Cuckoo Sandbox

cmd.exe "C:\Windows\System32\cmd.exe" /c start /wait "qGXiMAnDGcGyfo" "C:\Users\ADMINI~1\AppData\Local\Temp\a885b7b4e07de7c1_microsoft .net framework 4.7.1 full.prq"
2128
- rundll32.exe "C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,OpenAs_RunDLL C:\Users\ADMINI~1\AppData\Local\Temp\a885b7b4e07de7c1_microsoft .net framework 4.7.1 full.prq
  2940

No process loaded Click on a process in the tree above to load its data.

PID
Parent PID

default file network process services registry synchronisation iexplore office pdf

Cuckoo

We're processing your submission... This could take a few seconds.