e8f5f8c03d65db5662b4531237bfdb95120f9b5f17359b405581040136e6030a

Analysis

max time kernel
167s
max time network
173s
platform
windows10-2004_x64
resource
win10v2004-20231215-en
resource tags

arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
submitted
24/12/2023, 23:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1959a0c2e62064d31a678fb69cd04fe3.dll
Size

161KB
MD5

1959a0c2e62064d31a678fb69cd04fe3
SHA1

3f6d43a9e834345f609a1d4a67293dde543ea09b
SHA256

e8f5f8c03d65db5662b4531237bfdb95120f9b5f17359b405581040136e6030a
SHA512

949e8649aaf3b59e8605bb0262cdfa1753a3b0a2ba8702b66c895be5325800c290f66ae3a51d86f6bb80121d0e83c5171f2f0354a4dbf3c3b73b342e53ab621a
SSDEEP

3072:4ZO4Rd/yv8GoZegvVSbymnDSnyHOTgkTCxktFy7JHVf:F4r/iEIznun5gsdW7NVf

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1832 wrote to memory of 1260	1832	rundll32.exe	88
PID 1832 wrote to memory of 1260	1832	rundll32.exe	88
PID 1832 wrote to memory of 1260	1832	rundll32.exe	88
PID 1260 wrote to memory of 2936	1260	rundll32.exe	92
PID 1260 wrote to memory of 2936	1260	rundll32.exe	92
PID 1260 wrote to memory of 2936	1260	rundll32.exe	92
PID 2936 wrote to memory of 4112	2936	rundll32.exe	93
PID 2936 wrote to memory of 4112	2936	rundll32.exe	93
PID 2936 wrote to memory of 4112	2936	rundll32.exe	93
PID 4112 wrote to memory of 868	4112	rundll32.exe	94
PID 4112 wrote to memory of 868	4112	rundll32.exe	94
PID 4112 wrote to memory of 868	4112	rundll32.exe	94
PID 868 wrote to memory of 3908	868	rundll32.exe	95
PID 868 wrote to memory of 3908	868	rundll32.exe	95
PID 868 wrote to memory of 3908	868	rundll32.exe	95
PID 3908 wrote to memory of 3248	3908	rundll32.exe	96
PID 3908 wrote to memory of 3248	3908	rundll32.exe	96
PID 3908 wrote to memory of 3248	3908	rundll32.exe	96
PID 3248 wrote to memory of 2200	3248	rundll32.exe	97
PID 3248 wrote to memory of 2200	3248	rundll32.exe	97
PID 3248 wrote to memory of 2200	3248	rundll32.exe	97
PID 2200 wrote to memory of 4332	2200	rundll32.exe	98
PID 2200 wrote to memory of 4332	2200	rundll32.exe	98
PID 2200 wrote to memory of 4332	2200	rundll32.exe	98
PID 4332 wrote to memory of 1988	4332	rundll32.exe	99
PID 4332 wrote to memory of 1988	4332	rundll32.exe	99
PID 4332 wrote to memory of 1988	4332	rundll32.exe	99
PID 1988 wrote to memory of 4660	1988	rundll32.exe	100
PID 1988 wrote to memory of 4660	1988	rundll32.exe	100
PID 1988 wrote to memory of 4660	1988	rundll32.exe	100
PID 4660 wrote to memory of 4596	4660	rundll32.exe	101
PID 4660 wrote to memory of 4596	4660	rundll32.exe	101
PID 4660 wrote to memory of 4596	4660	rundll32.exe	101
PID 4596 wrote to memory of 392	4596	rundll32.exe	102
PID 4596 wrote to memory of 392	4596	rundll32.exe	102
PID 4596 wrote to memory of 392	4596	rundll32.exe	102
PID 392 wrote to memory of 1212	392	rundll32.exe	103
PID 392 wrote to memory of 1212	392	rundll32.exe	103
PID 392 wrote to memory of 1212	392	rundll32.exe	103
PID 1212 wrote to memory of 2376	1212	rundll32.exe	104
PID 1212 wrote to memory of 2376	1212	rundll32.exe	104
PID 1212 wrote to memory of 2376	1212	rundll32.exe	104
PID 2376 wrote to memory of 5108	2376	rundll32.exe	105
PID 2376 wrote to memory of 5108	2376	rundll32.exe	105
PID 2376 wrote to memory of 5108	2376	rundll32.exe	105
PID 5108 wrote to memory of 3128	5108	rundll32.exe	106
PID 5108 wrote to memory of 3128	5108	rundll32.exe	106
PID 5108 wrote to memory of 3128	5108	rundll32.exe	106
PID 3128 wrote to memory of 3948	3128	rundll32.exe	107
PID 3128 wrote to memory of 3948	3128	rundll32.exe	107
PID 3128 wrote to memory of 3948	3128	rundll32.exe	107
PID 3948 wrote to memory of 4952	3948	rundll32.exe	108
PID 3948 wrote to memory of 4952	3948	rundll32.exe	108
PID 3948 wrote to memory of 4952	3948	rundll32.exe	108
PID 4952 wrote to memory of 3324	4952	rundll32.exe	109
PID 4952 wrote to memory of 3324	4952	rundll32.exe	109
PID 4952 wrote to memory of 3324	4952	rundll32.exe	109
PID 3324 wrote to memory of 776	3324	rundll32.exe	110
PID 3324 wrote to memory of 776	3324	rundll32.exe	110
PID 3324 wrote to memory of 776	3324	rundll32.exe	110
PID 776 wrote to memory of 1256	776	rundll32.exe	111
PID 776 wrote to memory of 1256	776	rundll32.exe	111
PID 776 wrote to memory of 1256	776	rundll32.exe	111
PID 1256 wrote to memory of 2324	1256	rundll32.exe	112

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:1832
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1260
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2936
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4112
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:868
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:1988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:1212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:3128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:3948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:1256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        23⤵
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        24⤵
        
        PID:4448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        25⤵
        
        PID:3356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        26⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        27⤵
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        28⤵
        
        PID:1572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        29⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        30⤵
        
        PID:5028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        31⤵
        
        PID:5032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        32⤵
        
        PID:2672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        33⤵
        
        PID:2504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        34⤵
        
        PID:4704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        35⤵
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        36⤵
        
        PID:3376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        37⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        38⤵
        
        PID:3388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        39⤵
        
        PID:3252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        40⤵
        
        PID:1936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        41⤵
        
        PID:4344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        42⤵
        
        PID:2656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        43⤵
        
        PID:2360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        44⤵
        
        PID:1732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        45⤵
        
        PID:4712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        46⤵
        
        PID:5096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        47⤵
        
        PID:2768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        48⤵
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        49⤵
        
        PID:2560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        50⤵
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        51⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        52⤵
        
        PID:1848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        53⤵
        
        PID:4584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        54⤵
        
        PID:3408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        55⤵
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        56⤵
        
        PID:1760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        57⤵
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        58⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        59⤵
        
        PID:804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        60⤵
        
        PID:3460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        61⤵
        
        PID:3616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        62⤵
        
        PID:848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        63⤵
        
        PID:3628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        64⤵
        
        PID:4996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        65⤵
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        66⤵
        
        PID:3916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        67⤵
        
        PID:2684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        68⤵
        
        PID:2036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        69⤵
        
        PID:4444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        70⤵
        
        PID:4432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        71⤵
        
        PID:4812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        72⤵
        
        PID:3236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        73⤵
        
        PID:1564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        74⤵
        
        PID:2380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        75⤵
        
        PID:2072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        76⤵
        
        PID:4648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        77⤵
        
        PID:304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        78⤵
        
        PID:1296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        79⤵
        
        PID:2100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        80⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        81⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        82⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        83⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        84⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        85⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        86⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        87⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        88⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        89⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        90⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        91⤵
        
        PID:5296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        92⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        93⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        94⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        95⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        96⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        97⤵
        
        PID:5380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        98⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        99⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        100⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        101⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        102⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        103⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        104⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        105⤵
        
        PID:5520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        106⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        107⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        108⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        109⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        110⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        111⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        112⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        113⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        114⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        115⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        116⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        117⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        118⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        119⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        120⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        121⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        122⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        123⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        124⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        125⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        126⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        127⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        128⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        129⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        130⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        131⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        132⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        133⤵
        
        PID:5940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        134⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        135⤵
        
        PID:5972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        136⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        137⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        138⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        139⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        140⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        141⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        142⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        143⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        144⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        145⤵
        
        PID:1580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        146⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        147⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        148⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        149⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        150⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        151⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        152⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        153⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        154⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        155⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        156⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        157⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        158⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        159⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        160⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        161⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        162⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        163⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        164⤵
        
        PID:6408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        165⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        166⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        167⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        168⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        169⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        170⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        171⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        172⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        173⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        174⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        175⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        176⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        177⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        178⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        179⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        180⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        181⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        182⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        183⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        184⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        185⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        186⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        187⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        188⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        189⤵
        
        PID:6796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        190⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        191⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        192⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        193⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        194⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        195⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        196⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        197⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        198⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        199⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        200⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        201⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        202⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        203⤵
        
        PID:7140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        204⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        205⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        206⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        207⤵
        
        PID:4072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        208⤵
        
        PID:1940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        209⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        210⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        211⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        212⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        213⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        214⤵
        
        PID:7252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        215⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        216⤵
        
        PID:7280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        217⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        218⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        219⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        220⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        221⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        222⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        223⤵
        
        PID:7380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        224⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        225⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        226⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        227⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        228⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        229⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        230⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        231⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        232⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        233⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        234⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        235⤵
        
        PID:7556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        236⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        237⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        238⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        239⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        240⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        241⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        242⤵
        
        PID:7668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        243⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        244⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        245⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        246⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        247⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        248⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        249⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        250⤵
        
        PID:7804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        251⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        252⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        253⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        254⤵
        
        PID:7884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        255⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        256⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        257⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        258⤵
        
        PID:7960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        259⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        260⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        261⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        262⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        263⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        264⤵
        
        PID:8052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        265⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        266⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        267⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        268⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        269⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        270⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        271⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        272⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        273⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        274⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        275⤵
        
        PID:4656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        276⤵
        
        PID:2044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        277⤵
        
        PID:3280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        278⤵
        
        PID:2900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        279⤵
        
        PID:4428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        280⤵
        
        PID:4148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        281⤵
        
        PID:3476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        282⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        283⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        284⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        285⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        286⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        287⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        288⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        289⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        290⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        291⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        292⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        293⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        294⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        295⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        296⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        297⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        298⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        299⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        300⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        301⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        302⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        303⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        304⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        305⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        306⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        307⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        308⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        309⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        310⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        311⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        312⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        313⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        314⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        315⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        316⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        317⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        318⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        319⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        320⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        321⤵
        
        PID:8804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        322⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        323⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        324⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        325⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        326⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        327⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        328⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        329⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        330⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        331⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        332⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        333⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        334⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        335⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        336⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        337⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        338⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        339⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        340⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        341⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        342⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        343⤵
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        344⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        345⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        346⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        347⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        348⤵
        
        PID:9292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        349⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        350⤵
        
        PID:9332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        351⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        352⤵
        
        PID:9364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        353⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        354⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        355⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        356⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        357⤵
        
        PID:9440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        358⤵
        
        PID:9456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        359⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        360⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        361⤵
        
        PID:9504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        362⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        363⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        364⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        365⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        366⤵
        
        PID:9584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        367⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        368⤵
        
        PID:9616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        369⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        370⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        371⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        372⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        373⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        374⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        375⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        376⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        377⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        378⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        379⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        380⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        381⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        382⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        383⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        384⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        385⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        386⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        387⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        388⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        389⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        390⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        391⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        392⤵
        
        PID:10044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        393⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        394⤵
        
        PID:10072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        395⤵
        
        PID:10092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        396⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        397⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        398⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        399⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        400⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        401⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        402⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        403⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        404⤵
        
        PID:10220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        405⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        406⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        407⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        408⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        409⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        410⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        411⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        412⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        413⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        414⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        415⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        416⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        417⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        418⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        419⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        420⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        421⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        422⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        423⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        424⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        425⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        426⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        427⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        428⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        429⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        430⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        431⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        432⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        433⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        434⤵
        
        PID:10672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        435⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        436⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        437⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        438⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        439⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        440⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        441⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        442⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        443⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        444⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        445⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        446⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        447⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        448⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        449⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        450⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        451⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        452⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        453⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        454⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        455⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        456⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        457⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        458⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        459⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        460⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        461⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        462⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        463⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        464⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        465⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        466⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        467⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        468⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        469⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        470⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        471⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        472⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        473⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        474⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        475⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        476⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        477⤵
        
        PID:972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        478⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        479⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        480⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        481⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        482⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        483⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        484⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        485⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        486⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        487⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        488⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        489⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        490⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        491⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        492⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        493⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        494⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        495⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        496⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        497⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        498⤵
        
        PID:11568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        499⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        500⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        501⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        502⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        503⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        504⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        505⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        506⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        507⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        508⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        509⤵
        
        PID:11796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        510⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        511⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        512⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        513⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        514⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        515⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        516⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        517⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        518⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        519⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        520⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        521⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        522⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        523⤵
        
        PID:12032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        524⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        525⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        526⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        527⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        528⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        529⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        530⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        531⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        532⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        533⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        534⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        535⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        536⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        537⤵
        
        PID:12236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        538⤵
        
        PID:12252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        539⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        540⤵
        
        PID:12280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        541⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        542⤵
        
        PID:372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        543⤵
        
        PID:1404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        544⤵
        
        PID:4664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        545⤵
        
        PID:4552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        546⤵
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        547⤵
        
        PID:1692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        548⤵
        
        PID:3064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        549⤵
        
        PID:4892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        550⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        551⤵
        
        PID:2884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        552⤵
        
        PID:364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        553⤵
        
        PID:4496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        554⤵
        
        PID:1680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        555⤵
        
        PID:2832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        556⤵
        
        PID:2248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        557⤵
        
        PID:4076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        558⤵
        
        PID:1688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        559⤵
        
        PID:2984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        560⤵
        
        PID:880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        561⤵
        
        PID:4368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        562⤵
        
        PID:4408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        563⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        564⤵
        
        PID:2756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        565⤵
        
        PID:4868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        566⤵
        
        PID:4764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        567⤵
        
        PID:3560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        568⤵
        
        PID:3604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        569⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        570⤵
        
        PID:4972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        571⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        572⤵
        
        PID:3240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        573⤵
        
        PID:2404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        574⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        575⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        576⤵
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        577⤵
        
        PID:2960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        578⤵
        
        PID:456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        579⤵
        
        PID:3144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        580⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        581⤵
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        582⤵
        
        PID:4480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        583⤵
        
        PID:4244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        584⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        585⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        586⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        587⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        588⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        589⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        590⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        591⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        592⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        593⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        594⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        595⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        596⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        597⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        598⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        599⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        600⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        601⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        602⤵
        
        PID:12580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        603⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        604⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        605⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        606⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        607⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        608⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        609⤵
        
        PID:12676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        610⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        611⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        612⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        613⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        614⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        615⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        616⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        617⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        618⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        619⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        620⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        621⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        622⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        623⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        624⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        625⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        626⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        627⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        628⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        629⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        630⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        631⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        632⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        633⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        634⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        635⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        636⤵
        
        PID:13068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        637⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        638⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        639⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        640⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        641⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        642⤵
        
        PID:13192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        643⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        644⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        645⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        646⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        647⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        648⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        649⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        650⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        651⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        652⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        653⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        654⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        655⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        656⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        657⤵
        
        PID:4796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        658⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        659⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        660⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        661⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        662⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        663⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        664⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        665⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        666⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        667⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        668⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        669⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        670⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        671⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        672⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        673⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        674⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        675⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        676⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        677⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        678⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        679⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        680⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        681⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        682⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        683⤵
        
        PID:2828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        684⤵
        
        PID:5924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        685⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        686⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        687⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        688⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        689⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        690⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        691⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        692⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        693⤵
        
        PID:668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        694⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        695⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        696⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        697⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        698⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        699⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        700⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        701⤵
        
        PID:6632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        702⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        703⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        704⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        705⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        706⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        707⤵
        
        PID:1792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        708⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        709⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        710⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        711⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        712⤵
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        713⤵
        
        PID:1252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        714⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        715⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        716⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        717⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        718⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        719⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        720⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        721⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        722⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        723⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        724⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        725⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        726⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        727⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        728⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        729⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        730⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        731⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        732⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        733⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        734⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        735⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        736⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        737⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        738⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        739⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        740⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        741⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        742⤵
        
        PID:13628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        743⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        744⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        745⤵
        
        PID:13672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        746⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        747⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        748⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        749⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        750⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        751⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        752⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        753⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        754⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        755⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        756⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        757⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        758⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        759⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        760⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        761⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        762⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        763⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        764⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        765⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        766⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        767⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        768⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        769⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        770⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        771⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        772⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        773⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        774⤵
        
        PID:14048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        775⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        776⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        777⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        778⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        779⤵
        
        PID:14120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        780⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        781⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        782⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        783⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        784⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        785⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        786⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        787⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        788⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        789⤵
        
        PID:14264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        790⤵
        
        PID:14280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        791⤵
        
        PID:14292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        792⤵
        
        PID:14308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        793⤵
        
        PID:14320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        794⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        795⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        796⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        797⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        798⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        799⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        800⤵
        
        PID:3744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        801⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        802⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        803⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        804⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        805⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        806⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        807⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        808⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        809⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        810⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        811⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        812⤵
        
        PID:8124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        813⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        814⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        815⤵
        
        PID:2516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        816⤵
        
        PID:4044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        817⤵
        
        PID:2500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        818⤵
        
        PID:2428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        819⤵
        
        PID:8220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        820⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        821⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        822⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        823⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        824⤵
        
        PID:8400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        825⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        826⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        827⤵
        
        PID:1364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        828⤵
        
        PID:736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        829⤵
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        830⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        831⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        832⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        833⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        834⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        835⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        836⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        837⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        838⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        839⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        840⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        841⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        842⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        843⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        844⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        845⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        846⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        847⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        848⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        849⤵
        
        PID:9408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        850⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        851⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        852⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        853⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        854⤵
        
        PID:14356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        855⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        856⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        857⤵
        
        PID:14420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        858⤵
        
        PID:14436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        859⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        860⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        861⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        862⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        863⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        864⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        865⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        866⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        867⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        868⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        869⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        870⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        871⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        872⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        873⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        874⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        875⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        876⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        877⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        878⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        879⤵
        
        PID:14852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        880⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        881⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        882⤵
        
        PID:14900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        883⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        884⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        885⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        886⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\1959a0c2e62064d31a678fb69cd04fe3.dll,#1
        887⤵
        
        PID:14988

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads