5f235e58ad1792568c40ccbc0af2fa2131ad23b272803c5ed1afe97f8718a40c

Analysis

max time kernel
148s
max time network
152s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
10/04/2024, 18:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll
Size

8.6MB
MD5

ebaf38c7f2a3bd6380509a17ee8bbb5e
SHA1

bf3eb7b501d9767a67b85373db9c317de09f5f80
SHA256

5f235e58ad1792568c40ccbc0af2fa2131ad23b272803c5ed1afe97f8718a40c
SHA512

fd9430f856a720e65c4cce4ae6f9ac00e780add4e10edd000dfee156f62c68ddb5b1f059f92d12fab2955211fee49144614151c642b2eb7ad1d9160410bf96af
SSDEEP

196608:MPFq/nBBJw9668udHlY5FLOyomFHKnPo8PFq/nBBJw9668udHlY5FLOyomFHKnPo:M8J68rFe8J68rF

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3988 wrote to memory of 1104	3988	rundll32.exe	85
PID 3988 wrote to memory of 1104	3988	rundll32.exe	85
PID 3988 wrote to memory of 1104	3988	rundll32.exe	85
PID 1104 wrote to memory of 2856	1104	rundll32.exe	86
PID 1104 wrote to memory of 2856	1104	rundll32.exe	86
PID 1104 wrote to memory of 2856	1104	rundll32.exe	86
PID 2856 wrote to memory of 4108	2856	rundll32.exe	87
PID 2856 wrote to memory of 4108	2856	rundll32.exe	87
PID 2856 wrote to memory of 4108	2856	rundll32.exe	87
PID 4108 wrote to memory of 624	4108	rundll32.exe	88
PID 4108 wrote to memory of 624	4108	rundll32.exe	88
PID 4108 wrote to memory of 624	4108	rundll32.exe	88
PID 624 wrote to memory of 3260	624	rundll32.exe	89
PID 624 wrote to memory of 3260	624	rundll32.exe	89
PID 624 wrote to memory of 3260	624	rundll32.exe	89
PID 3260 wrote to memory of 212	3260	rundll32.exe	90
PID 3260 wrote to memory of 212	3260	rundll32.exe	90
PID 3260 wrote to memory of 212	3260	rundll32.exe	90
PID 212 wrote to memory of 3132	212	rundll32.exe	91
PID 212 wrote to memory of 3132	212	rundll32.exe	91
PID 212 wrote to memory of 3132	212	rundll32.exe	91
PID 3132 wrote to memory of 2108	3132	rundll32.exe	92
PID 3132 wrote to memory of 2108	3132	rundll32.exe	92
PID 3132 wrote to memory of 2108	3132	rundll32.exe	92
PID 2108 wrote to memory of 3152	2108	rundll32.exe	93
PID 2108 wrote to memory of 3152	2108	rundll32.exe	93
PID 2108 wrote to memory of 3152	2108	rundll32.exe	93
PID 3152 wrote to memory of 668	3152	rundll32.exe	94
PID 3152 wrote to memory of 668	3152	rundll32.exe	94
PID 3152 wrote to memory of 668	3152	rundll32.exe	94
PID 668 wrote to memory of 1224	668	rundll32.exe	95
PID 668 wrote to memory of 1224	668	rundll32.exe	95
PID 668 wrote to memory of 1224	668	rundll32.exe	95
PID 1224 wrote to memory of 2096	1224	rundll32.exe	96
PID 1224 wrote to memory of 2096	1224	rundll32.exe	96
PID 1224 wrote to memory of 2096	1224	rundll32.exe	96
PID 2096 wrote to memory of 1116	2096	rundll32.exe	97
PID 2096 wrote to memory of 1116	2096	rundll32.exe	97
PID 2096 wrote to memory of 1116	2096	rundll32.exe	97
PID 1116 wrote to memory of 4320	1116	rundll32.exe	98
PID 1116 wrote to memory of 4320	1116	rundll32.exe	98
PID 1116 wrote to memory of 4320	1116	rundll32.exe	98
PID 4320 wrote to memory of 1988	4320	rundll32.exe	99
PID 4320 wrote to memory of 1988	4320	rundll32.exe	99
PID 4320 wrote to memory of 1988	4320	rundll32.exe	99
PID 1988 wrote to memory of 2600	1988	rundll32.exe	100
PID 1988 wrote to memory of 2600	1988	rundll32.exe	100
PID 1988 wrote to memory of 2600	1988	rundll32.exe	100
PID 2600 wrote to memory of 4296	2600	rundll32.exe	101
PID 2600 wrote to memory of 4296	2600	rundll32.exe	101
PID 2600 wrote to memory of 4296	2600	rundll32.exe	101
PID 4296 wrote to memory of 1612	4296	rundll32.exe	102
PID 4296 wrote to memory of 1612	4296	rundll32.exe	102
PID 4296 wrote to memory of 1612	4296	rundll32.exe	102
PID 1612 wrote to memory of 2188	1612	rundll32.exe	103
PID 1612 wrote to memory of 2188	1612	rundll32.exe	103
PID 1612 wrote to memory of 2188	1612	rundll32.exe	103
PID 2188 wrote to memory of 2672	2188	rundll32.exe	104
PID 2188 wrote to memory of 2672	2188	rundll32.exe	104
PID 2188 wrote to memory of 2672	2188	rundll32.exe	104
PID 2672 wrote to memory of 2488	2672	rundll32.exe	105
PID 2672 wrote to memory of 2488	2672	rundll32.exe	105
PID 2672 wrote to memory of 2488	2672	rundll32.exe	105
PID 2488 wrote to memory of 2628	2488	rundll32.exe	106

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3988
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1104
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2856
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4108
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:624
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:2108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:1116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:1988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:2600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        23⤵
        
        PID:2628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        24⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        25⤵
        
        PID:2368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        26⤵
        
        PID:4692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        27⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        28⤵
        
        PID:3776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        29⤵
        
        PID:4476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        30⤵
        
        PID:2128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        31⤵
        
        PID:2236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        32⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        33⤵
        
        PID:1444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        34⤵
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        35⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        36⤵
        
        PID:844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        37⤵
        
        PID:3200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        38⤵
        
        PID:1420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        39⤵
        
        PID:2300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        40⤵
        
        PID:1352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        41⤵
        
        PID:4924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        42⤵
        
        PID:4632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        43⤵
        
        PID:3048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        44⤵
        
        PID:2328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        45⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        46⤵
        
        PID:1432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        47⤵
        
        PID:4412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        48⤵
        
        PID:2364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        49⤵
        
        PID:436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        50⤵
        
        PID:3664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        51⤵
        
        PID:1616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        52⤵
        
        PID:1948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        53⤵
        
        PID:1288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        54⤵
        
        PID:4684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        55⤵
        
        PID:3768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        56⤵
        
        PID:2908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        57⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        58⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        59⤵
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        60⤵
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        61⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        62⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        63⤵
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        64⤵
        
        PID:3552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        65⤵
        
        PID:4472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        66⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        67⤵
        
        PID:4324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        68⤵
        
        PID:556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        69⤵
        
        PID:3692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        70⤵
        
        PID:3120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        71⤵
        
        PID:4044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        72⤵
        
        PID:3248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        73⤵
        
        PID:1588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        74⤵
        
        PID:540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        75⤵
        
        PID:4836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        76⤵
        
        PID:2316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        77⤵
        
        PID:820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        78⤵
        
        PID:2912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        79⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        80⤵
        
        PID:3728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        81⤵
        
        PID:1820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        82⤵
        
        PID:2088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        83⤵
        
        PID:3372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        84⤵
        
        PID:4664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        85⤵
        
        PID:1596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        86⤵
        
        PID:1748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        87⤵
        
        PID:2728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        88⤵
        
        PID:4872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        89⤵
        
        PID:2372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        90⤵
        
        PID:2428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        91⤵
        
        PID:1860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        92⤵
        
        PID:2184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        93⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        94⤵
        
        PID:4440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        95⤵
        
        PID:3140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        96⤵
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        97⤵
        
        PID:3136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        98⤵
        
        PID:888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        99⤵
        
        PID:2288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        100⤵
        
        PID:4212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        101⤵
        
        PID:1864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        102⤵
        
        PID:2732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        103⤵
        
        PID:4112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        104⤵
        
        PID:3888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        105⤵
        
        PID:3416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        106⤵
        
        PID:4764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        107⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        108⤵
        
        PID:4312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        109⤵
        
        PID:1524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        110⤵
        
        PID:516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        111⤵
        
        PID:5124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        112⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        113⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        114⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        115⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        116⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        117⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        118⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        119⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        120⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        121⤵
        
        PID:5380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        122⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        123⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        124⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        125⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        126⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        127⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        128⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        129⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        130⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        131⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        132⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        133⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        134⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        135⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        136⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        137⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        138⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        139⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        140⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        141⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        142⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        143⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        144⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        145⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        146⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        147⤵
        
        PID:5772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        148⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        149⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        150⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        151⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        152⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        153⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        154⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        155⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        156⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        157⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        158⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        159⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        160⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        161⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        162⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        163⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        164⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        165⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        166⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        167⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        168⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        169⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        170⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        171⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        172⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        173⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        174⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        175⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        176⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        177⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        178⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        179⤵
        
        PID:6240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        180⤵
        
        PID:6256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        181⤵
        
        PID:6272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        182⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        183⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        184⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        185⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        186⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        187⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        188⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        189⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        190⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        191⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        192⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        193⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        194⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        195⤵
        
        PID:6524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        196⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        197⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        198⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        199⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        200⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        201⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        202⤵
        
        PID:6632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        203⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        204⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        205⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        206⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        207⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        208⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        209⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        210⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        211⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        212⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        213⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        214⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        215⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        216⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        217⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        218⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        219⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        220⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        221⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        222⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        223⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        224⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        225⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        226⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        227⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        228⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        229⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        230⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        231⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        232⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        233⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        234⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        235⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        236⤵
        
        PID:7140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        237⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        238⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        239⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        240⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        241⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        242⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        243⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        244⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        245⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        246⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        247⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        248⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        249⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        250⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        251⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        252⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        253⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        254⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        255⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        256⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        257⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        258⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        259⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        260⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        261⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        262⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        263⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        264⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        265⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        266⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        267⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        268⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        269⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        270⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        271⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        272⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        273⤵
        
        PID:7668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        274⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        275⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        276⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        277⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        278⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        279⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        280⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        281⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        282⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        283⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        284⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        285⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        286⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        287⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        288⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        289⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        290⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        291⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        292⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        293⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        294⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        295⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        296⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        297⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        298⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        299⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        300⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        301⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        302⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        303⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        304⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        305⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        306⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        307⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        308⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        309⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        310⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        311⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        312⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        313⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        314⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        315⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        316⤵
        
        PID:8408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        317⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        318⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        319⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        320⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        321⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        322⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        323⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        324⤵
        
        PID:8524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        325⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        326⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        327⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        328⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        329⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        330⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        331⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        332⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        333⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        334⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        335⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        336⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        337⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        338⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        339⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        340⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        341⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        342⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        343⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        344⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        345⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        346⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        347⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        348⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        349⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        350⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        351⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        352⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        353⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        354⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        355⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        356⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        357⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        358⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        359⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        360⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        361⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        362⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        363⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        364⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        365⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        366⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        367⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        368⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        369⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        370⤵
        
        PID:2224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        371⤵
        
        PID:3232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        372⤵
        
        PID:3540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        373⤵
        
        PID:1784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        374⤵
        
        PID:1100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        375⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        376⤵
        
        PID:1488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        377⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        378⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        379⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        380⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        381⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        382⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        383⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        384⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        385⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        386⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        387⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        388⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        389⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        390⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        391⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        392⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        393⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        394⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        395⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        396⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        397⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        398⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        399⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        400⤵
        
        PID:9636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        401⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        402⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        403⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        404⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        405⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        406⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        407⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        408⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        409⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        410⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        411⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        412⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        413⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        414⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        415⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        416⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        417⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        418⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        419⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        420⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        421⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        422⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        423⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        424⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        425⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        426⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        427⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        428⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        429⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        430⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        431⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        432⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        433⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        434⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        435⤵
        
        PID:10176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        436⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        437⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        438⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        439⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        440⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        441⤵
        
        PID:3992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        442⤵
        
        PID:1120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        443⤵
        
        PID:4052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        444⤵
        
        PID:3672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        445⤵
        
        PID:4408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        446⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        447⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        448⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        449⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        450⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        451⤵
        
        PID:10312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        452⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        453⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        454⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        455⤵
        
        PID:10372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        456⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        457⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        458⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        459⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        460⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        461⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        462⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        463⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        464⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        465⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        466⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        467⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        468⤵
        
        PID:10556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        469⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        470⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        471⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        472⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        473⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        474⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        475⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        476⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        477⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        478⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        479⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        480⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        481⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        482⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        483⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        484⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        485⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        486⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        487⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        488⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        489⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        490⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        491⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        492⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        493⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        494⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        495⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        496⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        497⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        498⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        499⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        500⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        501⤵
        
        PID:11040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        502⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        503⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        504⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        505⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        506⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        507⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        508⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        509⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        510⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        511⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        512⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        513⤵
        
        PID:11232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        514⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        515⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        516⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        517⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        518⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        519⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        520⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        521⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        522⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        523⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        524⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        525⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        526⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        527⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        528⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        529⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        530⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        531⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        532⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        533⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        534⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        535⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        536⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        537⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        538⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        539⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        540⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        541⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        542⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        543⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        544⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        545⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        546⤵
        
        PID:11676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        547⤵
        
        PID:11692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        548⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        549⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        550⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        551⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        552⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        553⤵
        
        PID:11772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        554⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        555⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        556⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        557⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        558⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        559⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        560⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        561⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        562⤵
        
        PID:11900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        563⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        564⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        565⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        566⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        567⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        568⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        569⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        570⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        571⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        572⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        573⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        574⤵
        
        PID:12080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        575⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        576⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        577⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        578⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        579⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        580⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        581⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        582⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        583⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        584⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        585⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        586⤵
        
        PID:12252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        587⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        588⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        589⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        590⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        591⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        592⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        593⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        594⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        595⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        596⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        597⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        598⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        599⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        600⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        601⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        602⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        603⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        604⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        605⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        606⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        607⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        608⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        609⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        610⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        611⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        612⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        613⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        614⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        615⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        616⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        617⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        618⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        619⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        620⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        621⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        622⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        623⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        624⤵
        
        PID:12820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        625⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        626⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        627⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        628⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        629⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        630⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        631⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        632⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        633⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        634⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        635⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        636⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        637⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        638⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        639⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        640⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        641⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        642⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        643⤵
        
        PID:13096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        644⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        645⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        646⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        647⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        648⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        649⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        650⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        651⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        652⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        653⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        654⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        655⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        656⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        657⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        658⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        659⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        660⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        661⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        662⤵
        
        PID:13364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        663⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        664⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        665⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        666⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        667⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        668⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        669⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        670⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        671⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        672⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        673⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        674⤵
        
        PID:13520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        675⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        676⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        677⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        678⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        679⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        680⤵
        
        PID:13612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        681⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        682⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        683⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        684⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        685⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        686⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        687⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        688⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        689⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        690⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        691⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        692⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        693⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        694⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        695⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        696⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        697⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        698⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        699⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        700⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        701⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        702⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        703⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        704⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        705⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        706⤵
        
        PID:14000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        707⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        708⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        709⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        710⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        711⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        712⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        713⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        714⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        715⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        716⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        717⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        718⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        719⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        720⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        721⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        722⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        723⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        724⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        725⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        726⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        727⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        728⤵
        
        PID:13676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        729⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        730⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        731⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        732⤵
        
        PID:14388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        733⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        734⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        735⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        736⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        737⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        738⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        739⤵
        
        PID:14484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        740⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        741⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        742⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        743⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        744⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        745⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        746⤵
        
        PID:14580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        747⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        748⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        749⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        750⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        751⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        752⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        753⤵
        
        PID:14672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        754⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        755⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        756⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        757⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        758⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        759⤵
        
        PID:14756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        760⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        761⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        762⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        763⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        764⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        765⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        766⤵
        
        PID:14852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        767⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        768⤵
        
        PID:14884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        769⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        770⤵
        
        PID:14912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        771⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        772⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        773⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        774⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        775⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        776⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        777⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        778⤵
        
        PID:15028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        779⤵
        
        PID:15044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        780⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        781⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        782⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        783⤵
        
        PID:15104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        784⤵
        
        PID:15120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        785⤵
        
        PID:15136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        786⤵
        
        PID:15148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        787⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        788⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        789⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        790⤵
        
        PID:15208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        791⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        792⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        793⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        794⤵
        
        PID:15256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        795⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        796⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        797⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        798⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        799⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        800⤵
        
        PID:15340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        801⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        802⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        803⤵
        
        PID:15364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        804⤵
        
        PID:15380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        805⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        806⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        807⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        808⤵
        
        PID:15432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        809⤵
        
        PID:15444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        810⤵
        
        PID:15460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        811⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        812⤵
        
        PID:15488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        813⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        814⤵
        
        PID:15524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        815⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        816⤵
        
        PID:15552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        817⤵
        
        PID:15568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        818⤵
        
        PID:15580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        819⤵
        
        PID:15596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        820⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        821⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        822⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        823⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        824⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        825⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        826⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        827⤵
        
        PID:15720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        828⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        829⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        830⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        831⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        832⤵
        
        PID:15784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        833⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        834⤵
        
        PID:15808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        835⤵
        
        PID:15824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        836⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        837⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        838⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        839⤵
        
        PID:15892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        840⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        841⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        842⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        843⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        844⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        845⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        846⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        847⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        848⤵
        
        PID:16072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        849⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        850⤵
        
        PID:16100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        851⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        852⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        853⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        854⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        855⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        856⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        857⤵
        
        PID:16216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        858⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        859⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        860⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        861⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        862⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        863⤵
        
        PID:16308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        864⤵
        
        PID:16324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        865⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        866⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        867⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        868⤵
        
        PID:448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        869⤵
        
        PID:3392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        870⤵
        
        PID:872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        871⤵
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        872⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        873⤵
        
        PID:2360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        874⤵
        
        PID:628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        875⤵
        
        PID:3256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        876⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        877⤵
        
        PID:3832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        878⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        879⤵
        
        PID:4744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        880⤵
        
        PID:1692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        881⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        882⤵
        
        PID:536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        883⤵
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        884⤵
        
        PID:3348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        885⤵
        
        PID:936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\ebaf38c7f2a3bd6380509a17ee8bbb5e_JaffaCakes118.dll,#1
        886⤵
        
        PID:4024

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads