445c5110fd5439392b06d8ff9e68291706009aa147ff6ec0f9ee328b3dc129db

Analysis

max time kernel
93s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
30-04-2024 13:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll
Size

12KB
MD5

09d5d41f89fdab618940f0f1113e5ea5
SHA1

9185d3710be6656f7014956978d6a57c10f642c8
SHA256

445c5110fd5439392b06d8ff9e68291706009aa147ff6ec0f9ee328b3dc129db
SHA512

480bfdee84cb7bcb89d258175d570d1aee6e72e421dac96e80a9db90c044aba325ab5da35101ee7b46b852cebe63735d24b7613450ef7977fb122f87869a4c41
SSDEEP

192:MXjGOSBbSQAoeAXDGhbAPeWEGDI58bYKlaMfbp5Tx1seVkDCn/hQVYpFWaHtW:1GA6Rvuo8bXtfbfrsOkm/hyYpFWaHtW

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3764 wrote to memory of 3568	3764	rundll32.exe	83
PID 3764 wrote to memory of 3568	3764	rundll32.exe	83
PID 3764 wrote to memory of 3568	3764	rundll32.exe	83
PID 3568 wrote to memory of 3040	3568	rundll32.exe	84
PID 3568 wrote to memory of 3040	3568	rundll32.exe	84
PID 3568 wrote to memory of 3040	3568	rundll32.exe	84
PID 3040 wrote to memory of 3172	3040	rundll32.exe	85
PID 3040 wrote to memory of 3172	3040	rundll32.exe	85
PID 3040 wrote to memory of 3172	3040	rundll32.exe	85
PID 3172 wrote to memory of 3152	3172	rundll32.exe	86
PID 3172 wrote to memory of 3152	3172	rundll32.exe	86
PID 3172 wrote to memory of 3152	3172	rundll32.exe	86
PID 3152 wrote to memory of 4392	3152	rundll32.exe	87
PID 3152 wrote to memory of 4392	3152	rundll32.exe	87
PID 3152 wrote to memory of 4392	3152	rundll32.exe	87
PID 4392 wrote to memory of 220	4392	rundll32.exe	88
PID 4392 wrote to memory of 220	4392	rundll32.exe	88
PID 4392 wrote to memory of 220	4392	rundll32.exe	88
PID 220 wrote to memory of 3620	220	rundll32.exe	89
PID 220 wrote to memory of 3620	220	rundll32.exe	89
PID 220 wrote to memory of 3620	220	rundll32.exe	89
PID 3620 wrote to memory of 3400	3620	rundll32.exe	90
PID 3620 wrote to memory of 3400	3620	rundll32.exe	90
PID 3620 wrote to memory of 3400	3620	rundll32.exe	90
PID 3400 wrote to memory of 3128	3400	rundll32.exe	91
PID 3400 wrote to memory of 3128	3400	rundll32.exe	91
PID 3400 wrote to memory of 3128	3400	rundll32.exe	91
PID 3128 wrote to memory of 3744	3128	rundll32.exe	92
PID 3128 wrote to memory of 3744	3128	rundll32.exe	92
PID 3128 wrote to memory of 3744	3128	rundll32.exe	92
PID 3744 wrote to memory of 1264	3744	rundll32.exe	93
PID 3744 wrote to memory of 1264	3744	rundll32.exe	93
PID 3744 wrote to memory of 1264	3744	rundll32.exe	93
PID 1264 wrote to memory of 4008	1264	rundll32.exe	94
PID 1264 wrote to memory of 4008	1264	rundll32.exe	94
PID 1264 wrote to memory of 4008	1264	rundll32.exe	94
PID 4008 wrote to memory of 928	4008	rundll32.exe	95
PID 4008 wrote to memory of 928	4008	rundll32.exe	95
PID 4008 wrote to memory of 928	4008	rundll32.exe	95
PID 928 wrote to memory of 4664	928	rundll32.exe	96
PID 928 wrote to memory of 4664	928	rundll32.exe	96
PID 928 wrote to memory of 4664	928	rundll32.exe	96
PID 4664 wrote to memory of 1196	4664	rundll32.exe	97
PID 4664 wrote to memory of 1196	4664	rundll32.exe	97
PID 4664 wrote to memory of 1196	4664	rundll32.exe	97
PID 1196 wrote to memory of 1516	1196	rundll32.exe	98
PID 1196 wrote to memory of 1516	1196	rundll32.exe	98
PID 1196 wrote to memory of 1516	1196	rundll32.exe	98
PID 1516 wrote to memory of 412	1516	rundll32.exe	99
PID 1516 wrote to memory of 412	1516	rundll32.exe	99
PID 1516 wrote to memory of 412	1516	rundll32.exe	99
PID 412 wrote to memory of 3148	412	rundll32.exe	100
PID 412 wrote to memory of 3148	412	rundll32.exe	100
PID 412 wrote to memory of 3148	412	rundll32.exe	100
PID 3148 wrote to memory of 1328	3148	rundll32.exe	101
PID 3148 wrote to memory of 1328	3148	rundll32.exe	101
PID 3148 wrote to memory of 1328	3148	rundll32.exe	101
PID 1328 wrote to memory of 4240	1328	rundll32.exe	102
PID 1328 wrote to memory of 4240	1328	rundll32.exe	102
PID 1328 wrote to memory of 4240	1328	rundll32.exe	102
PID 4240 wrote to memory of 3008	4240	rundll32.exe	103
PID 4240 wrote to memory of 3008	4240	rundll32.exe	103
PID 4240 wrote to memory of 3008	4240	rundll32.exe	103
PID 3008 wrote to memory of 1008	3008	rundll32.exe	105

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3764
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:3568
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3040
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3172
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3152
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:4392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:3744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:4240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:3008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        23⤵
        
        PID:1008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        24⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        25⤵
        
        PID:1736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        26⤵
        
        PID:1980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        27⤵
        
        PID:4232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        28⤵
        
        PID:3408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        29⤵
        
        PID:3948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        30⤵
        
        PID:1976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        31⤵
        
        PID:4604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        32⤵
        
        PID:3184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        33⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        34⤵
        
        PID:5096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        35⤵
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        36⤵
        
        PID:748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        37⤵
        
        PID:4464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        38⤵
        
        PID:1420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        39⤵
        
        PID:1756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        40⤵
        
        PID:2880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        41⤵
        
        PID:1364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        42⤵
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        43⤵
        
        PID:1376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        44⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        45⤵
        
        PID:856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        46⤵
        
        PID:4124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        47⤵
        
        PID:3772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        48⤵
        
        PID:2272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        49⤵
        
        PID:2568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        50⤵
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        51⤵
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        52⤵
        
        PID:2660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        53⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        54⤵
        
        PID:1716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        55⤵
        
        PID:4120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        56⤵
        
        PID:1700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        57⤵
        
        PID:1512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        58⤵
        
        PID:1816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        59⤵
        
        PID:3736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        60⤵
        
        PID:3308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        61⤵
        
        PID:4596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        62⤵
        
        PID:1712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        63⤵
        
        PID:4676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        64⤵
        
        PID:4504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        65⤵
        
        PID:4156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        66⤵
        
        PID:432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        67⤵
        
        PID:4916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        68⤵
        
        PID:2548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        69⤵
        
        PID:2484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        70⤵
        
        PID:4012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        71⤵
        
        PID:1088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        72⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        73⤵
        
        PID:2704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        74⤵
        
        PID:2016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        75⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        76⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        77⤵
        
        PID:1464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        78⤵
        
        PID:2032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        79⤵
        
        PID:2940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        80⤵
        
        PID:3220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        81⤵
        
        PID:2520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        82⤵
        
        PID:4424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        83⤵
        
        PID:3956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        84⤵
        
        PID:4436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        85⤵
        
        PID:2064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        86⤵
        
        PID:2632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        87⤵
        
        PID:1344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        88⤵
        
        PID:808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        89⤵
        
        PID:4380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        90⤵
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        91⤵
        
        PID:1080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        92⤵
        
        PID:2256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        93⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        94⤵
        
        PID:4016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        95⤵
        
        PID:1884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        96⤵
        
        PID:1412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        97⤵
        
        PID:1336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        98⤵
        
        PID:5040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        99⤵
        
        PID:2068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        100⤵
        
        PID:2584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        101⤵
        
        PID:860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        102⤵
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        103⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        104⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        105⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        106⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        107⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        108⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        109⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        110⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        111⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        112⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        113⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        114⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        115⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        116⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        117⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        118⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        119⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        120⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        121⤵
        
        PID:5460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        122⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        123⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        124⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        125⤵
        
        PID:5560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        126⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        127⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        128⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        129⤵
        
        PID:5640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        130⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        131⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        132⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        133⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        134⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        135⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        136⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        137⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        138⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        139⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        140⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        141⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        142⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        143⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        144⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        145⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        146⤵
        
        PID:5940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        147⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        148⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        149⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        150⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        151⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        152⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        153⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        154⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        155⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        156⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        157⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        158⤵
        
        PID:3940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        159⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        160⤵
        
        PID:5584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        161⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        162⤵
        
        PID:5636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        163⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        164⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        165⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        166⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        167⤵
        
        PID:6052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        168⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        169⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        170⤵
        
        PID:6176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        171⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        172⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        173⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        174⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        175⤵
        
        PID:6252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        176⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        177⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        178⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        179⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        180⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        181⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        182⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        183⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        184⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        185⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        186⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        187⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        188⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        189⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        190⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        191⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        192⤵
        
        PID:6524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        193⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        194⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        195⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        196⤵
        
        PID:6592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        197⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        198⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        199⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        200⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        201⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        202⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        203⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        204⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        205⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        206⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        207⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        208⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        209⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        210⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        211⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        212⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        213⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        214⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        215⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        216⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        217⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        218⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        219⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        220⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        221⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        222⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        223⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        224⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        225⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        226⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        227⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        228⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        229⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        230⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        231⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        232⤵
        
        PID:7140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        233⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        234⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        235⤵
        
        PID:348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        236⤵
        
        PID:2404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        237⤵
        
        PID:1644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        238⤵
        
        PID:2636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        239⤵
        
        PID:2588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        240⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        241⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        242⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        243⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        244⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        245⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        246⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        247⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        248⤵
        
        PID:7252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        249⤵
        
        PID:7268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        250⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        251⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        252⤵
        
        PID:7316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        253⤵
        
        PID:7332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        254⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        255⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        256⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        257⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        258⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        259⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        260⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        261⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        262⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        263⤵
        
        PID:7480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        264⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        265⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        266⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        267⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        268⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        269⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        270⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        271⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        272⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        273⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        274⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        275⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        276⤵
        
        PID:7668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        277⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        278⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        279⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        280⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        281⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        282⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        283⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        284⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        285⤵
        
        PID:7804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        286⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        287⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        288⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        289⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        290⤵
        
        PID:7876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        291⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        292⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        293⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        294⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        295⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        296⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        297⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        298⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        299⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        300⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        301⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        302⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        303⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        304⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        305⤵
        
        PID:8084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        306⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        307⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        308⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        309⤵
        
        PID:8144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        310⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        311⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        312⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        313⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        314⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        315⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        316⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        317⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        318⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        319⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        320⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        321⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        322⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        323⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        324⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        325⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        326⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        327⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        328⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        329⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        330⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        331⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        332⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        333⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        334⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        335⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        336⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        337⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        338⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        339⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        340⤵
        
        PID:8580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        341⤵
        
        PID:8596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        342⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        343⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        344⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        345⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        346⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        347⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        348⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        349⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        350⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        351⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        352⤵
        
        PID:8772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        353⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        354⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        355⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        356⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        357⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        358⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        359⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        360⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        361⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        362⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        363⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        364⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        365⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        366⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        367⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        368⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        369⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        370⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        371⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        372⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        373⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        374⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        375⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        376⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        377⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        378⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        379⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        380⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        381⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        382⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        383⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        384⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        385⤵
        
        PID:9244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        386⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        387⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        388⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        389⤵
        
        PID:9304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        390⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        391⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        392⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        393⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        394⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        395⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        396⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        397⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        398⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        399⤵
        
        PID:9464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        400⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        401⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        402⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        403⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        404⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        405⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        406⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        407⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        408⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        409⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        410⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        411⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        412⤵
        
        PID:9660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        413⤵
        
        PID:9676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        414⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        415⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        416⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        417⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        418⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        419⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        420⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        421⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        422⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        423⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        424⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        425⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        426⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        427⤵
        
        PID:9892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        428⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        429⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        430⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        431⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        432⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        433⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        434⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        435⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        436⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        437⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        438⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        439⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        440⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        441⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        442⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        443⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        444⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        445⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        446⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        447⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        448⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        449⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        450⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        451⤵
        
        PID:1424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        452⤵
        
        PID:1872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        453⤵
        
        PID:1500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        454⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        455⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        456⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        457⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        458⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        459⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        460⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        461⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        462⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        463⤵
        
        PID:10372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        464⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        465⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        466⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        467⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        468⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        469⤵
        
        PID:10464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        470⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        471⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        472⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        473⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        474⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        475⤵
        
        PID:10556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        476⤵
        
        PID:10572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        477⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        478⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        479⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        480⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        481⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        482⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        483⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        484⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        485⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        486⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        487⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        488⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        489⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        490⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        491⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        492⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        493⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        494⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        495⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        496⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        497⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        498⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        499⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        500⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        501⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        502⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        503⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        504⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        505⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        506⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        507⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        508⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        509⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        510⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        511⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        512⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        513⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        514⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        515⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        516⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        517⤵
        
        PID:11172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        518⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        519⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        520⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        521⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        522⤵
        
        PID:11248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        523⤵
        
        PID:4960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        524⤵
        
        PID:2260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        525⤵
        
        PID:452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        526⤵
        
        PID:4508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        527⤵
        
        PID:1684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        528⤵
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        529⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        530⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        531⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        532⤵
        
        PID:11320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        533⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        534⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        535⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        536⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        537⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        538⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        539⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        540⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        541⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        542⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        543⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        544⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        545⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        546⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        547⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        548⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        549⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        550⤵
        
        PID:11568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        551⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        552⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        553⤵
        
        PID:11616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        554⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        555⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        556⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        557⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        558⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        559⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        560⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        561⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        562⤵
        
        PID:11740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        563⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        564⤵
        
        PID:11772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        565⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        566⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        567⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        568⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        569⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        570⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        571⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        572⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        573⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        574⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        575⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        576⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        577⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        578⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        579⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        580⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        581⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        582⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        583⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        584⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        585⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        586⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        587⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        588⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        589⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        590⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        591⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        592⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        593⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        594⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        595⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        596⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        597⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        598⤵
        
        PID:2700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        599⤵
        
        PID:4336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        600⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        601⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        602⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        603⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        604⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        605⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        606⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        607⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        608⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        609⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        610⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        611⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        612⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        613⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        614⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        615⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        616⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        617⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        618⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        619⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        620⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        621⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        622⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        623⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        624⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        625⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        626⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        627⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        628⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        629⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        630⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        631⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        632⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        633⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        634⤵
        
        PID:12808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        635⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        636⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        637⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        638⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        639⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        640⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        641⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        642⤵
        
        PID:12936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        643⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        644⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        645⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        646⤵
        
        PID:12992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        647⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        648⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        649⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        650⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        651⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        652⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        653⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        654⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        655⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        656⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        657⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        658⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        659⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        660⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        661⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        662⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        663⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        664⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        665⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        666⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        667⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        668⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        669⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        670⤵
        
        PID:13364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        671⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        672⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        673⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        674⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        675⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        676⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        677⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        678⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        679⤵
        
        PID:13492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        680⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        681⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        682⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        683⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        684⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        685⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        686⤵
        
        PID:13596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        687⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        688⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        689⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        690⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        691⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        692⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        693⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        694⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        695⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        696⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        697⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        698⤵
        
        PID:13772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        699⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        700⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        701⤵
        
        PID:13820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        702⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        703⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        704⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        705⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        706⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        707⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        708⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        709⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        710⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        711⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        712⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        713⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        714⤵
        
        PID:14008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        715⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        716⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        717⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        718⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        719⤵
        
        PID:14084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        720⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        721⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        722⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        723⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        724⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        725⤵
        
        PID:14168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        726⤵
        
        PID:14180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        727⤵
        
        PID:14196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        728⤵
        
        PID:14212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        729⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        730⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        731⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        732⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        733⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        734⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        735⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        736⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        737⤵
        
        PID:12756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        738⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        739⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        740⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        741⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        742⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        743⤵
        
        PID:14420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        744⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        745⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        746⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        747⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        748⤵
        
        PID:14492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        749⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        750⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        751⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        752⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        753⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        754⤵
        
        PID:14580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        755⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        756⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        757⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        758⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        759⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        760⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        761⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        762⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        763⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        764⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        765⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        766⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        767⤵
        
        PID:14756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        768⤵
        
        PID:14768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        769⤵
        
        PID:14784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        770⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        771⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        772⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        773⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        774⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        775⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        776⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        777⤵
        
        PID:14912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        778⤵
        
        PID:14928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        779⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        780⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        781⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        782⤵
        
        PID:14976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        783⤵
        
        PID:14988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        784⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        785⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        786⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        787⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        788⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        789⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        790⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        791⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        792⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        793⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        794⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        795⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        796⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        797⤵
        
        PID:15208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        798⤵
        
        PID:15224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        799⤵
        
        PID:15240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        800⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        801⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        802⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        803⤵
        
        PID:15292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        804⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        805⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        806⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        807⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        808⤵
        
        PID:4800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        809⤵
        
        PID:5104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        810⤵
        
        PID:1324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        811⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        812⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        813⤵
        
        PID:15396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        814⤵
        
        PID:15412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        815⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        816⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        817⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        818⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        819⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        820⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        821⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        822⤵
        
        PID:15520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        823⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        824⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        825⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        826⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        827⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        828⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        829⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        830⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        831⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        832⤵
        
        PID:15668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        833⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        834⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        835⤵
        
        PID:15708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        836⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        837⤵
        
        PID:15736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        838⤵
        
        PID:15752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        839⤵
        
        PID:15768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        840⤵
        
        PID:15780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        841⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        842⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        843⤵
        
        PID:15816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        844⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        845⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        846⤵
        
        PID:15860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        847⤵
        
        PID:15876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        848⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        849⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        850⤵
        
        PID:15964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        851⤵
        
        PID:15984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        852⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        853⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        854⤵
        
        PID:16112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        855⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        856⤵
        
        PID:16156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        857⤵
        
        PID:16172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        858⤵
        
        PID:16188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        859⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        860⤵
        
        PID:16216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        861⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        862⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        863⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        864⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        865⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        866⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        867⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        868⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        869⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        870⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        871⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        872⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        873⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        874⤵
        
        PID:760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        875⤵
        
        PID:2724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        876⤵
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        877⤵
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        878⤵
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        879⤵
        
        PID:3556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        880⤵
        
        PID:916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        881⤵
        
        PID:3020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        882⤵
        
        PID:1640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        883⤵
        
        PID:3376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        884⤵
        
        PID:608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        885⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        886⤵
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        887⤵
        
        PID:4692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        888⤵
        
        PID:4860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        889⤵
        
        PID:4468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        890⤵
        
        PID:4716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        891⤵
        
        PID:864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        892⤵
        
        PID:4740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        893⤵
        
        PID:1908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        894⤵
        
        PID:4840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\09d5d41f89fdab618940f0f1113e5ea5_JaffaCakes118.dll,#1
        895⤵
        
        PID:4536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/220-3-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/220-13-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1264-6-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1264-18-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1344-25-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1816-21-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1816-22-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/1908-55-0x00000000757F0000-0x0000000075A74000-memory.dmp

Filesize
2.5MB

Download
memory/3040-9-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3040-1-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3128-16-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3152-2-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3152-11-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3172-10-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3220-24-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3400-15-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3400-4-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3568-7-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3568-0-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3620-14-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3744-17-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3744-5-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3884-19-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/3884-20-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/4008-8-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/4392-12-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/4676-23-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/4840-54-0x00000000757F0000-0x0000000075A74000-memory.dmp

Filesize
2.5MB

Download
memory/5324-26-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5324-29-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5396-27-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5396-30-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5488-31-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5488-28-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5768-32-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5768-34-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5816-36-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5848-33-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/5992-37-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6032-38-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6032-35-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6280-40-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6296-39-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6400-41-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/6908-42-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/7108-43-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/7108-44-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/7156-45-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/8548-46-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/9512-47-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10116-49-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10148-48-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10148-50-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10168-51-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10708-52-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download
memory/10708-53-0x0000000010000000-0x000000001000C000-memory.dmp

Filesize
48KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads