and name u'Unicorn-16877.exe'
2025-03-14 16:26:42,983 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '11364,18436,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:43,046 [analyzer] INFO: Added new file to list with pid 2620 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24619.exe
2025-03-14 16:26:43,062 [analyzer] INFO: Added new file to list with pid 4772 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61020.exe
2025-03-14 16:26:43,092 [analyzer] INFO: Added new file to list with pid 5420 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-55155.exe
2025-03-14 16:26:43,405 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18488,18492,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:43,421 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18480,18484,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:43,437 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18496,18500,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:43,453 [analyzer] INFO: Injected into process with pid 18056 and name u'Unicorn-30791.exe'
2025-03-14 16:26:43,608 [analyzer] INFO: Added new file to list with pid 4188 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39303.exe
2025-03-14 16:26:43,750 [analyzer] INFO: Added new file to list with pid 6192 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14698.exe
2025-03-14 16:26:43,842 [analyzer] INFO: Injected into process with pid 18108 and name u'Unicorn-48831.exe'
2025-03-14 16:26:44,125 [analyzer] INFO: Injected into process with pid 18156 and name u'Unicorn-28334.exe'
2025-03-14 16:26:44,296 [analyzer] INFO: Added new file to list with pid 4232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45377.exe
2025-03-14 16:26:44,296 [analyzer] INFO: Added new file to list with pid 3388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-39777.exe
2025-03-14 16:26:44,358 [analyzer] INFO: Added new file to list with pid 3448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14841.exe
2025-03-14 16:26:44,358 [analyzer] INFO: Added new file to list with pid 4376 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-1976.exe
2025-03-14 16:26:44,530 [analyzer] INFO: Added new file to list with pid 3660 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-23010.exe
2025-03-14 16:26:44,562 [analyzer] INFO: Added new file to list with pid 3316 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-47945.exe
2025-03-14 16:26:45,062 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18656,18660,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:45,140 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18680,18684,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:45,155 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18688,18692,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:45,437 [analyzer] INFO: Added new file to list with pid 3920 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-58204.exe
2025-03-14 16:26:45,625 [analyzer] INFO: Added new file to list with pid 2428 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-57857.exe
2025-03-14 16:26:45,703 [analyzer] INFO: Injected into process with pid 17420 and name u'Unicorn-2891.exe'
2025-03-14 16:26:45,812 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18800,18804,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:45,890 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18812,18816,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:46,092 [analyzer] INFO: Injected into process with pid 17992 and name u'Unicorn-24274.exe'
2025-03-14 16:26:46,233 [analyzer] INFO: Injected into process with pid 18012 and name u'Unicorn-39565.exe'
2025-03-14 16:26:46,358 [analyzer] INFO: Injected into process with pid 18092 and name u'Unicorn-4829.exe'
2025-03-14 16:26:46,453 [analyzer] INFO: Added new file to list with pid 1904 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-48332.exe
2025-03-14 16:26:46,500 [analyzer] INFO: Added new file to list with pid 5500 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-20589.exe
2025-03-14 16:26:46,640 [analyzer] INFO: Injected into process with pid 18328 and name u'Unicorn-56717.exe'
2025-03-14 16:26:46,640 [analyzer] INFO: Injected into process with pid 17572 and name u'Unicorn-26181.exe'
2025-03-14 16:26:46,703 [analyzer] INFO: Added new file to list with pid 4508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-64620.exe
2025-03-14 16:26:47,233 [analyzer] INFO: Added new file to list with pid 2808 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63106.exe
2025-03-14 16:26:47,453 [analyzer] INFO: Added new file to list with pid 2184 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53181.exe
2025-03-14 16:26:47,453 [analyzer] INFO: Added new file to list with pid 4076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-31046.exe
2025-03-14 16:26:47,467 [analyzer] INFO: Injected into process with pid 18556 and name u'Unicorn-39303.exe'
2025-03-14 16:26:47,515 [analyzer] INFO: Injected into process with pid 18572 and name u'Unicorn-14698.exe'
2025-03-14 16:26:47,671 [analyzer] INFO: Added new file to list with pid 5784 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-25016.exe
2025-03-14 16:26:47,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19016,19020,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 713, in _communicate
    stderr_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:47,703 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19008,19012,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:47,796 [analyzer] INFO: Added new file to list with pid 4424 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53412.exe
2025-03-14 16:26:47,937 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19080,19084,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:47,983 [analyzer] INFO: Injected into process with pid 18640 and name u'Unicorn-45377.exe'
2025-03-14 16:26:48,000 [analyzer] INFO: Injected into process with pid 18648 and name u'Unicorn-39777.exe'
2025-03-14 16:26:48,046 [analyzer] INFO: Injected into process with pid 18664 and name u'Unicorn-1976.exe'
2025-03-14 16:26:48,342 [analyzer] INFO: Added new file to list with pid 4812 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60802.exe
2025-03-14 16:26:49,140 [analyzer] INFO: Added new file to list with pid 5936 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-62006.exe
2025-03-14 16:26:50,375 [analyzer] INFO: Injected into process with pid 18880 and name u'Unicorn-48332.exe'
2025-03-14 16:26:50,546 [analyzer] INFO: Injected into process with pid 18944 and name u'Unicorn-64620.exe'
2025-03-14 16:26:50,562 [analyzer] INFO: Injected into process with pid 18888 and name u'Unicorn-20589.exe'
2025-03-14 16:26:51,967 [analyzer] INFO: Injected into process with pid 18984 and name u'Unicorn-63106.exe'
2025-03-14 16:26:52,483 [analyzer] INFO: Injected into process with pid 19000 and name u'Unicorn-53181.exe'
2025-03-14 16:26:52,625 [analyzer] INFO: Injected into process with pid 19096 and name u'Unicorn-53412.exe'
2025-03-14 16:26:52,671 [analyzer] INFO: Added new file to list with pid 3252 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15967.exe
2025-03-14 16:26:55,187 [analyzer] INFO: Added new file to list with pid 3380 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12315.exe
2025-03-14 16:26:55,390 [analyzer] INFO: Injected into process with pid 19156 and name u'Unicorn-60802.exe'
2025-03-14 16:26:55,515 [analyzer] INFO: Added new file to list with pid 3628 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-34007.exe
2025-03-14 16:26:55,530 [analyzer] INFO: Added new file to list with pid 3232 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52208.exe
2025-03-14 16:26:56,250 [analyzer] INFO: Added new file to list with pid 4976 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41865.exe
2025-03-14 16:26:56,296 [analyzer] INFO: Added new file to list with pid 5476 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-12729.exe
2025-03-14 16:26:56,312 [analyzer] INFO: Added new file to list with pid 1504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-4328.exe
2025-03-14 16:26:56,312 [analyzer] INFO: Added new file to list with pid 6280 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16929.exe
2025-03-14 16:26:56,890 [analyzer] INFO: Added new file to list with pid 4860 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15213.exe
2025-03-14 16:26:56,937 [analyzer] INFO: Added new file to list with pid 1448 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41665.exe
2025-03-14 16:26:56,953 [analyzer] INFO: Added new file to list with pid 4332 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-45865.exe
2025-03-14 16:26:56,953 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19388,19392,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:56,967 [analyzer] INFO: Injected into process with pid 19180 and name u'Unicorn-62006.exe'
2025-03-14 16:26:57,015 [analyzer] INFO: Added new file to list with pid 3372 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38742.exe
2025-03-14 16:26:57,187 [analyzer] INFO: Added new file to list with pid 5788 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16184.exe
2025-03-14 16:26:57,217 [analyzer] INFO: Added new file to list with pid 3840 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63520.exe
2025-03-14 16:26:57,233 [analyzer] INFO: Added new file to list with pid 2484 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-38319.exe
2025-03-14 16:26:57,296 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19372,19376,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,453 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '19452,17620,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,733 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '16672,17984,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,733 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17672,18344,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,750 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '17688,17668,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,750 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '324,13436,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,750 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '2652,12524,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:57,750 [analyzer] ERROR: Pipe command handler exception occurred (command PROCESS2 args '18320,18048,0').
Traceback (most recent call last):
  File "C:/tmpk4d6bl/analyzer.py", line 412, in dispatch
    response = fn(arguments)
  File "C:/tmpk4d6bl/analyzer.py", line 314, in _handle_process2
    return self._inject_process(int(pid), int(tid), int(mode))
  File "C:/tmpk4d6bl/analyzer.py", line 282, in _inject_process
    proc.inject(dll, apc=True, mode="%s" % mode)
  File "C:\tmpk4d6bl\lib\api\process.py", line 440, in inject
    is32bit = self.is32bit(pid=self.pid)
  File "C:\tmpk4d6bl\lib\api\process.py", line 272, in is32bit
    bitsize = int(subprocess_checkoutput(args))
  File "C:\tmpk4d6bl\lib\api\process.py", line 105, in subprocess_checkoutput
    args, stdin=subprocess.PIPE, stderr=subprocess.PIPE, env=env,
  File "C:\Python27\lib\subprocess.py", line 213, in check_output
    output, unused_err = process.communicate()
  File "C:\Python27\lib\subprocess.py", line 479, in communicate
    return self._communicate(input)
  File "C:\Python27\lib\subprocess.py", line 707, in _communicate
    stdout_thread.start()
  File "C:\Python27\lib\threading.py", line 736, in start
    _start_new_thread(self.__bootstrap, ())
error: can't start new thread
2025-03-14 16:26:59,717 [analyzer] INFO: Added new file to list with pid 3440 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-40987.exe
2025-03-14 16:26:59,733 [analyzer] INFO: Added new file to list with pid 3732 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60588.exe
2025-03-14 16:26:59,765 [analyzer] INFO: Added new file to list with pid 3116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35387.exe
2025-03-14 16:26:59,780 [analyzer] INFO: Added new file to list with pid 1320 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-35387.exe
2025-03-14 16:26:59,828 [analyzer] INFO: Added new file to list with pid 5024 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-386.exe
2025-03-14 16:27:00,280 [analyzer] INFO: Added new file to list with pid 4048 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61406.exe
2025-03-14 16:27:00,812 [analyzer] INFO: Added new file to list with pid 2508 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-61443.exe
2025-03-14 16:27:00,842 [analyzer] INFO: Added new file to list with pid 5116 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-8507.exe
2025-03-14 16:27:01,796 [analyzer] INFO: Added new file to list with pid 2644 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-60659.exe
2025-03-14 16:27:01,858 [analyzer] INFO: Added new file to list with pid 3996 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21885.exe
2025-03-14 16:27:02,358 [analyzer] INFO: Added new file to list with pid 5456 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-46692.exe
2025-03-14 16:27:02,640 [analyzer] INFO: Added new file to list with pid 4632 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33395.exe
2025-03-14 16:27:02,640 [analyzer] INFO: Added new file to list with pid 3716 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-33586.exe
2025-03-14 16:27:02,655 [analyzer] INFO: Added new file to list with pid 3952 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-36386.exe
2025-03-14 16:27:02,671 [analyzer] INFO: Added new file to list with pid 3528 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-2859.exe
2025-03-14 16:27:02,750 [analyzer] INFO: Added new file to list with pid 2724 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-51521.exe
2025-03-14 16:27:02,750 [analyzer] INFO: Added new file to list with pid 4948 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-41995.exe
2025-03-14 16:27:03,358 [analyzer] INFO: Added new file to list with pid 2388 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30363.exe
2025-03-14 16:27:03,765 [analyzer] INFO: Added new file to list with pid 3556 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-54821.exe
2025-03-14 16:27:03,796 [analyzer] INFO: Added new file to list with pid 3268 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-29886.exe
2025-03-14 16:27:03,812 [analyzer] INFO: Added new file to list with pid 4516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-485.exe
2025-03-14 16:27:03,842 [analyzer] INFO: Added new file to list with pid 3112 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63220.exe
2025-03-14 16:27:03,905 [analyzer] INFO: Added new file to list with pid 4672 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-15074.exe
2025-03-14 16:27:03,921 [analyzer] INFO: Added new file to list with pid 4480 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-22572.exe
2025-03-14 16:27:03,937 [analyzer] INFO: Added new file to list with pid 3696 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30164.exe
2025-03-14 16:27:03,953 [analyzer] INFO: Added new file to list with pid 2692 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-53699.exe
2025-03-14 16:27:04,092 [analyzer] INFO: Added new file to list with pid 3236 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-27364.exe
2025-03-14 16:27:04,092 [analyzer] INFO: Added new file to list with pid 3000 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-52299.exe
2025-03-14 16:27:04,155 [analyzer] INFO: Added new file to list with pid 4608 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-14498.exe
2025-03-14 16:27:04,155 [analyzer] INFO: Added new file to list with pid 3740 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-11963.exe
2025-03-14 16:27:17,500 [analyzer] INFO: Injected into process with pid 19276 and name u'Unicorn-15967.exe'
2025-03-14 16:27:17,640 [analyzer] INFO: Added new file to list with pid 7136 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-30079.exe
2025-03-14 16:27:17,655 [analyzer] INFO: Added new file to list with pid 3516 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-16311.exe
2025-03-14 16:27:17,671 [analyzer] INFO: Added new file to list with pid 3212 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-24479.exe
2025-03-14 16:27:17,703 [analyzer] INFO: Added new file to list with pid 3616 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-65080.exe
2025-03-14 16:27:17,717 [analyzer] INFO: Added new file to list with pid 2260 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-17479.exe
2025-03-14 16:27:18,250 [analyzer] INFO: Added new file to list with pid 3504 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-21605.exe
2025-03-14 16:27:18,265 [analyzer] INFO: Added new file to list with pid 4200 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-44271.exe
2025-03-14 16:27:18,328 [analyzer] INFO: Injected into process with pid 19308 and name u'Unicorn-12315.exe'
2025-03-14 16:27:18,578 [analyzer] INFO: Added new file to list with pid 3284 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-63068.exe
2025-03-14 16:27:18,608 [analyzer] INFO: Added new file to list with pid 5076 and path C:\Users\Administrator\AppData\Local\Temp\Unicorn-28066.exe
2025-03-14 16:27:18,640 [analyzer] INFO: Injected into process with pid 19336 and name u'Unicorn-52208.exe'
2025-03-14 16:27:18,655 [analyzer] INFO: Injected into process with pid 19328 and name u'Unicorn-34007.exe'

Cuckoo Log

2025-03-17 11:24:34,960 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:35,987 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:37,010 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:38,038 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:39,060 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:40,084 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:41,112 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:42,138 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:43,165 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:44,795 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:46,060 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:47,159 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:48,276 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:49,409 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:50,466 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:51,514 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:52,555 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:53,598 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:54,657 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:55,685 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:57,019 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:58,067 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:24:59,120 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:25:00,184 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:25:01,221 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:25:02,267 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:25:03,475 [cuckoo.core.scheduler] DEBUG: Task #6117155: no machine available yet
2025-03-17 11:25:04,548 [cuckoo.core.scheduler] INFO: Task #6117155: acquired machine win7x6422 (label=win7x6422)
2025-03-17 11:25:04,556 [cuckoo.core.resultserver] DEBUG: Now tracking machine 192.168.168.222 for task #6117155
2025-03-17 11:25:05,046 [cuckoo.auxiliary.sniffer] INFO: Started sniffer with PID 1975621 (interface=vboxnet0, host=192.168.168.222)
2025-03-17 11:25:05,464 [cuckoo.machinery.virtualbox] DEBUG: Starting vm win7x6422
2025-03-17 11:25:06,207 [cuckoo.machinery.virtualbox] DEBUG: Restoring virtual machine win7x6422 to vmcloak
2025-03-17 11:27:08,028 [cuckoo.core.guest] INFO: Starting analysis #6117155 on guest (id=win7x6422, ip=192.168.168.222)
2025-03-17 11:27:09,037 [cuckoo.core.guest] DEBUG: win7x6422: not ready yet
2025-03-17 11:27:14,573 [cuckoo.core.guest] INFO: Guest is running Cuckoo Agent 0.10 (id=win7x6422, ip=192.168.168.222)
2025-03-17 11:27:14,678 [cuckoo.core.guest] DEBUG: Uploading analyzer to guest (id=win7x6422, ip=192.168.168.222, monitor=latest, size=6660546)
2025-03-17 11:27:16,883 [cuckoo.core.resultserver] DEBUG: Task #6117155: live log analysis.log initialized.
2025-03-17 11:27:18,181 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:18,837 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:19,486 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0001.jpg'
2025-03-17 11:27:19,524 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 133463
2025-03-17 11:27:22,233 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:25,872 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:25,880 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:31,206 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:27:31,885 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:31,889 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:31,893 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:31,895 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:33,207 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:33,337 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:33,360 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:33,659 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:33,980 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:34,058 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:34,403 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:34,457 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:36,660 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:37,231 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:37,976 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:38,007 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:38,320 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:39,268 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,006 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,039 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,060 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,107 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,165 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,221 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,233 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,386 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,399 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:40,479 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:41,187 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:41,394 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:41,710 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:41,925 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:42,176 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:43,684 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:43,690 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,014 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,559 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,578 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0002.jpg'
2025-03-17 11:27:44,589 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 63919
2025-03-17 11:27:44,605 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,610 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,616 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:44,628 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:45,014 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:45,235 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:45,254 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:45,608 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:46,524 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0003.jpg'
2025-03-17 11:27:46,550 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 112327
2025-03-17 11:27:46,666 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:27:46,730 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:46,760 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:47,013 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:47,921 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:47,959 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:48,034 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:48,652 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:48,720 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:49,317 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:49,700 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0004.jpg'
2025-03-17 11:27:49,741 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 65529
2025-03-17 11:27:50,079 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:50,191 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:50,436 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:50,824 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0005.jpg'
2025-03-17 11:27:50,845 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 114400
2025-03-17 11:27:51,122 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,067 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0006.jpg'
2025-03-17 11:27:52,112 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 66533
2025-03-17 11:27:52,230 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,250 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,272 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,625 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,671 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,736 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,810 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,902 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:52,954 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:53,467 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:53,747 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:54,208 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:54,213 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0007.jpg'
2025-03-17 11:27:54,231 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 114400
2025-03-17 11:27:54,353 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:54,729 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:54,744 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:55,237 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:55,335 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0008.jpg'
2025-03-17 11:27:55,371 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 66533
2025-03-17 11:27:55,667 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:55,784 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:56,427 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:57,164 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:57,395 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:57,517 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:58,467 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:58,571 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:58,889 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:59,138 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:59,147 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:59,547 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:27:59,566 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:00,417 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:00,443 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:00,452 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:00,457 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:00,645 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:01,980 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:28:03,960 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:03,962 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,136 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,140 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,144 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,198 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,398 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,846 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:04,882 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0009.jpg'
2025-03-17 11:28:04,889 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 63911
2025-03-17 11:28:04,925 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,814 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0010.jpg'
2025-03-17 11:28:15,834 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 111852
2025-03-17 11:28:15,853 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,881 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,887 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,891 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,897 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,900 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,911 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,960 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:15,993 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,023 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,153 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,247 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,252 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,262 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,307 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,319 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,326 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,331 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:16,350 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,300 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:28:17,760 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,906 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,917 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,930 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,951 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,976 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:17,981 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,024 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,034 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,085 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,130 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,133 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,143 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,145 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,148 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,169 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,184 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,217 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,266 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,345 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,384 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,417 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,634 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,669 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,698 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,718 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,773 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,784 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,788 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:18,797 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0011.jpg'
2025-03-17 11:28:18,803 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 68394
2025-03-17 11:28:19,588 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:19,599 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:19,617 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:19,664 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:20,052 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0012.jpg'
2025-03-17 11:28:20,067 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 116749
2025-03-17 11:28:20,099 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:21,285 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,943 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,947 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,948 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,960 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,964 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:22,965 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0013.jpg'
2025-03-17 11:28:22,967 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 68539
2025-03-17 11:28:23,002 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,003 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,018 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,021 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,022 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,024 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,026 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,029 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,030 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,040 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,048 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,050 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,077 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:23,107 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:24,479 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:24,684 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:25,741 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:25,775 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,051 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,055 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,072 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,091 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,276 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,318 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,896 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,903 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,905 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,911 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,924 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,930 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,932 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,954 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,956 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:26,957 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,080 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,124 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,134 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,158 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,247 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,369 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:27,610 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:32,923 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:28:37,087 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:39,200 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:40,778 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:40,791 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,078 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,109 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,123 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,419 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,421 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:41,422 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,010 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,085 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,482 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,540 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,658 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:42,732 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:43,910 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,150 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,152 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,211 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,213 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,214 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,234 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,353 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,380 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,401 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,663 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,719 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,779 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,871 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,930 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,947 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:44,983 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,054 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,095 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,111 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,128 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,148 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,164 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,473 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,481 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,491 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:45,498 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:48,037 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:28:53,755 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,838 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,852 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,919 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,943 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,960 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:53,975 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,013 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,058 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,088 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,105 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,124 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,145 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,164 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,181 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,265 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,279 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,296 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,310 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,326 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,390 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,430 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,446 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,463 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:28:54,479 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:03,167 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:29:05,730 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:07,801 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:08,698 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:08,736 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:09,003 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:09,013 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:09,136 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:11,591 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:11,658 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:11,698 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:11,720 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,087 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,105 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,253 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,571 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,576 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,603 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,712 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,728 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:12,743 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,102 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,105 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,106 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,109 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,110 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,116 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,119 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,212 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,239 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,257 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,338 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,358 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,371 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,595 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,635 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,719 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,744 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,792 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:13,815 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,118 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,164 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,191 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,195 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,219 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,220 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,233 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,247 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,264 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,351 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,375 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,405 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,422 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,438 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,644 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,645 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,646 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:14,647 [cuckoo.core.resultserver] DEBUG: Task #6117155 is sending a BSON stream
2025-03-17 11:29:15,894 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0014.jpg'
2025-03-17 11:29:15,920 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 138092
2025-03-17 11:29:18,266 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:29:23,616 [cuckoo.core.resultserver] DEBUG: Task #6117155: File upload for 'shots/0015.jpg'
2025-03-17 11:29:23,619 [cuckoo.core.resultserver] DEBUG: Task #6117155 uploaded file length: 68539
2025-03-17 11:29:33,401 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:29:48,554 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:30:03,740 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:30:18,925 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:30:34,251 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:30:49,462 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:31:04,899 [cuckoo.core.guest] DEBUG: win7x6422: analysis #6117155 still processing
2025-03-17 11:31:07,908 [cuckoo.core.guest] INFO: win7x6422: end of analysis reached!
2025-03-17 11:31:07,935 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Redsocks
2025-03-17 11:31:07,978 [cuckoo.core.plugins] DEBUG: Stopped auxiliary module: Sniffer
2025-03-17 11:31:09,251 [cuckoo.machinery.virtualbox] INFO: Successfully generated memory dump for virtual machine with label win7x6422 to path /srv/cuckoo/cwd/storage/analyses/6117155/memory.dmp
2025-03-17 11:31:09,256 [cuckoo.machinery.virtualbox] DEBUG: Stopping vm win7x6422
2025-03-17 11:32:31,036 [cuckoo.core.resultserver] DEBUG: Stopped tracking machine 192.168.168.222 for task #6117155
2025-03-17 11:32:31,037 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,037 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,038 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,039 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,039 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,039 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,040 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,040 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,040 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,041 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,041 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,041 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,042 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,042 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,042 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,042 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,043 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,043 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,044 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,044 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,044 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,044 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,045 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,045 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,045 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,046 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,046 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,047 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,047 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,047 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,048 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,048 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,048 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,049 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,049 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,049 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,050 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,050 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,050 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,050 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,051 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,051 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,051 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,052 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,052 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,052 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,053 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,053 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,053 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,054 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,054 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,054 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,055 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,055 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,055 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,056 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,056 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,056 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,056 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,057 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,057 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,057 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,058 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,058 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,058 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,059 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,059 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,059 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,060 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,060 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,060 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,060 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,061 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,061 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,061 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,062 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,062 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,062 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,063 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,063 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,063 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,064 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,064 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,064 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,065 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,065 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,065 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,065 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,066 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,066 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,066 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,067 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,067 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,067 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,068 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,068 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,068 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,068 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,068 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,069 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,069 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,069 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,069 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,070 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,070 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,070 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,070 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,071 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,071 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,071 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,071 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,072 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,072 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,072 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,073 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,073 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,073 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,073 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,074 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,074 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,074 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,074 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,075 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,075 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,075 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,075 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,076 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,076 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,076 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,077 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,077 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,077 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,077 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,077 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,078 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,078 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,078 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,079 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,079 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,079 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,081 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,082 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,082 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,083 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,084 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,084 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,085 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,087 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,101 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,102 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,102 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,103 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,103 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,104 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,104 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,104 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,105 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,108 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,108 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,108 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,110 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,111 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,111 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,112 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,112 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,120 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,126 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,126 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,126 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,127 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,130 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,131 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,132 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,132 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,133 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,133 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,134 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,135 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,137 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,143 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,143 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,144 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,144 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,166 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,166 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,167 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,167 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,169 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,170 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,170 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,170 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,170 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,171 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,171 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,171 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,171 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,172 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,172 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,172 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,173 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,173 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,173 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,174 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,174 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,174 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,175 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,175 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,175 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,176 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,176 [cuckoo.core.resultserver] DEBUG: Cancel <Context for LOG> for task 6117155
2025-03-17 11:32:31,176 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,176 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,177 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,177 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,177 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,178 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,178 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,178 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,179 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,179 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,179 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,179 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,180 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,181 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,183 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,184 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,184 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,185 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,185 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,185 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,186 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,186 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,187 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,187 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,187 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,188 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,188 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,188 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,188 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,189 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,189 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,189 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,190 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,190 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,190 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,191 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,191 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,191 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,191 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,192 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,192 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,192 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,192 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,193 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,193 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,193 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,193 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,194 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,194 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,194 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,195 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,195 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,195 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,195 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,196 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,198 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,198 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,199 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,200 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,205 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,207 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,208 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,208 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,208 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,209 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,212 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,213 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,213 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,213 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,215 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,215 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,215 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,216 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,216 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,216 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,217 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,217 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,217 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,217 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,218 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,218 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,218 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,218 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,219 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,219 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,219 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,219 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,220 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,220 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,220 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,220 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,220 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,221 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,221 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,221 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,221 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,222 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,222 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,222 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,223 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,223 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,223 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,223 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,224 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,224 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,224 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,224 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,225 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,225 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,225 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,226 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,226 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,226 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,226 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,226 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,227 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,227 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,227 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,227 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,228 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,228 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:31,228 [cuckoo.core.resultserver] DEBUG: Cancel <Context for BSON> for task 6117155
2025-03-17 11:32:32,305 [cuckoo.core.scheduler] DEBUG: Released database task #6117155
2025-03-17 11:32:32,330 [cuckoo.core.scheduler] INFO: Task #6117155: analysis procedure completed

Signatures

Yara rule detected for file (1 event)

description

(no description)

rule

SEH__vba

One or more processes crashed (50 out of 3643 events)

Time & API	Arguments	Status
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:22 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39546357 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39546357 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:23 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39546357 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:24 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39546357 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:25 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39546357 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 18 10 40 00 c7 45 f0 00 00 00 00 9b 68 7e b0 42 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2b01e exception.instruction: sbb byte ptr [eax], dl exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 176158 exception.address: 0x42b01e registers.esp: 1636952 registers.edi: 1637135 registers.eax: 4095 registers.ebp: 1637168 registers.edx: 20 registers.ebx: 4370453 registers.esi: 4198912 registers.ecx: 0	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: IID_IVbaHost+0x236f3 UserDllMain-0x41bc4 msvbvm60+0x51d33 @ 0x72991d33 c33722dc7ab60d8f_unicorn-51916+0x297eb @ 0x4297eb IID_IVbaHost+0x239f4 UserDllMain-0x418c3 msvbvm60+0x52034 @ 0x72992034 IID_IVbaHost+0x23e5b UserDllMain-0x4145c msvbvm60+0x5249b @ 0x7299249b IID_IVbaHost+0x24027 UserDllMain-0x41290 msvbvm60+0x52667 @ 0x72992667 DllCanUnloadNow+0x1c1d9 DllRegisterServer-0xa1b8 msvbvm60+0xbbe8b @ 0x729fbe8b IID_IVbaHost+0x2e809 UserDllMain-0x36aae msvbvm60+0x5ce49 @ 0x7299ce49 IID_IVbaHost+0x3133d UserDllMain-0x33f7a msvbvm60+0x5f97d @ 0x7299f97d gapfnScSendMessage+0x332 GetAppCompatFlags2-0x8ea user32+0x162fa @ 0x75b962fa GetThreadDesktop+0xd7 GetWindowLongW-0x2c4 user32+0x16d3a @ 0x75b96d3a CharPrevW+0x138 TranslateMessage-0x45 user32+0x177c4 @ 0x75b977c4 DispatchMessageA+0xf GetMessageA-0x9 user32+0x17bca @ 0x75b97bca __vbaStrToAnsi+0x2f1 EbGetObjConnectionCounts-0x479 msvbvm60+0xa6c8 @ 0x7294a6c8 __vbaStrToAnsi+0x268 EbGetObjConnectionCounts-0x502 msvbvm60+0xa63f @ 0x7294a63f __vbaStrToAnsi+0x146 EbGetObjConnectionCounts-0x624 msvbvm60+0xa51d @ 0x7294a51d exception.instruction_r: 00 00 75 fb 68 f8 c2 42 00 68 e4 9a 42 00 ff 15 exception.symbol: c33722dc7ab60d8f_unicorn-51916+0x2ae48 exception.instruction: add byte ptr [eax], al exception.module: c33722dc7ab60d8f_unicorn-51916.exe exception.exception_code: 0xc0000005 exception.offset: 175688 exception.address: 0x42ae48 registers.esp: 1636952 registers.edi: 1637180 registers.eax: 0 registers.ebp: 1637168 registers.edx: 39518581 registers.ebx: 1 registers.esi: 1637388 registers.ecx: 1995520170	1
__exception__ March 14, 2025, 5:26 p.m.	stacktrace: EbGetHandleOfExecutingProject+0x22b3 rtcPackDate-0xba9 msvbvm60+0xd0dcf @ 0x72a10dcf rtcDoEvents+0x131 __vbaError-0x626 msvbvm60+0xce228 @ 0x72a0e228 exception.instruction_r: c9 c2 10 00 cc cc cc cc cc 8b ff 55 8b ec 56 8b exception.symbol: RaiseException+0x58 CloseHandle-0x9 kernelbase+0xc41f exception.instruction: leave exception.module: KERNELBASE.dll exception.exception_code: 0xc000008f exception.offset: 50207 exception.address: 0x74b3c41f registers.esp: 1634992 registers.edi: 9506768 registers.eax: 1634992 registers.ebp: 1635072 registers.edx: 0 registers.ebx: 9506768 registers.esi: 9506768 registers.ecx: 2	1

Foreign language identified in PE resource (1 event)

name

RT_VERSION

language

LANG_CHINESE

filetype

data

sublanguage

SUBLANG_CHINESE_SIMPLIFIED

offset

0x000747c4

size

0x00000234

Creates executable files on the filesystem (50 out of 757 events)

file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-16461.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-20589.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-20251.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-1215.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-43910.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-22572.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-34365.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-5516.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-13911.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-38385.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-24761.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-39128.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-32570.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-37558.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-25069.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-42064.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-22520.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-43492.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-6629.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-4245.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-27364.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-321.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-52299.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-25831.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-21605.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-29601.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-33394.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-4421.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-61998.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-11156.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-9630.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-1000.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-33395.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-25619.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-54540.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-7534.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-62798.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-44373.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-22991.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-6289.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-11123.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-16040.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-33604.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-53699.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-34219.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-61756.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-51687.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-25643.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-4450.exe
file	C:\Users\Administrator\AppData\Local\Temp\Unicorn-25140.exe

Changes read-write memory protection to read-execute (probably to avoid detection when setting all RWX flags at the same time) (1 event)

Time & API	Arguments	Status	Return	Repeated
NtProtectVirtualMemory March 14, 2025, 5:22 p.m.	process_identifier: 2388 stack_dep_bypass: 0 stack_pivoted: 0 heap_dep_bypass: 1 length: 24576 protection: 32 (PAGE_EXECUTE_READ) base_address: 0x00370000 process_handle: 0xffffffff	1	0	0

The binary likely contains encrypted or compressed data indicative of a packer (2 events)

section

{u'size_of_data': u'0x0002b000', u'virtual_address': u'0x00001000', u'entropy': 7.5713535048376155, u'name': u'.text', u'virtual_size': u'0x0002a5c4'}

entropy

7.57135350484

description

A section with a high entropy has been found

entropy

0.370689655172

description

Overall entropy of this PE file is high

File has been identified by 14 AntiVirus engine on IRMA as malicious (14 events)

G Data Antivirus (Windows)	Virus: Generic.Dacic.94CCEEA9.A.EFB87E45 (Engine A), Win32.Trojan.PSE.1FY1FUT (Engine B)
Avast Core Security (Linux)	Win32:Evo-gen [Trj]
C4S ClamAV (Linux)	Win.Trojan.Barys-10005825-0
F-Secure Antivirus (Linux)	Trojan.TR/Crypt.XPACK.Gen [Aquarius]
Sophos Anti-Virus (Linux)	Troj/VB-KCP
eScan Antivirus (Linux)	Generic.Dacic.94CCEEA9.A.EFB87E45(DB)
ESET Security (Windows)	Win32/VBClone.K trojan
DrWeb Antivirus (Linux)	Trojan.MulDrop20.3145
Trend Micro SProtect (Linux)	Trojan.Win32.FAREIT.SME
WithSecure (Linux)	Trojan.TR/Crypt.XPACK.Gen
ClamAV (Linux)	Win.Trojan.Barys-10005825-0
Bitdefender Antivirus (Linux)	Generic.Dacic.94CCEEA9.A.EFB87E45
Kaspersky Standard (Windows)	Trojan.Win32.VB.dosq
Emsisoft Commandline Scanner (Windows)	Generic.Dacic.94CCEEA9.A.EFB87E45 (B)

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action	VT	Location
No hosts contacted.

Browser recommendation

File c33722dc7ab60d8f_unicorn-51916.exe

Summary Download Resubmit sample

Score

Autosubmit

Feedback

Information on Execution

Analyzer Log

Cuckoo Log

Signatures

Feedback

Summary
Download Resubmit sample