dce2b6e47dcdda7b73992002b2bd9ccdae5873c3040c4148985c51991cc27d59

Analysis

max time kernel
93s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
09/04/2024, 01:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll
Size

19KB
MD5

e8f209902cf0067bdf3bb1359150ffd4
SHA1

1f1d18c31004fec8b7534d196f6835aa94a2d8c6
SHA256

dce2b6e47dcdda7b73992002b2bd9ccdae5873c3040c4148985c51991cc27d59
SHA512

8a908f77d8e8a78df0ec7e0e824d9a1ba85aba170438c3a514318a21b2882f72bc6dd7a290c659aa8aa33696a982666ea4a99ee6ca818248e02905c30cc6de23
SSDEEP

384:VsIS6rfVgB8Dvhn/B9aBzZcwF31ok/+gZjAAjkFMfXzRgLlv4ut:wB8Dhn/B0ZxFCgP4FMfXKdt

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4920 wrote to memory of 5012	4920	rundll32.exe	86
PID 4920 wrote to memory of 5012	4920	rundll32.exe	86
PID 4920 wrote to memory of 5012	4920	rundll32.exe	86
PID 5012 wrote to memory of 1936	5012	rundll32.exe	87
PID 5012 wrote to memory of 1936	5012	rundll32.exe	87
PID 5012 wrote to memory of 1936	5012	rundll32.exe	87
PID 1936 wrote to memory of 3320	1936	rundll32.exe	88
PID 1936 wrote to memory of 3320	1936	rundll32.exe	88
PID 1936 wrote to memory of 3320	1936	rundll32.exe	88
PID 3320 wrote to memory of 4272	3320	rundll32.exe	89
PID 3320 wrote to memory of 4272	3320	rundll32.exe	89
PID 3320 wrote to memory of 4272	3320	rundll32.exe	89
PID 4272 wrote to memory of 5008	4272	rundll32.exe	90
PID 4272 wrote to memory of 5008	4272	rundll32.exe	90
PID 4272 wrote to memory of 5008	4272	rundll32.exe	90
PID 5008 wrote to memory of 3564	5008	rundll32.exe	91
PID 5008 wrote to memory of 3564	5008	rundll32.exe	91
PID 5008 wrote to memory of 3564	5008	rundll32.exe	91
PID 3564 wrote to memory of 4516	3564	rundll32.exe	92
PID 3564 wrote to memory of 4516	3564	rundll32.exe	92
PID 3564 wrote to memory of 4516	3564	rundll32.exe	92
PID 4516 wrote to memory of 408	4516	rundll32.exe	93
PID 4516 wrote to memory of 408	4516	rundll32.exe	93
PID 4516 wrote to memory of 408	4516	rundll32.exe	93
PID 408 wrote to memory of 484	408	rundll32.exe	94
PID 408 wrote to memory of 484	408	rundll32.exe	94
PID 408 wrote to memory of 484	408	rundll32.exe	94
PID 484 wrote to memory of 4964	484	rundll32.exe	95
PID 484 wrote to memory of 4964	484	rundll32.exe	95
PID 484 wrote to memory of 4964	484	rundll32.exe	95
PID 4964 wrote to memory of 776	4964	rundll32.exe	96
PID 4964 wrote to memory of 776	4964	rundll32.exe	96
PID 4964 wrote to memory of 776	4964	rundll32.exe	96
PID 776 wrote to memory of 3136	776	rundll32.exe	97
PID 776 wrote to memory of 3136	776	rundll32.exe	97
PID 776 wrote to memory of 3136	776	rundll32.exe	97
PID 3136 wrote to memory of 3272	3136	rundll32.exe	98
PID 3136 wrote to memory of 3272	3136	rundll32.exe	98
PID 3136 wrote to memory of 3272	3136	rundll32.exe	98
PID 3272 wrote to memory of 2084	3272	rundll32.exe	99
PID 3272 wrote to memory of 2084	3272	rundll32.exe	99
PID 3272 wrote to memory of 2084	3272	rundll32.exe	99
PID 2084 wrote to memory of 2684	2084	rundll32.exe	100
PID 2084 wrote to memory of 2684	2084	rundll32.exe	100
PID 2084 wrote to memory of 2684	2084	rundll32.exe	100
PID 2684 wrote to memory of 4356	2684	rundll32.exe	101
PID 2684 wrote to memory of 4356	2684	rundll32.exe	101
PID 2684 wrote to memory of 4356	2684	rundll32.exe	101
PID 4356 wrote to memory of 2980	4356	rundll32.exe	102
PID 4356 wrote to memory of 2980	4356	rundll32.exe	102
PID 4356 wrote to memory of 2980	4356	rundll32.exe	102
PID 2980 wrote to memory of 368	2980	rundll32.exe	104
PID 2980 wrote to memory of 368	2980	rundll32.exe	104
PID 2980 wrote to memory of 368	2980	rundll32.exe	104
PID 368 wrote to memory of 4348	368	rundll32.exe	105
PID 368 wrote to memory of 4348	368	rundll32.exe	105
PID 368 wrote to memory of 4348	368	rundll32.exe	105
PID 4348 wrote to memory of 3812	4348	rundll32.exe	106
PID 4348 wrote to memory of 3812	4348	rundll32.exe	106
PID 4348 wrote to memory of 3812	4348	rundll32.exe	106
PID 3812 wrote to memory of 724	3812	rundll32.exe	107
PID 3812 wrote to memory of 724	3812	rundll32.exe	107
PID 3812 wrote to memory of 724	3812	rundll32.exe	107
PID 724 wrote to memory of 3744	724	rundll32.exe	109

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4920
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:5012
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1936
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3320
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4272
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:3272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:2684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        23⤵
        
        PID:3744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        24⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        25⤵
        
        PID:1144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        26⤵
        
        PID:2204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        27⤵
        
        PID:4896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        28⤵
        
        PID:652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        29⤵
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        30⤵
        
        PID:636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        31⤵
        
        PID:1496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        32⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        33⤵
        
        PID:1580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        34⤵
        
        PID:4476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        35⤵
        
        PID:448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        36⤵
        
        PID:648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        37⤵
        
        PID:3620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        38⤵
        
        PID:2016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        39⤵
        
        PID:1248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        40⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        41⤵
        
        PID:3464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        42⤵
        
        PID:2804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        43⤵
        
        PID:4828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        44⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        45⤵
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        46⤵
        
        PID:3492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        47⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        48⤵
        
        PID:3832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        49⤵
        
        PID:1516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        50⤵
        
        PID:1976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        51⤵
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        52⤵
        
        PID:4232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        53⤵
        
        PID:740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        54⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        55⤵
        
        PID:3148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        56⤵
        
        PID:1664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        57⤵
        
        PID:900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        58⤵
        
        PID:1816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        59⤵
        
        PID:3024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        60⤵
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        61⤵
        
        PID:3580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        62⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        63⤵
        
        PID:2080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        64⤵
        
        PID:4108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        65⤵
        
        PID:3540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        66⤵
        
        PID:3472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        67⤵
        
        PID:3300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        68⤵
        
        PID:5100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        69⤵
        
        PID:2796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        70⤵
        
        PID:2744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        71⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        72⤵
        
        PID:824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        73⤵
        
        PID:404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        74⤵
        
        PID:4216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        75⤵
        
        PID:2488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        76⤵
        
        PID:1852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        77⤵
        
        PID:1276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        78⤵
        
        PID:2504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        79⤵
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        80⤵
        
        PID:2568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        81⤵
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        82⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        83⤵
        
        PID:1348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        84⤵
        
        PID:3016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        85⤵
        
        PID:2940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        86⤵
        
        PID:1796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        87⤵
        
        PID:864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        88⤵
        
        PID:1172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        89⤵
        
        PID:912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        90⤵
        
        PID:3484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        91⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        92⤵
        
        PID:4336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        93⤵
        
        PID:2544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        94⤵
        
        PID:1540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        95⤵
        
        PID:3420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        96⤵
        
        PID:3704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        97⤵
        
        PID:1104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        98⤵
        
        PID:3712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        99⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        100⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        101⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        102⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        103⤵
        
        PID:5200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        104⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        105⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        106⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        107⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        108⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        109⤵
        
        PID:5296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        110⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        111⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        112⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        113⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        114⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        115⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        116⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        117⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        118⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        119⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        120⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        121⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        122⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        123⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        124⤵
        
        PID:5584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        125⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        126⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        127⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        128⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        129⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        130⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        131⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        132⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        133⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        134⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        135⤵
        
        PID:5748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        136⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        137⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        138⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        139⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        140⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        141⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        142⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        143⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        144⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        145⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        146⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        147⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        148⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        149⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        150⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        151⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        152⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        153⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        154⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        155⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        156⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        157⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        158⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        159⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        160⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        161⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        162⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        163⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        164⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        165⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        166⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        167⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        168⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        169⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        170⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        171⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        172⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        173⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        174⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        175⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        176⤵
        
        PID:6560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        177⤵
        
        PID:6576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        178⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        179⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        180⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        181⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        182⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        183⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        184⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        185⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        186⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        187⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        188⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        189⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        190⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        191⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        192⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        193⤵
        
        PID:6808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        194⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        195⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        196⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        197⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        198⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        199⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        200⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        201⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        202⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        203⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        204⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        205⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        206⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        207⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        208⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        209⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        210⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        211⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        212⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        213⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        214⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        215⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        216⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        217⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        218⤵
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        219⤵
        
        PID:3080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        220⤵
        
        PID:972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        221⤵
        
        PID:1504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        222⤵
        
        PID:3756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        223⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        224⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        225⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        226⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        227⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        228⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        229⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        230⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        231⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        232⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        233⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        234⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        235⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        236⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        237⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        238⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        239⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        240⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        241⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        242⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        243⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        244⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        245⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        246⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        247⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        248⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        249⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        250⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        251⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        252⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        253⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        254⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        255⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        256⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        257⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        258⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        259⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        260⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        261⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        262⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        263⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        264⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        265⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        266⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        267⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        268⤵
        
        PID:7876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        269⤵
        
        PID:7900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        270⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        271⤵
        
        PID:7960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        272⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        273⤵
        
        PID:7988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        274⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        275⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        276⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        277⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        278⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        279⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        280⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        281⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        282⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        283⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        284⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        285⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        286⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        287⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        288⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        289⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        290⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        291⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        292⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        293⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        294⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        295⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        296⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        297⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        298⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        299⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        300⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        301⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        302⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        303⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        304⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        305⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        306⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        307⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        308⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        309⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        310⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        311⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        312⤵
        
        PID:8596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        313⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        314⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        315⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        316⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        317⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        318⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        319⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        320⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        321⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        322⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        323⤵
        
        PID:8760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        324⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        325⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        326⤵
        
        PID:8804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        327⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        328⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        329⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        330⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        331⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        332⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        333⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        334⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        335⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        336⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        337⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        338⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        339⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        340⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        341⤵
        
        PID:9024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        342⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        343⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        344⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        345⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        346⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        347⤵
        
        PID:9108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        348⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        349⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        350⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        351⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        352⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        353⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        354⤵
        
        PID:3736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        355⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        356⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        357⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        358⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        359⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        360⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        361⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        362⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        363⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        364⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        365⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        366⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        367⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        368⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        369⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        370⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        371⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        372⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        373⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        374⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        375⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        376⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        377⤵
        
        PID:9568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        378⤵
        
        PID:9584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        379⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        380⤵
        
        PID:9616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        381⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        382⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        383⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        384⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        385⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        386⤵
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        387⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        388⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        389⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        390⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        391⤵
        
        PID:9828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        392⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        393⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        394⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        395⤵
        
        PID:9964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        396⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        397⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        398⤵
        
        PID:10012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        399⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        400⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        401⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        402⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        403⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        404⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        405⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        406⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        407⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        408⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        409⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        410⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        411⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        412⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        413⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        414⤵
        
        PID:10264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        415⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        416⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        417⤵
        
        PID:10312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        418⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        419⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        420⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        421⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        422⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        423⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        424⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        425⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        426⤵
        
        PID:10464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        427⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        428⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        429⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        430⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        431⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        432⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        433⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        434⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        435⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        436⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        437⤵
        
        PID:10636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        438⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        439⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        440⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        441⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        442⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        443⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        444⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        445⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        446⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        447⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        448⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        449⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        450⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        451⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        452⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        453⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        454⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        455⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        456⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        457⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        458⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        459⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        460⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        461⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        462⤵
        
        PID:11028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        463⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        464⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        465⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        466⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        467⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        468⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        469⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        470⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        471⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        472⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        473⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        474⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        475⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        476⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        477⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        478⤵
        
        PID:11284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        479⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        480⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        481⤵
        
        PID:11320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        482⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        483⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        484⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        485⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        486⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        487⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        488⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        489⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        490⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        491⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        492⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        493⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        494⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        495⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        496⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        497⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        498⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        499⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        500⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        501⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        502⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        503⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        504⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        505⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        506⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        507⤵
        
        PID:11772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        508⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        509⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        510⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        511⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        512⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        513⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        514⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        515⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        516⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        517⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        518⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        519⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        520⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        521⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        522⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        523⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        524⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        525⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        526⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        527⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        528⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        529⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        530⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        531⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        532⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        533⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        534⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        535⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        536⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        537⤵
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        538⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        539⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        540⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        541⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        542⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        543⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        544⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        545⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        546⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        547⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        548⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        549⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        550⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        551⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        552⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        553⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        554⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        555⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        556⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        557⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        558⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        559⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        560⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        561⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        562⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        563⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        564⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        565⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        566⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        567⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        568⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        569⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        570⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        571⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        572⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        573⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        574⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        575⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        576⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        577⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        578⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        579⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        580⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        581⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        582⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        583⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        584⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        585⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        586⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        587⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        588⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        589⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        590⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        591⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        592⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        593⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        594⤵
        
        PID:13068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        595⤵
        
        PID:13084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        596⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        597⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        598⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        599⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        600⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        601⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        602⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        603⤵
        
        PID:13212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        604⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        605⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        606⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        607⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        608⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        609⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        610⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        611⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        612⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        613⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        614⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        615⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        616⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        617⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        618⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        619⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        620⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        621⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        622⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        623⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        624⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        625⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        626⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        627⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        628⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        629⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        630⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        631⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        632⤵
        
        PID:13672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        633⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        634⤵
        
        PID:13704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        635⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        636⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        637⤵
        
        PID:13748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        638⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        639⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        640⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        641⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        642⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        643⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        644⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        645⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        646⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        647⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        648⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        649⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        650⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        651⤵
        
        PID:13960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        652⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        653⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        654⤵
        
        PID:14008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        655⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        656⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        657⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        658⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        659⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        660⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        661⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        662⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        663⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        664⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        665⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        666⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        667⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        668⤵
        
        PID:14212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        669⤵
        
        PID:14228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        670⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        671⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        672⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        673⤵
        
        PID:14288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        674⤵
        
        PID:14304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        675⤵
        
        PID:14320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        676⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        677⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        678⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        679⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        680⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        681⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        682⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        683⤵
        
        PID:14420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        684⤵
        
        PID:14436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        685⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        686⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        687⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        688⤵
        
        PID:14492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        689⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        690⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        691⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        692⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        693⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        694⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        695⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        696⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        697⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        698⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        699⤵
        
        PID:14656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        700⤵
        
        PID:14668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        701⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        702⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        703⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        704⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        705⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        706⤵
        
        PID:14756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        707⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        708⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        709⤵
        
        PID:14804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        710⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        711⤵
        
        PID:14832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        712⤵
        
        PID:14852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        713⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        714⤵
        
        PID:14884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        715⤵
        
        PID:14900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        716⤵
        
        PID:14916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        717⤵
        
        PID:14928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        718⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        719⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        720⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        721⤵
        
        PID:14988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        722⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        723⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        724⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        725⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        726⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        727⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        728⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        729⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        730⤵
        
        PID:15132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        731⤵
        
        PID:15148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        732⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        733⤵
        
        PID:15176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        734⤵
        
        PID:15192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        735⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        736⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        737⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        738⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        739⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        740⤵
        
        PID:15276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        741⤵
        
        PID:15292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        742⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        743⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        744⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        745⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        746⤵
        
        PID:2196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        747⤵
        
        PID:4012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        748⤵
        
        PID:15368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        749⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        750⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        751⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        752⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        753⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        754⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        755⤵
        
        PID:15472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        756⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        757⤵
        
        PID:15504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        758⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        759⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        760⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        761⤵
        
        PID:15564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        762⤵
        
        PID:15580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        763⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        764⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        765⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        766⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        767⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        768⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        769⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        770⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        771⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        772⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        773⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        774⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        775⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        776⤵
        
        PID:15784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        777⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        778⤵
        
        PID:15816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        779⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        780⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        781⤵
        
        PID:15860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        782⤵
        
        PID:15876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        783⤵
        
        PID:15892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        784⤵
        
        PID:15904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        785⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        786⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        787⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        788⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        789⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        790⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        791⤵
        
        PID:16020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        792⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        793⤵
        
        PID:16052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        794⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        795⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        796⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        797⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        798⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        799⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        800⤵
        
        PID:16164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        801⤵
        
        PID:16176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        802⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        803⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        804⤵
        
        PID:16216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        805⤵
        
        PID:16236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        806⤵
        
        PID:16252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        807⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        808⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        809⤵
        
        PID:16296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        810⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        811⤵
        
        PID:16328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        812⤵
        
        PID:16344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        813⤵
        
        PID:16360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        814⤵
        
        PID:16376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        815⤵
        
        PID:568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        816⤵
        
        PID:3772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        817⤵
        
        PID:3592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        818⤵
        
        PID:16388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        819⤵
        
        PID:16404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        820⤵
        
        PID:16420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        821⤵
        
        PID:16436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        822⤵
        
        PID:16452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        823⤵
        
        PID:16468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        824⤵
        
        PID:16484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        825⤵
        
        PID:16500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        826⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        827⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        828⤵
        
        PID:16548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        829⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        830⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        831⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        832⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        833⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        834⤵
        
        PID:16644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        835⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        836⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        837⤵
        
        PID:16688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        838⤵
        
        PID:16700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        839⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        840⤵
        
        PID:16728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        841⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        842⤵
        
        PID:16756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        843⤵
        
        PID:16768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        844⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        845⤵
        
        PID:16792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        846⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        847⤵
        
        PID:16824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        848⤵
        
        PID:16840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        849⤵
        
        PID:16856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        850⤵
        
        PID:16868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        851⤵
        
        PID:16888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        852⤵
        
        PID:16904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        853⤵
        
        PID:16920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        854⤵
        
        PID:16936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        855⤵
        
        PID:16952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        856⤵
        
        PID:16968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        857⤵
        
        PID:16984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        858⤵
        
        PID:17000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        859⤵
        
        PID:17016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        860⤵
        
        PID:17028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        861⤵
        
        PID:17040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        862⤵
        
        PID:17052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        863⤵
        
        PID:17072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        864⤵
        
        PID:17088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        865⤵
        
        PID:17104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        866⤵
        
        PID:17116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        867⤵
        
        PID:17128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        868⤵
        
        PID:17144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        869⤵
        
        PID:17160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        870⤵
        
        PID:17176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        871⤵
        
        PID:17192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        872⤵
        
        PID:17208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\e8f209902cf0067bdf3bb1359150ffd4_JaffaCakes118.dll,#1
        873⤵
        
        PID:17224

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads