c3ce897ba19ba4e51899a636c44a54b8045df25410dc7b22a8a1167b9202db7b

Analysis

max time kernel
140s
max time network
102s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
24-06-2024 00:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll
Size

78KB
MD5

063a1f172d1dd1ad63bd39b1b67b9de0
SHA1

62c9dd4c1bf880f05b1ff6705a74408b2e6137e8
SHA256

c3ce897ba19ba4e51899a636c44a54b8045df25410dc7b22a8a1167b9202db7b
SHA512

2d05005d276ff67ce422b297638b61258cd3587e02796b6d3cb4df9651eb4c096f0ba4525bae79525ac27c42be7179a36b3c6db71713515a549d3bfe147705d4
SSDEEP

1536:epDF/FbUc7SvexVqCGoKlC2igBQItEABnqF05ZquJLnQdpL:a3bTSvedGoKlCDgBwGqG5Z/UpL

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4112 wrote to memory of 488	4112	rundll32.exe	86
PID 4112 wrote to memory of 488	4112	rundll32.exe	86
PID 4112 wrote to memory of 488	4112	rundll32.exe	86
PID 488 wrote to memory of 1328	488	rundll32.exe	87
PID 488 wrote to memory of 1328	488	rundll32.exe	87
PID 488 wrote to memory of 1328	488	rundll32.exe	87
PID 1328 wrote to memory of 2396	1328	rundll32.exe	88
PID 1328 wrote to memory of 2396	1328	rundll32.exe	88
PID 1328 wrote to memory of 2396	1328	rundll32.exe	88
PID 2396 wrote to memory of 1168	2396	rundll32.exe	89
PID 2396 wrote to memory of 1168	2396	rundll32.exe	89
PID 2396 wrote to memory of 1168	2396	rundll32.exe	89
PID 1168 wrote to memory of 1576	1168	rundll32.exe	90
PID 1168 wrote to memory of 1576	1168	rundll32.exe	90
PID 1168 wrote to memory of 1576	1168	rundll32.exe	90
PID 1576 wrote to memory of 2232	1576	rundll32.exe	91
PID 1576 wrote to memory of 2232	1576	rundll32.exe	91
PID 1576 wrote to memory of 2232	1576	rundll32.exe	91
PID 2232 wrote to memory of 2876	2232	rundll32.exe	92
PID 2232 wrote to memory of 2876	2232	rundll32.exe	92
PID 2232 wrote to memory of 2876	2232	rundll32.exe	92
PID 2876 wrote to memory of 3020	2876	rundll32.exe	93
PID 2876 wrote to memory of 3020	2876	rundll32.exe	93
PID 2876 wrote to memory of 3020	2876	rundll32.exe	93
PID 3020 wrote to memory of 2996	3020	rundll32.exe	94
PID 3020 wrote to memory of 2996	3020	rundll32.exe	94
PID 3020 wrote to memory of 2996	3020	rundll32.exe	94
PID 2996 wrote to memory of 208	2996	rundll32.exe	95
PID 2996 wrote to memory of 208	2996	rundll32.exe	95
PID 2996 wrote to memory of 208	2996	rundll32.exe	95
PID 208 wrote to memory of 4696	208	rundll32.exe	96
PID 208 wrote to memory of 4696	208	rundll32.exe	96
PID 208 wrote to memory of 4696	208	rundll32.exe	96
PID 4696 wrote to memory of 4392	4696	rundll32.exe	97
PID 4696 wrote to memory of 4392	4696	rundll32.exe	97
PID 4696 wrote to memory of 4392	4696	rundll32.exe	97
PID 4392 wrote to memory of 2008	4392	rundll32.exe	98
PID 4392 wrote to memory of 2008	4392	rundll32.exe	98
PID 4392 wrote to memory of 2008	4392	rundll32.exe	98
PID 2008 wrote to memory of 4032	2008	rundll32.exe	99
PID 2008 wrote to memory of 4032	2008	rundll32.exe	99
PID 2008 wrote to memory of 4032	2008	rundll32.exe	99
PID 4032 wrote to memory of 4248	4032	rundll32.exe	100
PID 4032 wrote to memory of 4248	4032	rundll32.exe	100
PID 4032 wrote to memory of 4248	4032	rundll32.exe	100
PID 4248 wrote to memory of 4472	4248	rundll32.exe	101
PID 4248 wrote to memory of 4472	4248	rundll32.exe	101
PID 4248 wrote to memory of 4472	4248	rundll32.exe	101
PID 4472 wrote to memory of 1840	4472	rundll32.exe	102
PID 4472 wrote to memory of 1840	4472	rundll32.exe	102
PID 4472 wrote to memory of 1840	4472	rundll32.exe	102
PID 1840 wrote to memory of 4760	1840	rundll32.exe	103
PID 1840 wrote to memory of 4760	1840	rundll32.exe	103
PID 1840 wrote to memory of 4760	1840	rundll32.exe	103
PID 4760 wrote to memory of 4388	4760	rundll32.exe	104
PID 4760 wrote to memory of 4388	4760	rundll32.exe	104
PID 4760 wrote to memory of 4388	4760	rundll32.exe	104
PID 4388 wrote to memory of 2036	4388	rundll32.exe	105
PID 4388 wrote to memory of 2036	4388	rundll32.exe	105
PID 4388 wrote to memory of 2036	4388	rundll32.exe	105
PID 2036 wrote to memory of 3716	2036	rundll32.exe	106
PID 2036 wrote to memory of 3716	2036	rundll32.exe	106
PID 2036 wrote to memory of 3716	2036	rundll32.exe	106
PID 3716 wrote to memory of 4008	3716	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4112
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:488
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1328
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:2396
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1168
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:2232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:2996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        23⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        24⤵
        
        PID:1948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        25⤵
        
        PID:3140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        26⤵
        
        PID:5104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        27⤵
        
        PID:1320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        28⤵
        
        PID:2356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        29⤵
        
        PID:2892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        30⤵
        
        PID:1788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        31⤵
        
        PID:3360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        32⤵
        
        PID:4620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        33⤵
        
        PID:3424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        34⤵
        
        PID:660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        35⤵
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        36⤵
        
        PID:5076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        37⤵
        
        PID:2004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        38⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        39⤵
        
        PID:1420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        40⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        41⤵
        
        PID:4796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        42⤵
        
        PID:2452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        43⤵
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        44⤵
        
        PID:1156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        45⤵
        
        PID:2020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        46⤵
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        47⤵
        
        PID:1824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        48⤵
        
        PID:3344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        49⤵
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        50⤵
        
        PID:2908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        51⤵
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        52⤵
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        53⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        54⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        55⤵
        
        PID:4784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        56⤵
        
        PID:3268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        57⤵
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        58⤵
        
        PID:64
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        59⤵
        
        PID:2228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        60⤵
        
        PID:1192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        61⤵
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        62⤵
        
        PID:1480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        63⤵
        
        PID:1204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        64⤵
        
        PID:1636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        65⤵
        
        PID:4736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        66⤵
        
        PID:4660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        67⤵
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        68⤵
        
        PID:4844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        69⤵
        
        PID:3800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        70⤵
        
        PID:1740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        71⤵
        
        PID:4536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        72⤵
        
        PID:1596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        73⤵
        
        PID:2384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        74⤵
        
        PID:3724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        75⤵
        
        PID:3436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        76⤵
        
        PID:2820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        77⤵
        
        PID:3740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        78⤵
        
        PID:2212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        79⤵
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        80⤵
        
        PID:4064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        81⤵
        
        PID:3900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        82⤵
        
        PID:4220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        83⤵
        
        PID:3524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        84⤵
        
        PID:4228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        85⤵
        
        PID:4540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        86⤵
        
        PID:4216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        87⤵
        
        PID:3332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        88⤵
        
        PID:1072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        89⤵
        
        PID:2976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        90⤵
        
        PID:2104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        91⤵
        
        PID:3152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        92⤵
        
        PID:2024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        93⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        94⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        95⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        96⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        97⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        98⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        99⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        100⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        101⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        102⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        103⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        104⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        105⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        106⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        107⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        108⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        109⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        110⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        111⤵
        
        PID:5476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        112⤵
        
        PID:5492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        113⤵
        
        PID:5508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        114⤵
        
        PID:5524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        115⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        116⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        117⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        118⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        119⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        120⤵
        
        PID:5620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        121⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        122⤵
        
        PID:5652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        123⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        124⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        125⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        126⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        127⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        128⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        129⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        130⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        131⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        132⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        133⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        134⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        135⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        136⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        137⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        138⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        139⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        140⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        141⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        142⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        143⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        144⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        145⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        146⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        147⤵
        
        PID:4208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        148⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        149⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        150⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        151⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        152⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        153⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        154⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        155⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        156⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        157⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        158⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        159⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        160⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        161⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        162⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        163⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        164⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        165⤵
        
        PID:6600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        166⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        167⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        168⤵
        
        PID:6656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        169⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        170⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        171⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        172⤵
        
        PID:6736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        173⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        174⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        175⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        176⤵
        
        PID:6796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        177⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        178⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        179⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        180⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        181⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        182⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        183⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        184⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        185⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        186⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        187⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        188⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        189⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        190⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        191⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        192⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        193⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        194⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        195⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        196⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        197⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        198⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        199⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        200⤵
        
        PID:4044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        201⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        202⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        203⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        204⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        205⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        206⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        207⤵
        
        PID:7280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        208⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        209⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        210⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        211⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        212⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        213⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        214⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        215⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        216⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        217⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        218⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        219⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        220⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        221⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        222⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        223⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        224⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        225⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        226⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        227⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        228⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        229⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        230⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        231⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        232⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        233⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        234⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        235⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        236⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        237⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        238⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        239⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        240⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        241⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        242⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        243⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        244⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        245⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        246⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        247⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        248⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        249⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        250⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        251⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        252⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        253⤵
        
        PID:7988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        254⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        255⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        256⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        257⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        258⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        259⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        260⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        261⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        262⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        263⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        264⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        265⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        266⤵
        
        PID:3728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        267⤵
        
        PID:2076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        268⤵
        
        PID:8204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        269⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        270⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        271⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        272⤵
        
        PID:8268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        273⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        274⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        275⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        276⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        277⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        278⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        279⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        280⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        281⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        282⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        283⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        284⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        285⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        286⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        287⤵
        
        PID:8580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        288⤵
        
        PID:8596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        289⤵
        
        PID:8612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        290⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        291⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        292⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        293⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        294⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        295⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        296⤵
        
        PID:8728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        297⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        298⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        299⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        300⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        301⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        302⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        303⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        304⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        305⤵
        
        PID:8880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        306⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        307⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        308⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        309⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        310⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        311⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        312⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        313⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        314⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        315⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        316⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        317⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        318⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        319⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        320⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        321⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        322⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        323⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        324⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        325⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        326⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        327⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        328⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        329⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        330⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        331⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        332⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        333⤵
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        334⤵
        
        PID:1756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        335⤵
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        336⤵
        
        PID:756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        337⤵
        
        PID:4376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        338⤵
        
        PID:4324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        339⤵
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        340⤵
        
        PID:4604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        341⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        342⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        343⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        344⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        345⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        346⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        347⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        348⤵
        
        PID:9332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        349⤵
        
        PID:9348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        350⤵
        
        PID:9364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        351⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        352⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        353⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        354⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        355⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        356⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        357⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        358⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        359⤵
        
        PID:9504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        360⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        361⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        362⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        363⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        364⤵
        
        PID:9584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        365⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        366⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        367⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        368⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        369⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        370⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        371⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        372⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        373⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        374⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        375⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        376⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        377⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        378⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        379⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        380⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        381⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        382⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        383⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        384⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        385⤵
        
        PID:9892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        386⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        387⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        388⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        389⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        390⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        391⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        392⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        393⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        394⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        395⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        396⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        397⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        398⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        399⤵
        
        PID:10160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        400⤵
        
        PID:10176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        401⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        402⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        403⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        404⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        405⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        406⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        407⤵
        
        PID:10056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        408⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        409⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        410⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        411⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        412⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        413⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        414⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        415⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        416⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        417⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        418⤵
        
        PID:10412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        419⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        420⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        421⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        422⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        423⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        424⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        425⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        426⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        427⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        428⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        429⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        430⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        431⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        432⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        433⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        434⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        435⤵
        
        PID:10672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        436⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        437⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        438⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        439⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        440⤵
        
        PID:10752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        441⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        442⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        443⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        444⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        445⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        446⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        447⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        448⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        449⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        450⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        451⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        452⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        453⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        454⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        455⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        456⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        457⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        458⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        459⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        460⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        461⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        462⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        463⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        464⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        465⤵
        
        PID:11132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        466⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        467⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        468⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        469⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        470⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        471⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        472⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        473⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        474⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        475⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        476⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        477⤵
        
        PID:11320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        478⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        479⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        480⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        481⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        482⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        483⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        484⤵
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        485⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        486⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        487⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        488⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        489⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        490⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        491⤵
        
        PID:11548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        492⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        493⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        494⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        495⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        496⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        497⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        498⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        499⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        500⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        501⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        502⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        503⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        504⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        505⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        506⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        507⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        508⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        509⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        510⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        511⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        512⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        513⤵
        
        PID:11884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        514⤵
        
        PID:11900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        515⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        516⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        517⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        518⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        519⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        520⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        521⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        522⤵
        
        PID:12032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        523⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        524⤵
        
        PID:12096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        525⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        526⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        527⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        528⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        529⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        530⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        531⤵
        
        PID:12248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        532⤵
        
        PID:12264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        533⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        534⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        535⤵
        
        PID:2624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        536⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        537⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        538⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        539⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        540⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        541⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        542⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        543⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        544⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        545⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        546⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        547⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        548⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        549⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        550⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        551⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        552⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        553⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        554⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        555⤵
        
        PID:12580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        556⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        557⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        558⤵
        
        PID:12628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        559⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        560⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        561⤵
        
        PID:12676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        562⤵
        
        PID:12692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        563⤵
        
        PID:12708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        564⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        565⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        566⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        567⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        568⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        569⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        570⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        571⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        572⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        573⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        574⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        575⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        576⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        577⤵
        
        PID:12924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        578⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        579⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        580⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        581⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        582⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        583⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        584⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        585⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        586⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        587⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        588⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        589⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        590⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        591⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        592⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        593⤵
        
        PID:13172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        594⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        595⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        596⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        597⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        598⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        599⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        600⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        601⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        602⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        603⤵
        
        PID:6240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        604⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        605⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        606⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        607⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        608⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        609⤵
        
        PID:13340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        610⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        611⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        612⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        613⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        614⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        615⤵
        
        PID:13440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        616⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        617⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        618⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        619⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        620⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        621⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        622⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        623⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        624⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        625⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        626⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        627⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        628⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        629⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        630⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        631⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        632⤵
        
        PID:13704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        633⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        634⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        635⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        636⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        637⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        638⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        639⤵
        
        PID:13820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        640⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        641⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        642⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        643⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        644⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        645⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        646⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        647⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        648⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        649⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        650⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        651⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        652⤵
        
        PID:14008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        653⤵
        
        PID:14024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        654⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        655⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        656⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        657⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        658⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        659⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        660⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        661⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        662⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        663⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        664⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        665⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        666⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        667⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        668⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        669⤵
        
        PID:14264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        670⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        671⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        672⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        673⤵
        
        PID:14332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        674⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        675⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        676⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        677⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        678⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        679⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        680⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        681⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        682⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        683⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        684⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        685⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        686⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        687⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        688⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        689⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        690⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        691⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        692⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        693⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        694⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        695⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        696⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        697⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        698⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        699⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        700⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        701⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        702⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        703⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        704⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        705⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        706⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        707⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        708⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        709⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        710⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        711⤵
        
        PID:14932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        712⤵
        
        PID:14948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        713⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        714⤵
        
        PID:14976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        715⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        716⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        717⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        718⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        719⤵
        
        PID:15056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        720⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        721⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        722⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        723⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        724⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        725⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        726⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        727⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        728⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        729⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        730⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        731⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        732⤵
        
        PID:15268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        733⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        734⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        735⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        736⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        737⤵
        
        PID:15344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        738⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        739⤵
        
        PID:14420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        740⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        741⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        742⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        743⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        744⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        745⤵
        
        PID:15448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        746⤵
        
        PID:15464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        747⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        748⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        749⤵
        
        PID:15512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        750⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        751⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        752⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        753⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        754⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        755⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        756⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        757⤵
        
        PID:15632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        758⤵
        
        PID:15648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        759⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        760⤵
        
        PID:15676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        761⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        762⤵
        
        PID:15708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        763⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        764⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        765⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        766⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        767⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        768⤵
        
        PID:15808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        769⤵
        
        PID:15824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        770⤵
        
        PID:15840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        771⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        772⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        773⤵
        
        PID:15880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        774⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        775⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        776⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        777⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        778⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        779⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        780⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        781⤵
        
        PID:16004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        782⤵
        
        PID:16020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        783⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        784⤵
        
        PID:16052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        785⤵
        
        PID:16064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        786⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        787⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        788⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        789⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        790⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        791⤵
        
        PID:16144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        792⤵
        
        PID:16156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        793⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        794⤵
        
        PID:16184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        795⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        796⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        797⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        798⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        799⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        800⤵
        
        PID:16272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        801⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        802⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        803⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        804⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        805⤵
        
        PID:16348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        806⤵
        
        PID:16360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        807⤵
        
        PID:16376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        808⤵
        
        PID:4364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        809⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        810⤵
        
        PID:15780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        811⤵
        
        PID:16400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        812⤵
        
        PID:16416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        813⤵
        
        PID:16432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        814⤵
        
        PID:16452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        815⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        816⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        817⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        818⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        819⤵
        
        PID:16520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        820⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        821⤵
        
        PID:16548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        822⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        823⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        824⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        825⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        826⤵
        
        PID:16628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        827⤵
        
        PID:16644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        828⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        829⤵
        
        PID:16676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        830⤵
        
        PID:16692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        831⤵
        
        PID:16704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        832⤵
        
        PID:16724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        833⤵
        
        PID:16740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        834⤵
        
        PID:16756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        835⤵
        
        PID:16768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        836⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        837⤵
        
        PID:16804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        838⤵
        
        PID:16816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        839⤵
        
        PID:16832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        840⤵
        
        PID:16848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        841⤵
        
        PID:16864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        842⤵
        
        PID:16880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        843⤵
        
        PID:16896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        844⤵
        
        PID:16908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        845⤵
        
        PID:16924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        846⤵
        
        PID:16940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        847⤵
        
        PID:16956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        848⤵
        
        PID:16968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        849⤵
        
        PID:16984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        850⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        851⤵
        
        PID:17012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        852⤵
        
        PID:17028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        853⤵
        
        PID:17044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        854⤵
        
        PID:17060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        855⤵
        
        PID:17072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        856⤵
        
        PID:17088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        857⤵
        
        PID:17104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        858⤵
        
        PID:17116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        859⤵
        
        PID:17132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        860⤵
        
        PID:17144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        861⤵
        
        PID:17160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        862⤵
        
        PID:17176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        863⤵
        
        PID:17188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        864⤵
        
        PID:17204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        865⤵
        
        PID:17220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        866⤵
        
        PID:17236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        867⤵
        
        PID:17252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        868⤵
        
        PID:17268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        869⤵
        
        PID:17280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        870⤵
        
        PID:17296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        871⤵
        
        PID:17312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        872⤵
        
        PID:17328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        873⤵
        
        PID:17344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        874⤵
        
        PID:17356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        875⤵
        
        PID:17376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\063a1f172d1dd1ad63bd39b1b67b9de0_JaffaCakes118.dll,#1
        876⤵
        
        PID:17392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/17344-2-0x0000000074C00000-0x0000000074E84000-memory.dmp

Filesize
2.5MB

Download
memory/17356-1-0x0000000074C00000-0x0000000074E84000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads