6f8376292e16236cea627dfac9cf3735efbe08e73534439f72ca7232f028a933

Analysis

max time kernel
149s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
02-03-2024 16:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

776-54-0x0000000000180000-0x00000000001A3000-memory.dll
Size

140KB
MD5

c8cad6f968afa52f7658b10576831572
SHA1

26045da5f928cab5510d8155574f66a5ee826d2d
SHA256

6f8376292e16236cea627dfac9cf3735efbe08e73534439f72ca7232f028a933
SHA512

92b102a2aac07e45379270f99e5cf6f821760025b7596d2d7cd062fe3789c4986cea6aea6707ce825f196fca1b37d09cae4313ddc721a9874c34fb704ad3df27
SSDEEP

3072:HQLSo1suuRgc3aFSqA0Jua3/QTBfftG8LM/K:euRFa0/0Jn3/QTBXta/

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

Processes:

rundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exerundll32.exe

description	pid	Process	procid_target
PID 3172 wrote to memory of 2100	3172	rundll32.exe	88
PID 3172 wrote to memory of 2100	3172	rundll32.exe	88
PID 3172 wrote to memory of 2100	3172	rundll32.exe	88
PID 2100 wrote to memory of 2848	2100	rundll32.exe	89
PID 2100 wrote to memory of 2848	2100	rundll32.exe	89
PID 2100 wrote to memory of 2848	2100	rundll32.exe	89
PID 2848 wrote to memory of 3852	2848	rundll32.exe	90
PID 2848 wrote to memory of 3852	2848	rundll32.exe	90
PID 2848 wrote to memory of 3852	2848	rundll32.exe	90
PID 3852 wrote to memory of 4936	3852	rundll32.exe	91
PID 3852 wrote to memory of 4936	3852	rundll32.exe	91
PID 3852 wrote to memory of 4936	3852	rundll32.exe	91
PID 4936 wrote to memory of 3184	4936	rundll32.exe	92
PID 4936 wrote to memory of 3184	4936	rundll32.exe	92
PID 4936 wrote to memory of 3184	4936	rundll32.exe	92
PID 3184 wrote to memory of 628	3184	rundll32.exe	93
PID 3184 wrote to memory of 628	3184	rundll32.exe	93
PID 3184 wrote to memory of 628	3184	rundll32.exe	93
PID 628 wrote to memory of 3272	628	rundll32.exe	94
PID 628 wrote to memory of 3272	628	rundll32.exe	94
PID 628 wrote to memory of 3272	628	rundll32.exe	94
PID 3272 wrote to memory of 804	3272	rundll32.exe	95
PID 3272 wrote to memory of 804	3272	rundll32.exe	95
PID 3272 wrote to memory of 804	3272	rundll32.exe	95
PID 804 wrote to memory of 4672	804	rundll32.exe	96
PID 804 wrote to memory of 4672	804	rundll32.exe	96
PID 804 wrote to memory of 4672	804	rundll32.exe	96
PID 4672 wrote to memory of 2612	4672	rundll32.exe	97
PID 4672 wrote to memory of 2612	4672	rundll32.exe	97
PID 4672 wrote to memory of 2612	4672	rundll32.exe	97
PID 2612 wrote to memory of 808	2612	rundll32.exe	98
PID 2612 wrote to memory of 808	2612	rundll32.exe	98
PID 2612 wrote to memory of 808	2612	rundll32.exe	98
PID 808 wrote to memory of 4412	808	rundll32.exe	99
PID 808 wrote to memory of 4412	808	rundll32.exe	99
PID 808 wrote to memory of 4412	808	rundll32.exe	99
PID 4412 wrote to memory of 852	4412	rundll32.exe	100
PID 4412 wrote to memory of 852	4412	rundll32.exe	100
PID 4412 wrote to memory of 852	4412	rundll32.exe	100
PID 852 wrote to memory of 4032	852	rundll32.exe	101
PID 852 wrote to memory of 4032	852	rundll32.exe	101
PID 852 wrote to memory of 4032	852	rundll32.exe	101
PID 4032 wrote to memory of 3752	4032	rundll32.exe	102
PID 4032 wrote to memory of 3752	4032	rundll32.exe	102
PID 4032 wrote to memory of 3752	4032	rundll32.exe	102
PID 3752 wrote to memory of 1216	3752	rundll32.exe	103
PID 3752 wrote to memory of 1216	3752	rundll32.exe	103
PID 3752 wrote to memory of 1216	3752	rundll32.exe	103
PID 1216 wrote to memory of 2148	1216	rundll32.exe	104
PID 1216 wrote to memory of 2148	1216	rundll32.exe	104
PID 1216 wrote to memory of 2148	1216	rundll32.exe	104
PID 2148 wrote to memory of 1744	2148	rundll32.exe	105
PID 2148 wrote to memory of 1744	2148	rundll32.exe	105
PID 2148 wrote to memory of 1744	2148	rundll32.exe	105
PID 1744 wrote to memory of 468	1744	rundll32.exe	106
PID 1744 wrote to memory of 468	1744	rundll32.exe	106
PID 1744 wrote to memory of 468	1744	rundll32.exe	106
PID 468 wrote to memory of 3600	468	rundll32.exe	107
PID 468 wrote to memory of 3600	468	rundll32.exe	107
PID 468 wrote to memory of 3600	468	rundll32.exe	107
PID 3600 wrote to memory of 4808	3600	rundll32.exe	108
PID 3600 wrote to memory of 4808	3600	rundll32.exe	108
PID 3600 wrote to memory of 4808	3600	rundll32.exe	108
PID 4808 wrote to memory of 4852	4808	rundll32.exe	110

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3172
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:2100
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2848
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3852
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4936
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        23⤵
        
        PID:4852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        24⤵
        
        PID:2672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        25⤵
        
        PID:3432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        26⤵
        
        PID:3528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        27⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        28⤵
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        29⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        30⤵
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        31⤵
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        32⤵
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        33⤵
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        34⤵
        
        PID:856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        35⤵
        
        PID:1496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        36⤵
        
        PID:2352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        37⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        38⤵
        
        PID:3696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        39⤵
        
        PID:3624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        40⤵
        
        PID:3736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        41⤵
        
        PID:2856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        42⤵
        
        PID:3196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        43⤵
        
        PID:3808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        44⤵
        
        PID:4536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        45⤵
        
        PID:3724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        46⤵
        
        PID:2552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        47⤵
        
        PID:4396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        48⤵
        
        PID:2560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        49⤵
        
        PID:2104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        50⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        51⤵
        
        PID:4684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        52⤵
        
        PID:1576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        53⤵
        
        PID:2032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        54⤵
        
        PID:2488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        55⤵
        
        PID:2264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        56⤵
        
        PID:3592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        57⤵
        
        PID:2144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        58⤵
        
        PID:5076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        59⤵
        
        PID:3960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        60⤵
        
        PID:4056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        61⤵
        
        PID:1312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        62⤵
        
        PID:4288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        63⤵
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        64⤵
        
        PID:4704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        65⤵
        
        PID:464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        66⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        67⤵
        
        PID:2744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        68⤵
        
        PID:4880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        69⤵
        
        PID:2364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        70⤵
        
        PID:1616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        71⤵
        
        PID:4868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        72⤵
        
        PID:3532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        73⤵
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        74⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        75⤵
        
        PID:4856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        76⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        77⤵
        
        PID:4884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        78⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        79⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        80⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        81⤵
        
        PID:224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        82⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        83⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        84⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        85⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        86⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        87⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        88⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        89⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        90⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        91⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        92⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        93⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        94⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        95⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        96⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        97⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        98⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        99⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        100⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        101⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        102⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        103⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        104⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        105⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        106⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        107⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        108⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        109⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        110⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        111⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        112⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        113⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        114⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        115⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        116⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        117⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        118⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        119⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        120⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        121⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        122⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        123⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        124⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        125⤵
        
        PID:5940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        126⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        127⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        128⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        129⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        130⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        131⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        132⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        133⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        134⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        135⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        136⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        137⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        138⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        139⤵
        
        PID:6256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        140⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        141⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        142⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        143⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        144⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        145⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        146⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        147⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        148⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        149⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        150⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        151⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        152⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        153⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        154⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        155⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        156⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        157⤵
        
        PID:6600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        158⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        159⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        160⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        161⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        162⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        163⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        164⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        165⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        166⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        167⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        168⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        169⤵
        
        PID:6808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        170⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        171⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        172⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        173⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        174⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        175⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        176⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        177⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        178⤵
        
        PID:6932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        179⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        180⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        181⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        182⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        183⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        184⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        185⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        186⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        187⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        188⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        189⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        190⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        191⤵
        
        PID:7128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        192⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        193⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        194⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        195⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        196⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        197⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        198⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        199⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        200⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        201⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        202⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        203⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        204⤵
        
        PID:7316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        205⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        206⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        207⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        208⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        209⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        210⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        211⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        212⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        213⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        214⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        215⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        216⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        217⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        218⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        219⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        220⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        221⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        222⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        223⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        224⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        225⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        226⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        227⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        228⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        229⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        230⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        231⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        232⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        233⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        234⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        235⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        236⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        237⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        238⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        239⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        240⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        241⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        242⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        243⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        244⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        245⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        246⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        247⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        248⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        249⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        250⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        251⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        252⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        253⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        254⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        255⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        256⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        257⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        258⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        259⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        260⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        261⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        262⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        263⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        264⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        265⤵
        
        PID:2548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        266⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        267⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        268⤵
        
        PID:8204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        269⤵
        
        PID:8220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        270⤵
        
        PID:8236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        271⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        272⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        273⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        274⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        275⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        276⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        277⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        278⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        279⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        280⤵
        
        PID:8400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        281⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        282⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        283⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        284⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        285⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        286⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        287⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        288⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        289⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        290⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        291⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        292⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        293⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        294⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        295⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        296⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        297⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        298⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        299⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        300⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        301⤵
        
        PID:8728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        302⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        303⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        304⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        305⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        306⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        307⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        308⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        309⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        310⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        311⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        312⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        313⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        314⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        315⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        316⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        317⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        318⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        319⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        320⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        321⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        322⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        323⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        324⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        325⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        326⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        327⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        328⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        329⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        330⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        331⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        332⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        333⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        334⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        335⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        336⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        337⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        338⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        339⤵
        
        PID:9304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        340⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        341⤵
        
        PID:9336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        342⤵
        
        PID:9352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        343⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        344⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        345⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        346⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        347⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        348⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        349⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        350⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        351⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        352⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        353⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        354⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        355⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        356⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        357⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        358⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        359⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        360⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        361⤵
        
        PID:9636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        362⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        363⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        364⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        365⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        366⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        367⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        368⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        369⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        370⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        371⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        372⤵
        
        PID:9808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        373⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        374⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        375⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        376⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        377⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        378⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        379⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        380⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        381⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        382⤵
        
        PID:9964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        383⤵
        
        PID:9976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        384⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        385⤵
        
        PID:10012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        386⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        387⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        388⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        389⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        390⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        391⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        392⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        393⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        394⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        395⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        396⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        397⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        398⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        399⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        400⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        401⤵
        
        PID:4796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        402⤵
        
        PID:4020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        403⤵
        
        PID:1308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        404⤵
        
        PID:3824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        405⤵
        
        PID:4060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        406⤵
        
        PID:2716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        407⤵
        
        PID:1292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        408⤵
        
        PID:3560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        409⤵
        
        PID:4324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        410⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        411⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        412⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        413⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        414⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        415⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        416⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        417⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        418⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        419⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        420⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        421⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        422⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        423⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        424⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        425⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        426⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        427⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        428⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        429⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        430⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        431⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        432⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        433⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        434⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        435⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        436⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        437⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        438⤵
        
        PID:10636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        439⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        440⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        441⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        442⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        443⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        444⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        445⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        446⤵
        
        PID:10752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        447⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        448⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        449⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        450⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        451⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        452⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        453⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        454⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        455⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        456⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        457⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        458⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        459⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        460⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        461⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        462⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        463⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        464⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        465⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        466⤵
        
        PID:11040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        467⤵
        
        PID:11052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        468⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        469⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        470⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        471⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        472⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        473⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        474⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        475⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        476⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        477⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        478⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        479⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        480⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        481⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        482⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        483⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        484⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        485⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        486⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        487⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        488⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        489⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        490⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        491⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        492⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        493⤵
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        494⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        495⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        496⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        497⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        498⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        499⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        500⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        501⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        502⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        503⤵
        
        PID:11592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        504⤵
        
        PID:11604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        505⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        506⤵
        
        PID:11632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        507⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        508⤵
        
        PID:11660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        509⤵
        
        PID:11676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        510⤵
        
        PID:11692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        511⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        512⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        513⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        514⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        515⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        516⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        517⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        518⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        519⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        520⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        521⤵
        
        PID:11848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        522⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        523⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        524⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        525⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        526⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        527⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        528⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        529⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        530⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        531⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        532⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        533⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        534⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        535⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        536⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        537⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        538⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        539⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        540⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        541⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        542⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        543⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        544⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        545⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        546⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        547⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        548⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        549⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        550⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        551⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        552⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        553⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        554⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        555⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        556⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        557⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        558⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        559⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        560⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        561⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        562⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        563⤵
        
        PID:12476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        564⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        565⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        566⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        567⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        568⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        569⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        570⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        571⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        572⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        573⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        574⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        575⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        576⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        577⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        578⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        579⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        580⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        581⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        582⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        583⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        584⤵
        
        PID:12792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        585⤵
        
        PID:12808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        586⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        587⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        588⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        589⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        590⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        591⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        592⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        593⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        594⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        595⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        596⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        597⤵
        
        PID:12992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        598⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        599⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        600⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        601⤵
        
        PID:13056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        602⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        603⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        604⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        605⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        606⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        607⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        608⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        609⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        610⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        611⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        612⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        613⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        614⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        615⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        616⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        617⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        618⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        619⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        620⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        621⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        622⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        623⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        624⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        625⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        626⤵
        
        PID:13440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        627⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        628⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        629⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        630⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        631⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        632⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        633⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        634⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        635⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        636⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        637⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        638⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        639⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        640⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        641⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        642⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        643⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        644⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        645⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        646⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        647⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        648⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        649⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        650⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        651⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        652⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        653⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        654⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        655⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        656⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        657⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        658⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        659⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        660⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        661⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        662⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        663⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        664⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        665⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        666⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        667⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        668⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        669⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        670⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        671⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        672⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        673⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        674⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        675⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        676⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        677⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        678⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        679⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        680⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        681⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        682⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        683⤵
        
        PID:14332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        684⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        685⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        686⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        687⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        688⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        689⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        690⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        691⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        692⤵
        
        PID:14468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        693⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        694⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        695⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        696⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        697⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        698⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        699⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        700⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        701⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        702⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        703⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        704⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        705⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        706⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        707⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        708⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        709⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        710⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        711⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        712⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        713⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        714⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        715⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        716⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        717⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        718⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        719⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        720⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        721⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        722⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        723⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        724⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        725⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        726⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        727⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        728⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        729⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        730⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        731⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        732⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        733⤵
        
        PID:15092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        734⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        735⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        736⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        737⤵
        
        PID:15152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        738⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        739⤵
        
        PID:15180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        740⤵
        
        PID:15196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        741⤵
        
        PID:15212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        742⤵
        
        PID:15228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        743⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        744⤵
        
        PID:15256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        745⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        746⤵
        
        PID:15288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        747⤵
        
        PID:15300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        748⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        749⤵
        
        PID:15332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        750⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        751⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        752⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        753⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        754⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        755⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        756⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        757⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        758⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        759⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        760⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        761⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        762⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        763⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        764⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        765⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        766⤵
        
        PID:15584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        767⤵
        
        PID:15600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        768⤵
        
        PID:15612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        769⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        770⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        771⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        772⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        773⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        774⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        775⤵
        
        PID:15720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        776⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        777⤵
        
        PID:15748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        778⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        779⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        780⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        781⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        782⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        783⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        784⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        785⤵
        
        PID:15860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        786⤵
        
        PID:15876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        787⤵
        
        PID:15892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        788⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        789⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        790⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        791⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        792⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        793⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        794⤵
        
        PID:16004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        795⤵
        
        PID:16020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        796⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        797⤵
        
        PID:16052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        798⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        799⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        800⤵
        
        PID:16100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        801⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        802⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        803⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        804⤵
        
        PID:16164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        805⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        806⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        807⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        808⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        809⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        810⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        811⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        812⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        813⤵
        
        PID:16308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        814⤵
        
        PID:16324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        815⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        816⤵
        
        PID:16356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        817⤵
        
        PID:16372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        818⤵
        
        PID:4976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        819⤵
        
        PID:888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        820⤵
        
        PID:3032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        821⤵
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        822⤵
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        823⤵
        
        PID:16392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        824⤵
        
        PID:16408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        825⤵
        
        PID:16424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        826⤵
        
        PID:16440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        827⤵
        
        PID:16456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        828⤵
        
        PID:16472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        829⤵
        
        PID:16488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        830⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        831⤵
        
        PID:16520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        832⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        833⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        834⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        835⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        836⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        837⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        838⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        839⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        840⤵
        
        PID:16664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        841⤵
        
        PID:16680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        842⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        843⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        844⤵
        
        PID:16728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        845⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        846⤵
        
        PID:16756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        847⤵
        
        PID:16772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        848⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        849⤵
        
        PID:16800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        850⤵
        
        PID:16816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        851⤵
        
        PID:16832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        852⤵
        
        PID:16848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        853⤵
        
        PID:16860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        854⤵
        
        PID:16876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        855⤵
        
        PID:16892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        856⤵
        
        PID:16908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        857⤵
        
        PID:16920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        858⤵
        
        PID:16936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        859⤵
        
        PID:16948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        860⤵
        
        PID:16964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        861⤵
        
        PID:16980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        862⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        863⤵
        
        PID:17016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        864⤵
        
        PID:17032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        865⤵
        
        PID:17048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        866⤵
        
        PID:17064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        867⤵
        
        PID:17076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        868⤵
        
        PID:17096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        869⤵
        
        PID:17112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        870⤵
        
        PID:17124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        871⤵
        
        PID:17140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        872⤵
        
        PID:17156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        873⤵
        
        PID:17172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        874⤵
        
        PID:17188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        875⤵
        
        PID:17204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        876⤵
        
        PID:17220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        877⤵
        
        PID:17236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\776-54-0x0000000000180000-0x00000000001A3000-memory.dll,#1
        878⤵
        
        PID:17252

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads