308e8b21d82e40ac510eb23c9f45658b53b6eba3d87912eb69a477fd730b7fc5

Analysis

max time kernel
91s
max time network
96s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
16/04/2024, 23:31

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll
Size

496KB
MD5

f491ace1bfd4df2f6e9f64f004a516e0
SHA1

a0db93a29ac928289e13f0910ddb4da28a7086af
SHA256

308e8b21d82e40ac510eb23c9f45658b53b6eba3d87912eb69a477fd730b7fc5
SHA512

04ddb0fc714b6670333a1fc08f1e0abc0940e551c3b02b09275d306115fd1b9acf71b3fa7d9ca02585ebdc427ef7452bf9e1bed573fad9e53c0adf696de3f231
SSDEEP

12288:5FoSETwnfonTb+1bi/gAnlsNf9u59lUK8Xo5Uu+WYMKN:znfATAi/gWu9uv7uo7XYTN

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2572 wrote to memory of 2100	2572	rundll32.exe	81
PID 2572 wrote to memory of 2100	2572	rundll32.exe	81
PID 2572 wrote to memory of 2100	2572	rundll32.exe	81
PID 2100 wrote to memory of 1868	2100	rundll32.exe	84
PID 2100 wrote to memory of 1868	2100	rundll32.exe	84
PID 2100 wrote to memory of 1868	2100	rundll32.exe	84
PID 1868 wrote to memory of 1032	1868	rundll32.exe	85
PID 1868 wrote to memory of 1032	1868	rundll32.exe	85
PID 1868 wrote to memory of 1032	1868	rundll32.exe	85
PID 1032 wrote to memory of 4304	1032	rundll32.exe	86
PID 1032 wrote to memory of 4304	1032	rundll32.exe	86
PID 1032 wrote to memory of 4304	1032	rundll32.exe	86
PID 4304 wrote to memory of 2888	4304	rundll32.exe	87
PID 4304 wrote to memory of 2888	4304	rundll32.exe	87
PID 4304 wrote to memory of 2888	4304	rundll32.exe	87
PID 2888 wrote to memory of 3636	2888	rundll32.exe	89
PID 2888 wrote to memory of 3636	2888	rundll32.exe	89
PID 2888 wrote to memory of 3636	2888	rundll32.exe	89
PID 3636 wrote to memory of 3036	3636	rundll32.exe	90
PID 3636 wrote to memory of 3036	3636	rundll32.exe	90
PID 3636 wrote to memory of 3036	3636	rundll32.exe	90
PID 3036 wrote to memory of 3112	3036	rundll32.exe	91
PID 3036 wrote to memory of 3112	3036	rundll32.exe	91
PID 3036 wrote to memory of 3112	3036	rundll32.exe	91
PID 3112 wrote to memory of 1040	3112	rundll32.exe	92
PID 3112 wrote to memory of 1040	3112	rundll32.exe	92
PID 3112 wrote to memory of 1040	3112	rundll32.exe	92
PID 1040 wrote to memory of 3032	1040	rundll32.exe	93
PID 1040 wrote to memory of 3032	1040	rundll32.exe	93
PID 1040 wrote to memory of 3032	1040	rundll32.exe	93
PID 3032 wrote to memory of 2172	3032	rundll32.exe	94
PID 3032 wrote to memory of 2172	3032	rundll32.exe	94
PID 3032 wrote to memory of 2172	3032	rundll32.exe	94
PID 2172 wrote to memory of 3132	2172	rundll32.exe	95
PID 2172 wrote to memory of 3132	2172	rundll32.exe	95
PID 2172 wrote to memory of 3132	2172	rundll32.exe	95
PID 3132 wrote to memory of 748	3132	rundll32.exe	96
PID 3132 wrote to memory of 748	3132	rundll32.exe	96
PID 3132 wrote to memory of 748	3132	rundll32.exe	96
PID 748 wrote to memory of 2056	748	rundll32.exe	97
PID 748 wrote to memory of 2056	748	rundll32.exe	97
PID 748 wrote to memory of 2056	748	rundll32.exe	97
PID 2056 wrote to memory of 4184	2056	rundll32.exe	98
PID 2056 wrote to memory of 4184	2056	rundll32.exe	98
PID 2056 wrote to memory of 4184	2056	rundll32.exe	98
PID 4184 wrote to memory of 2300	4184	rundll32.exe	99
PID 4184 wrote to memory of 2300	4184	rundll32.exe	99
PID 4184 wrote to memory of 2300	4184	rundll32.exe	99
PID 2300 wrote to memory of 4676	2300	rundll32.exe	100
PID 2300 wrote to memory of 4676	2300	rundll32.exe	100
PID 2300 wrote to memory of 4676	2300	rundll32.exe	100
PID 4676 wrote to memory of 1088	4676	rundll32.exe	101
PID 4676 wrote to memory of 1088	4676	rundll32.exe	101
PID 4676 wrote to memory of 1088	4676	rundll32.exe	101
PID 1088 wrote to memory of 4680	1088	rundll32.exe	102
PID 1088 wrote to memory of 4680	1088	rundll32.exe	102
PID 1088 wrote to memory of 4680	1088	rundll32.exe	102
PID 4680 wrote to memory of 5016	4680	rundll32.exe	103
PID 4680 wrote to memory of 5016	4680	rundll32.exe	103
PID 4680 wrote to memory of 5016	4680	rundll32.exe	103
PID 5016 wrote to memory of 1692	5016	rundll32.exe	104
PID 5016 wrote to memory of 1692	5016	rundll32.exe	104
PID 5016 wrote to memory of 1692	5016	rundll32.exe	104
PID 1692 wrote to memory of 4968	1692	rundll32.exe	105

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2572
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:2100
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1868
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1032
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4304
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:1040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:3032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:2172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:2300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:1692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        23⤵
        
        PID:4968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        24⤵
        
        PID:2512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        25⤵
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        26⤵
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        27⤵
        
        PID:1772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        28⤵
        
        PID:2708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        29⤵
        
        PID:4408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        30⤵
        
        PID:4720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        31⤵
        
        PID:3476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        32⤵
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        33⤵
        
        PID:2576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        34⤵
        
        PID:2372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        35⤵
        
        PID:1320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        36⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        37⤵
        
        PID:1672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        38⤵
        
        PID:2840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        39⤵
        
        PID:4076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        40⤵
        
        PID:2816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        41⤵
        
        PID:616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        42⤵
        
        PID:2216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        43⤵
        
        PID:4348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        44⤵
        
        PID:5112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        45⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        46⤵
        
        PID:1860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        47⤵
        
        PID:4468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        48⤵
        
        PID:2920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        49⤵
        
        PID:4572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        50⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        51⤵
        
        PID:3856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        52⤵
        
        PID:2144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        53⤵
        
        PID:2248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        54⤵
        
        PID:4092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        55⤵
        
        PID:4416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        56⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        57⤵
        
        PID:1328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        58⤵
        
        PID:2560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        59⤵
        
        PID:1308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        60⤵
        
        PID:2700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        61⤵
        
        PID:3700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        62⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        63⤵
        
        PID:3408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        64⤵
        
        PID:532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        65⤵
        
        PID:3088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        66⤵
        
        PID:864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        67⤵
        
        PID:1512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        68⤵
        
        PID:432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        69⤵
        
        PID:832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        70⤵
        
        PID:3912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        71⤵
        
        PID:3896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        72⤵
        
        PID:868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        73⤵
        
        PID:4892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        74⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        75⤵
        
        PID:3468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        76⤵
        
        PID:1968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        77⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        78⤵
        
        PID:680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        79⤵
        
        PID:3652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        80⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        81⤵
        
        PID:376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        82⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        83⤵
        
        PID:4052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        84⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        85⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        86⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        87⤵
        
        PID:1788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        88⤵
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        89⤵
        
        PID:3368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        90⤵
        
        PID:3172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        91⤵
        
        PID:4600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        92⤵
        
        PID:1620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        93⤵
        
        PID:3692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        94⤵
        
        PID:3160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        95⤵
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        96⤵
        
        PID:3972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        97⤵
        
        PID:1056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        98⤵
        
        PID:3840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        99⤵
        
        PID:836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        100⤵
        
        PID:3980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        101⤵
        
        PID:3080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        102⤵
        
        PID:2264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        103⤵
        
        PID:388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        104⤵
        
        PID:1560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        105⤵
        
        PID:4292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        106⤵
        
        PID:4436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        107⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        108⤵
        
        PID:536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        109⤵
        
        PID:3900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        110⤵
        
        PID:2784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        111⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        112⤵
        
        PID:1584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        113⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        114⤵
        
        PID:3148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        115⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        116⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        117⤵
        
        PID:2268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        118⤵
        
        PID:2060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        119⤵
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        120⤵
        
        PID:5028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        121⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        122⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        123⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        124⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        125⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        126⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        127⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        128⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        129⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        130⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        131⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        132⤵
        
        PID:5284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        133⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        134⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        135⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        136⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        137⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        138⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        139⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        140⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        141⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        142⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        143⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        144⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        145⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        146⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        147⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        148⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        149⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        150⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        151⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        152⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        153⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        154⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        155⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        156⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        157⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        158⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        159⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        160⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        161⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        162⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        163⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        164⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        165⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        166⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        167⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        168⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        169⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        170⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        171⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        172⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        173⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        174⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        175⤵
        
        PID:5872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        176⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        177⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        178⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        179⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        180⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        181⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        182⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        183⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        184⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        185⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        186⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        187⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        188⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        189⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        190⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        191⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        192⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        193⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        194⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        195⤵
        
        PID:1468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        196⤵
        
        PID:3344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        197⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        198⤵
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        199⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        200⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        201⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        202⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        203⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        204⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        205⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        206⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        207⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        208⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        209⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        210⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        211⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        212⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        213⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        214⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        215⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        216⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        217⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        218⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        219⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        220⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        221⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        222⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        223⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        224⤵
        
        PID:6504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        225⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        226⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        227⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        228⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        229⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        230⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        231⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        232⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        233⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        234⤵
        
        PID:6656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        235⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        236⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        237⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        238⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        239⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        240⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        241⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        242⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        243⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        244⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        245⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        246⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        247⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        248⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        249⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        250⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        251⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        252⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        253⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        254⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        255⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        256⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        257⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        258⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        259⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        260⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        261⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        262⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        263⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        264⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        265⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        266⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        267⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        268⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        269⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        270⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        271⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        272⤵
        
        PID:3568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        273⤵
        
        PID:3596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        274⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        275⤵
        
        PID:4236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        276⤵
        
        PID:4120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        277⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        278⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        279⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        280⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        281⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        282⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        283⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        284⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        285⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        286⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        287⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        288⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        289⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        290⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        291⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        292⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        293⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        294⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        295⤵
        
        PID:7448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        296⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        297⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        298⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        299⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        300⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        301⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        302⤵
        
        PID:7556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        303⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        304⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        305⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        306⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        307⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        308⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        309⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        310⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        311⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        312⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        313⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        314⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        315⤵
        
        PID:7732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        316⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        317⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        318⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        319⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        320⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        321⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        322⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        323⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        324⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        325⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        326⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        327⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        328⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        329⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        330⤵
        
        PID:7960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        331⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        332⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        333⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        334⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        335⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        336⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        337⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        338⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        339⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        340⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        341⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        342⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        343⤵
        
        PID:8148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        344⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        345⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        346⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        347⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        348⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        349⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        350⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        351⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        352⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        353⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        354⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        355⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        356⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        357⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        358⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        359⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        360⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        361⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        362⤵
        
        PID:8408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        363⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        364⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        365⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        366⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        367⤵
        
        PID:8492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        368⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        369⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        370⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        371⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        372⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        373⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        374⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        375⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        376⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        377⤵
        
        PID:8628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        378⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        379⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        380⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        381⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        382⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        383⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        384⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        385⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        386⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        387⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        388⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        389⤵
        
        PID:8804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        390⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        391⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        392⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        393⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        394⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        395⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        396⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        397⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        398⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        399⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        400⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        401⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        402⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        403⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        404⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        405⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        406⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        407⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        408⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        409⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        410⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        411⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        412⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        413⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        414⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        415⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        416⤵
        
        PID:9180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        417⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        418⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        419⤵
        
        PID:8124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        420⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        421⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        422⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        423⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        424⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        425⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        426⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        427⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        428⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        429⤵
        
        PID:9352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        430⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        431⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        432⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        433⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        434⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        435⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        436⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        437⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        438⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        439⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        440⤵
        
        PID:9508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        441⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        442⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        443⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        444⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        445⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        446⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        447⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        448⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        449⤵
        
        PID:9636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        450⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        451⤵
        
        PID:9660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        452⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        453⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        454⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        455⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        456⤵
        
        PID:9724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        457⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        458⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        459⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        460⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        461⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        462⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        463⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        464⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        465⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        466⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        467⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        468⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        469⤵
        
        PID:9960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        470⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        471⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        472⤵
        
        PID:10056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        473⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        474⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        475⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        476⤵
        
        PID:10172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        477⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        478⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        479⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        480⤵
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        481⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        482⤵
        
        PID:4824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        483⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        484⤵
        
        PID:10260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        485⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        486⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        487⤵
        
        PID:10312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        488⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        489⤵
        
        PID:10340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        490⤵
        
        PID:10356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        491⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        492⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        493⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        494⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        495⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        496⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        497⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        498⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        499⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        500⤵
        
        PID:10516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        501⤵
        
        PID:10536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        502⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        503⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        504⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        505⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        506⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        507⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        508⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        509⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        510⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        511⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        512⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        513⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        514⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        515⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        516⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        517⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        518⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        519⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        520⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        521⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        522⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        523⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        524⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        525⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        526⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        527⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        528⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        529⤵
        
        PID:10976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        530⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        531⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        532⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        533⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        534⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        535⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        536⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        537⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        538⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        539⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        540⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        541⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        542⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        543⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        544⤵
        
        PID:11172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        545⤵
        
        PID:11184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        546⤵
        
        PID:11200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        547⤵
        
        PID:11216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        548⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        549⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        550⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        551⤵
        
        PID:924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        552⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        553⤵
        
        PID:2924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        554⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        555⤵
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        556⤵
        
        PID:4384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        557⤵
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        558⤵
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        559⤵
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        560⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        561⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        562⤵
        
        PID:3544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        563⤵
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        564⤵
        
        PID:1828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        565⤵
        
        PID:1604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        566⤵
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        567⤵
        
        PID:4112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        568⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        569⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        570⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        571⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        572⤵
        
        PID:2160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        573⤵
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        574⤵
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        575⤵
        
        PID:3480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        576⤵
        
        PID:2868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        577⤵
        
        PID:960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        578⤵
        
        PID:3444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        579⤵
        
        PID:2188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        580⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        581⤵
        
        PID:2820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        582⤵
        
        PID:636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        583⤵
        
        PID:912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        584⤵
        
        PID:2532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        585⤵
        
        PID:1160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        586⤵
        
        PID:4796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        587⤵
        
        PID:1220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        588⤵
        
        PID:1252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        589⤵
        
        PID:3688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        590⤵
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        591⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        592⤵
        
        PID:1804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        593⤵
        
        PID:3672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        594⤵
        
        PID:4000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        595⤵
        
        PID:3352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        596⤵
        
        PID:2440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        597⤵
        
        PID:4880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        598⤵
        
        PID:2884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        599⤵
        
        PID:2196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        600⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        601⤵
        
        PID:3044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        602⤵
        
        PID:1588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        603⤵
        
        PID:1052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        604⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        605⤵
        
        PID:2592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        606⤵
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        607⤵
        
        PID:3928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        608⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        609⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        610⤵
        
        PID:3232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        611⤵
        
        PID:4188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        612⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        613⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        614⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        615⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        616⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        617⤵
        
        PID:4640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        618⤵
        
        PID:2776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        619⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        620⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        621⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        622⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        623⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        624⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        625⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        626⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        627⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        628⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        629⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        630⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        631⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        632⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        633⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        634⤵
        
        PID:11412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        635⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        636⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        637⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        638⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        639⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        640⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        641⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        642⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        643⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        644⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        645⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        646⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        647⤵
        
        PID:11592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        648⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        649⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        650⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        651⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        652⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        653⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        654⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        655⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        656⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        657⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        658⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        659⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        660⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        661⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        662⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        663⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        664⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        665⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        666⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        667⤵
        
        PID:11884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        668⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        669⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        670⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        671⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        672⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        673⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        674⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        675⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        676⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        677⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        678⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        679⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        680⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        681⤵
        
        PID:12164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        682⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        683⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        684⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        685⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        686⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        687⤵
        
        PID:12248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        688⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        689⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        690⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        691⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        692⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        693⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        694⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        695⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        696⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        697⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        698⤵
        
        PID:10028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        699⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        700⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        701⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        702⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        703⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        704⤵
        
        PID:3500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        705⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        706⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        707⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        708⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        709⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        710⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        711⤵
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        712⤵
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        713⤵
        
        PID:1140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        714⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        715⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        716⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        717⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        718⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        719⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        720⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        721⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        722⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        723⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        724⤵
        
        PID:6576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        725⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        726⤵
        
        PID:6632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        727⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        728⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        729⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        730⤵
        
        PID:6748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        731⤵
        
        PID:6780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        732⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        733⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        734⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        735⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        736⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        737⤵
        
        PID:7000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        738⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        739⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        740⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        741⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        742⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        743⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        744⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        745⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        746⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        747⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        748⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        749⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        750⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        751⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        752⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        753⤵
        
        PID:12492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        754⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        755⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        756⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        757⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        758⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        759⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        760⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        761⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        762⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        763⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        764⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        765⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        766⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        767⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        768⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        769⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        770⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        771⤵
        
        PID:12740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        772⤵
        
        PID:12756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        773⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        774⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        775⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        776⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        777⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        778⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        779⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        780⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        781⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        782⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        783⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        784⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        785⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        786⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        787⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        788⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        789⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        790⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        791⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        792⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        793⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        794⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        795⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        796⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        797⤵
        
        PID:13096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        798⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        799⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        800⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        801⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        802⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        803⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        804⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        805⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        806⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        807⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        808⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        809⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        810⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        811⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        812⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        813⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        814⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        815⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        816⤵
        
        PID:2168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        817⤵
        
        PID:3164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        818⤵
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        819⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        820⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        821⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        822⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        823⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        824⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        825⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        826⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        827⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        828⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        829⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        830⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        831⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        832⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        833⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        834⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        835⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        836⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        837⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        838⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        839⤵
        
        PID:7900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        840⤵
        
        PID:7952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        841⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        842⤵
        
        PID:3776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        843⤵
        
        PID:2260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        844⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        845⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        846⤵
        
        PID:8052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        847⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        848⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        849⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        850⤵
        
        PID:4376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        851⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        852⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        853⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        854⤵
        
        PID:2656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        855⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        856⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        857⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        858⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        859⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        860⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        861⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        862⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        863⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        864⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        865⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        866⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        867⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        868⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        869⤵
        
        PID:8760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        870⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        871⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        872⤵
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        873⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        874⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        875⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        876⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        877⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        878⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        879⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        880⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        881⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        882⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        883⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        884⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        885⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        886⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        887⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        888⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        889⤵
        
        PID:13440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        890⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        891⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        892⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        893⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        894⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        895⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        896⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        897⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        898⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        899⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        900⤵
        
        PID:13596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        901⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        902⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        903⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        904⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        905⤵
        
        PID:13672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        906⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        907⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        908⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        909⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        910⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        911⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        912⤵
        
        PID:13764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        913⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        914⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        915⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        916⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        917⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        918⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        919⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        920⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\f491ace1bfd4df2f6e9f64f004a516e0_JaffaCakes118.dll,#1
        921⤵
        
        PID:13904

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads