5b4370e676b5d82de1df8890fcc05df623a70f49d43a914975f41f582c65844b

Analysis

max time kernel
125s
max time network
130s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
15/04/2024, 03:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll
Size

94KB
MD5

f03e9ced96ab794f284943856bce067b
SHA1

ee1165872b4fe644bd168ab5f9a38114f48fde34
SHA256

5b4370e676b5d82de1df8890fcc05df623a70f49d43a914975f41f582c65844b
SHA512

a23493937b432651d55d3f635c19247fc53e9df2bef4d74c60589e44d07fda40a51328614d193c4830986a9b1ca119836276bd444d25f0fc4224ce7736955fb1
SSDEEP

1536:2t+uNcgCzI+BOZcuI/N+ZRkLmusg4TotPOhr/nDwUDoYIG/c2:4+urCa9qN+ZRNRToswUFIIX

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2208 wrote to memory of 2204	2208	rundll32.exe	95
PID 2208 wrote to memory of 2204	2208	rundll32.exe	95
PID 2208 wrote to memory of 2204	2208	rundll32.exe	95
PID 2204 wrote to memory of 4484	2204	rundll32.exe	97
PID 2204 wrote to memory of 4484	2204	rundll32.exe	97
PID 2204 wrote to memory of 4484	2204	rundll32.exe	97
PID 4484 wrote to memory of 4080	4484	rundll32.exe	98
PID 4484 wrote to memory of 4080	4484	rundll32.exe	98
PID 4484 wrote to memory of 4080	4484	rundll32.exe	98
PID 4080 wrote to memory of 4936	4080	rundll32.exe	99
PID 4080 wrote to memory of 4936	4080	rundll32.exe	99
PID 4080 wrote to memory of 4936	4080	rundll32.exe	99
PID 4936 wrote to memory of 1000	4936	rundll32.exe	100
PID 4936 wrote to memory of 1000	4936	rundll32.exe	100
PID 4936 wrote to memory of 1000	4936	rundll32.exe	100
PID 1000 wrote to memory of 2216	1000	rundll32.exe	101
PID 1000 wrote to memory of 2216	1000	rundll32.exe	101
PID 1000 wrote to memory of 2216	1000	rundll32.exe	101
PID 2216 wrote to memory of 2924	2216	rundll32.exe	102
PID 2216 wrote to memory of 2924	2216	rundll32.exe	102
PID 2216 wrote to memory of 2924	2216	rundll32.exe	102
PID 2924 wrote to memory of 1504	2924	rundll32.exe	103
PID 2924 wrote to memory of 1504	2924	rundll32.exe	103
PID 2924 wrote to memory of 1504	2924	rundll32.exe	103
PID 1504 wrote to memory of 3372	1504	rundll32.exe	104
PID 1504 wrote to memory of 3372	1504	rundll32.exe	104
PID 1504 wrote to memory of 3372	1504	rundll32.exe	104
PID 3372 wrote to memory of 2096	3372	rundll32.exe	105
PID 3372 wrote to memory of 2096	3372	rundll32.exe	105
PID 3372 wrote to memory of 2096	3372	rundll32.exe	105
PID 2096 wrote to memory of 1780	2096	rundll32.exe	106
PID 2096 wrote to memory of 1780	2096	rundll32.exe	106
PID 2096 wrote to memory of 1780	2096	rundll32.exe	106
PID 1780 wrote to memory of 2680	1780	rundll32.exe	107
PID 1780 wrote to memory of 2680	1780	rundll32.exe	107
PID 1780 wrote to memory of 2680	1780	rundll32.exe	107
PID 2680 wrote to memory of 5016	2680	rundll32.exe	108
PID 2680 wrote to memory of 5016	2680	rundll32.exe	108
PID 2680 wrote to memory of 5016	2680	rundll32.exe	108
PID 5016 wrote to memory of 3784	5016	rundll32.exe	109
PID 5016 wrote to memory of 3784	5016	rundll32.exe	109
PID 5016 wrote to memory of 3784	5016	rundll32.exe	109
PID 3784 wrote to memory of 4844	3784	rundll32.exe	110
PID 3784 wrote to memory of 4844	3784	rundll32.exe	110
PID 3784 wrote to memory of 4844	3784	rundll32.exe	110
PID 4844 wrote to memory of 4812	4844	rundll32.exe	111
PID 4844 wrote to memory of 4812	4844	rundll32.exe	111
PID 4844 wrote to memory of 4812	4844	rundll32.exe	111
PID 4812 wrote to memory of 4916	4812	rundll32.exe	112
PID 4812 wrote to memory of 4916	4812	rundll32.exe	112
PID 4812 wrote to memory of 4916	4812	rundll32.exe	112
PID 4916 wrote to memory of 2436	4916	rundll32.exe	113
PID 4916 wrote to memory of 2436	4916	rundll32.exe	113
PID 4916 wrote to memory of 2436	4916	rundll32.exe	113
PID 2436 wrote to memory of 1492	2436	rundll32.exe	114
PID 2436 wrote to memory of 1492	2436	rundll32.exe	114
PID 2436 wrote to memory of 1492	2436	rundll32.exe	114
PID 1492 wrote to memory of 472	1492	rundll32.exe	115
PID 1492 wrote to memory of 472	1492	rundll32.exe	115
PID 1492 wrote to memory of 472	1492	rundll32.exe	115
PID 472 wrote to memory of 632	472	rundll32.exe	116
PID 472 wrote to memory of 632	472	rundll32.exe	116
PID 472 wrote to memory of 632	472	rundll32.exe	116
PID 632 wrote to memory of 3180	632	rundll32.exe	117

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2208
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:2204
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4484
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4080
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4936
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:2216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:3784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:2436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        23⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        24⤵
        
        PID:4896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        25⤵
        
        PID:1748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        26⤵
        
        PID:2164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        27⤵
        
        PID:4800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        28⤵
        
        PID:3756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        29⤵
        
        PID:4552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        30⤵
        
        PID:2488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        31⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        32⤵
        
        PID:1700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        33⤵
        
        PID:2708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        34⤵
        
        PID:3124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        35⤵
        
        PID:692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        36⤵
        
        PID:1156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        37⤵
        
        PID:2056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        38⤵
        
        PID:3732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        39⤵
        
        PID:1888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        40⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        41⤵
        
        PID:1640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        42⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        43⤵
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        44⤵
        
        PID:3888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        45⤵
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        46⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        47⤵
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        48⤵
        
        PID:4292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        49⤵
        
        PID:1180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        50⤵
        
        PID:4920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        51⤵
        
        PID:3768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        52⤵
        
        PID:4972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        53⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        54⤵
        
        PID:764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        55⤵
        
        PID:4252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        56⤵
        
        PID:556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        57⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        58⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        59⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        60⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        61⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        62⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        63⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        64⤵
        
        PID:5236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        65⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        66⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        67⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        68⤵
        
        PID:5296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        69⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        70⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        71⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        72⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        73⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        74⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        75⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        76⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        77⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        78⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        79⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        80⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        81⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        82⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        83⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        84⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        85⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        86⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        87⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        88⤵
        
        PID:5620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        89⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        90⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        91⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        92⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        93⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        94⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        95⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        96⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        97⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        98⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        99⤵
        
        PID:5772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        100⤵
        
        PID:5788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        101⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        102⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        103⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        104⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        105⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        106⤵
        
        PID:5872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        107⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        108⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        109⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        110⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        111⤵
        
        PID:5940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        112⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        113⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        114⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        115⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        116⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        117⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        118⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        119⤵
        
        PID:6052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        120⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        121⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        122⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        123⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        124⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        125⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        126⤵
        
        PID:4468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        127⤵
        
        PID:2192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        128⤵
        
        PID:4256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        129⤵
        
        PID:4264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        130⤵
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        131⤵
        
        PID:4688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        132⤵
        
        PID:456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        133⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        134⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        135⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        136⤵
        
        PID:6176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        137⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        138⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        139⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        140⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        141⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        142⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        143⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        144⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        145⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        146⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        147⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        148⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        149⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        150⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        151⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        152⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        153⤵
        
        PID:6408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        154⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        155⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        156⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        157⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        158⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        159⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        160⤵
        
        PID:6508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        161⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        162⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        163⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        164⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        165⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        166⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        167⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        168⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        169⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        170⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        171⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        172⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        173⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        174⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        175⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        176⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        177⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        178⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        179⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        180⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        181⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        182⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        183⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        184⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        185⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        186⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        187⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        188⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        189⤵
        
        PID:6932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        190⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        191⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        192⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        193⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        194⤵
        
        PID:7000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        195⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        196⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        197⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        198⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        199⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        200⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        201⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        202⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        203⤵
        
        PID:7128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        204⤵
        
        PID:7140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        205⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        206⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        207⤵
        
        PID:3316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        208⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        209⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        210⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        211⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        212⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        213⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        214⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        215⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        216⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        217⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        218⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        219⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        220⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        221⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        222⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        223⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        224⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        225⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        226⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        227⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        228⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        229⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        230⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        231⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        232⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        233⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        234⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        235⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        236⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        237⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        238⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        239⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        240⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        241⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        242⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        243⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        244⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        245⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        246⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        247⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        248⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        249⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        250⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        251⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        252⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        253⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        254⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        255⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        256⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        257⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        258⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        259⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        260⤵
        
        PID:7852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        261⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        262⤵
        
        PID:7884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        263⤵
        
        PID:7900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        264⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        265⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        266⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        267⤵
        
        PID:7952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        268⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        269⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        270⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        271⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        272⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        273⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        274⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        275⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        276⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        277⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        278⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        279⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        280⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        281⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        282⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        283⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        284⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        285⤵
        
        PID:8204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        286⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        287⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        288⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        289⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        290⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        291⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        292⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        293⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        294⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        295⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        296⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        297⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        298⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        299⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        300⤵
        
        PID:8408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        301⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        302⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        303⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        304⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        305⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        306⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        307⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        308⤵
        
        PID:8524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        309⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        310⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        311⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        312⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        313⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        314⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        315⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        316⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        317⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        318⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        319⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        320⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        321⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        322⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        323⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        324⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        325⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        326⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        327⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        328⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        329⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        330⤵
        
        PID:8820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        331⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        332⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        333⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        334⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        335⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        336⤵
        
        PID:8908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        337⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        338⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        339⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        340⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        341⤵
        
        PID:8976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        342⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        343⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        344⤵
        
        PID:9012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        345⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        346⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        347⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        348⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        349⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        350⤵
        
        PID:9108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        351⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        352⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        353⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        354⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        355⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        356⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        357⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        358⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        359⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        360⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        361⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        362⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        363⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        364⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        365⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        366⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        367⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        368⤵
        
        PID:9336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        369⤵
        
        PID:9352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        370⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        371⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        372⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        373⤵
        
        PID:9408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        374⤵
        
        PID:9424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        375⤵
        
        PID:9440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        376⤵
        
        PID:9456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        377⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        378⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        379⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        380⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        381⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        382⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        383⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        384⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        385⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        386⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        387⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        388⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        389⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        390⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        391⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        392⤵
        
        PID:9676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        393⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        394⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        395⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        396⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        397⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        398⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        399⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        400⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        401⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        402⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        403⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        404⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        405⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        406⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        407⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        408⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        409⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        410⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        411⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        412⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        413⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        414⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        415⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        416⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        417⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        418⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        419⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        420⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        421⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        422⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        423⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        424⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        425⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        426⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        427⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        428⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        429⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        430⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        431⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        432⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        433⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        434⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        435⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        436⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        437⤵
        
        PID:10276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        438⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        439⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        440⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        441⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        442⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        443⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        444⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        445⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        446⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        447⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        448⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        449⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        450⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        451⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        452⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        453⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        454⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        455⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        456⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        457⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        458⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        459⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        460⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        461⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        462⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        463⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        464⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        465⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        466⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        467⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        468⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        469⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        470⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        471⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        472⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        473⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        474⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        475⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        476⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        477⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        478⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        479⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        480⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        481⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        482⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        483⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        484⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        485⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        486⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        487⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        488⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        489⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        490⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        491⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        492⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        493⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        494⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        495⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        496⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        497⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        498⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        499⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        500⤵
        
        PID:11140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        501⤵
        
        PID:11156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        502⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        503⤵
        
        PID:11184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        504⤵
        
        PID:11200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        505⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        506⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        507⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        508⤵
        
        PID:10044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        509⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        510⤵
        
        PID:10976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        511⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        512⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        513⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        514⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        515⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        516⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        517⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        518⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        519⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        520⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        521⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        522⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        523⤵
        
        PID:11592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        524⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        525⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        526⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        527⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        528⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        529⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        530⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        531⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        532⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        533⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        534⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        535⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        536⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        537⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        538⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        539⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        540⤵
        
        PID:11848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        541⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        542⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        543⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        544⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        545⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        546⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        547⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        548⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        549⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        550⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        551⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        552⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        553⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        554⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        555⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        556⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        557⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        558⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        559⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        560⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        561⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        562⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        563⤵
        
        PID:12224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        564⤵
        
        PID:12236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        565⤵
        
        PID:12252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        566⤵
        
        PID:12264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        567⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        568⤵
        
        PID:2308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        569⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        570⤵
        
        PID:396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        571⤵
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        572⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        573⤵
        
        PID:4588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        574⤵
        
        PID:1508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        575⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        576⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        577⤵
        
        PID:2760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        578⤵
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        579⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        580⤵
        
        PID:2676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        581⤵
        
        PID:2484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        582⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        583⤵
        
        PID:2476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        584⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        585⤵
        
        PID:1980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        586⤵
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        587⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        588⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        589⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        590⤵
        
        PID:1552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        591⤵
        
        PID:3336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        592⤵
        
        PID:1708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        593⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        594⤵
        
        PID:944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        595⤵
        
        PID:884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        596⤵
        
        PID:2572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        597⤵
        
        PID:3984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        598⤵
        
        PID:216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        599⤵
        
        PID:5056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        600⤵
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        601⤵
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        602⤵
        
        PID:2948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        603⤵
        
        PID:3880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        604⤵
        
        PID:1380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        605⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        606⤵
        
        PID:3564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        607⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        608⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        609⤵
        
        PID:4276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        610⤵
        
        PID:5104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        611⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        612⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        613⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        614⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        615⤵
        
        PID:12304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        616⤵
        
        PID:12320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        617⤵
        
        PID:12332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        618⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        619⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        620⤵
        
        PID:12368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        621⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        622⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        623⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        624⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        625⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        626⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        627⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        628⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        629⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        630⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        631⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        632⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        633⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        634⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        635⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        636⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        637⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        638⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        639⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        640⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        641⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        642⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        643⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        644⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        645⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        646⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        647⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        648⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        649⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        650⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        651⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        652⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        653⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        654⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        655⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        656⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        657⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        658⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        659⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        660⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        661⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        662⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        663⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        664⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        665⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        666⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        667⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        668⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        669⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        670⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        671⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        672⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        673⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        674⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        675⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        676⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        677⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        678⤵
        
        PID:13176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        679⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        680⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        681⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        682⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        683⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        684⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        685⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        686⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        687⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        688⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        689⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        690⤵
        
        PID:5524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        691⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        692⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        693⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        694⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        695⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        696⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        697⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        698⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        699⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        700⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        701⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        702⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        703⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        704⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        705⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        706⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        707⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        708⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        709⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        710⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        711⤵
        
        PID:3740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        712⤵
        
        PID:4236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        713⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        714⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        715⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        716⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        717⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        718⤵
        
        PID:6268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        719⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        720⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        721⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        722⤵
        
        PID:3360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        723⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        724⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        725⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        726⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        727⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        728⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        729⤵
        
        PID:6560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        730⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        731⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        732⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        733⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        734⤵
        
        PID:3908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        735⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        736⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        737⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        738⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        739⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        740⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        741⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        742⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        743⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        744⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        745⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        746⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        747⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        748⤵
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        749⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        750⤵
        
        PID:4764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        751⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        752⤵
        
        PID:4824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        753⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        754⤵
        
        PID:8
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        755⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        756⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        757⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        758⤵
        
        PID:13340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        759⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        760⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        761⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        762⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        763⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        764⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        765⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        766⤵
        
        PID:13460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        767⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        768⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        769⤵
        
        PID:13504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        770⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        771⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        772⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        773⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        774⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        775⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        776⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        777⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        778⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        779⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        780⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        781⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        782⤵
        
        PID:13764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        783⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        784⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        785⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        786⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        787⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        788⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        789⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        790⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        791⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        792⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        793⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        794⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        795⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        796⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        797⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        798⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        799⤵
        
        PID:14076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        800⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        801⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        802⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        803⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        804⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        805⤵
        
        PID:14184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        806⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        807⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        808⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        809⤵
        
        PID:14244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        810⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        811⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        812⤵
        
        PID:14280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        813⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        814⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        815⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        816⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        817⤵
        
        PID:776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        818⤵
        
        PID:7268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        819⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        820⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        821⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        822⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        823⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        824⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        825⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        826⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        827⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        828⤵
        
        PID:1448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        829⤵
        
        PID:2316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        830⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        831⤵
        
        PID:2280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        832⤵
        
        PID:2440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        833⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        834⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        835⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        836⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        837⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        838⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        839⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        840⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        841⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        842⤵
        
        PID:13612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        843⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        844⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        845⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        846⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        847⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        848⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        849⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        850⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        851⤵
        
        PID:3448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        852⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        853⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        854⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        855⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        856⤵
        
        PID:8144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        857⤵
        
        PID:8172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        858⤵
        
        PID:1324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        859⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        860⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        861⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        862⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        863⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        864⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        865⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        866⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        867⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        868⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        869⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        870⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        871⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        872⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        873⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        874⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        875⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        876⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        877⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        878⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        879⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f03e9ced96ab794f284943856bce067b_JaffaCakes118.dll,#1
        880⤵
        
        PID:14376

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=4388,i,11689630796550498308,215737424132741214,262144 --variations-seed-version --mojo-platform-channel-handle=4292 /prefetch:8
1⤵
PID:5268

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads