c0deb0467571a78e0f04512d191ebafcd12a9dd2592ff1bac24ead88dec640a4

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
24/06/2024, 07:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll
Size

34KB
MD5

074ccfbe57af087ef3fa8263e0e75a11
SHA1

9d3045f6f60ac0293e1bf3400253ef7352d0497e
SHA256

c0deb0467571a78e0f04512d191ebafcd12a9dd2592ff1bac24ead88dec640a4
SHA512

e189ae51e267552c5f3cd6438e73da99a0f62b091378d3f648e85452c127f5930584429d496564ea0d5b6bffd9517cb904097206040098400df14147fbed02d4
SSDEEP

768:vEWxQAkJg+wUQ74zmS8pk/sAq7IImTW6uJfljwu1j:MWeEGQ7ymSOapqnhJNjwi

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4608 wrote to memory of 4816	4608	rundll32.exe	81
PID 4608 wrote to memory of 4816	4608	rundll32.exe	81
PID 4608 wrote to memory of 4816	4608	rundll32.exe	81
PID 4816 wrote to memory of 1740	4816	rundll32.exe	82
PID 4816 wrote to memory of 1740	4816	rundll32.exe	82
PID 4816 wrote to memory of 1740	4816	rundll32.exe	82
PID 1740 wrote to memory of 4964	1740	rundll32.exe	83
PID 1740 wrote to memory of 4964	1740	rundll32.exe	83
PID 1740 wrote to memory of 4964	1740	rundll32.exe	83
PID 4964 wrote to memory of 1080	4964	rundll32.exe	84
PID 4964 wrote to memory of 1080	4964	rundll32.exe	84
PID 4964 wrote to memory of 1080	4964	rundll32.exe	84
PID 1080 wrote to memory of 2100	1080	rundll32.exe	85
PID 1080 wrote to memory of 2100	1080	rundll32.exe	85
PID 1080 wrote to memory of 2100	1080	rundll32.exe	85
PID 2100 wrote to memory of 3712	2100	rundll32.exe	86
PID 2100 wrote to memory of 3712	2100	rundll32.exe	86
PID 2100 wrote to memory of 3712	2100	rundll32.exe	86
PID 3712 wrote to memory of 2648	3712	rundll32.exe	87
PID 3712 wrote to memory of 2648	3712	rundll32.exe	87
PID 3712 wrote to memory of 2648	3712	rundll32.exe	87
PID 2648 wrote to memory of 3344	2648	rundll32.exe	88
PID 2648 wrote to memory of 3344	2648	rundll32.exe	88
PID 2648 wrote to memory of 3344	2648	rundll32.exe	88
PID 3344 wrote to memory of 2680	3344	rundll32.exe	89
PID 3344 wrote to memory of 2680	3344	rundll32.exe	89
PID 3344 wrote to memory of 2680	3344	rundll32.exe	89
PID 2680 wrote to memory of 4644	2680	rundll32.exe	90
PID 2680 wrote to memory of 4644	2680	rundll32.exe	90
PID 2680 wrote to memory of 4644	2680	rundll32.exe	90
PID 4644 wrote to memory of 1636	4644	rundll32.exe	91
PID 4644 wrote to memory of 1636	4644	rundll32.exe	91
PID 4644 wrote to memory of 1636	4644	rundll32.exe	91
PID 1636 wrote to memory of 3360	1636	rundll32.exe	92
PID 1636 wrote to memory of 3360	1636	rundll32.exe	92
PID 1636 wrote to memory of 3360	1636	rundll32.exe	92
PID 3360 wrote to memory of 4296	3360	rundll32.exe	93
PID 3360 wrote to memory of 4296	3360	rundll32.exe	93
PID 3360 wrote to memory of 4296	3360	rundll32.exe	93
PID 4296 wrote to memory of 2096	4296	rundll32.exe	94
PID 4296 wrote to memory of 2096	4296	rundll32.exe	94
PID 4296 wrote to memory of 2096	4296	rundll32.exe	94
PID 2096 wrote to memory of 1612	2096	rundll32.exe	95
PID 2096 wrote to memory of 1612	2096	rundll32.exe	95
PID 2096 wrote to memory of 1612	2096	rundll32.exe	95
PID 1612 wrote to memory of 372	1612	rundll32.exe	96
PID 1612 wrote to memory of 372	1612	rundll32.exe	96
PID 1612 wrote to memory of 372	1612	rundll32.exe	96
PID 372 wrote to memory of 1152	372	rundll32.exe	97
PID 372 wrote to memory of 1152	372	rundll32.exe	97
PID 372 wrote to memory of 1152	372	rundll32.exe	97
PID 1152 wrote to memory of 3436	1152	rundll32.exe	98
PID 1152 wrote to memory of 3436	1152	rundll32.exe	98
PID 1152 wrote to memory of 3436	1152	rundll32.exe	98
PID 3436 wrote to memory of 1552	3436	rundll32.exe	99
PID 3436 wrote to memory of 1552	3436	rundll32.exe	99
PID 3436 wrote to memory of 1552	3436	rundll32.exe	99
PID 1552 wrote to memory of 3220	1552	rundll32.exe	100
PID 1552 wrote to memory of 3220	1552	rundll32.exe	100
PID 1552 wrote to memory of 3220	1552	rundll32.exe	100
PID 3220 wrote to memory of 880	3220	rundll32.exe	101
PID 3220 wrote to memory of 880	3220	rundll32.exe	101
PID 3220 wrote to memory of 880	3220	rundll32.exe	101
PID 880 wrote to memory of 3148	880	rundll32.exe	102

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4608
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4816
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1740
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4964
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1080
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        23⤵
        
        PID:3148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        24⤵
        
        PID:4456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        25⤵
        
        PID:3008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        26⤵
        
        PID:1404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        27⤵
        
        PID:2676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        28⤵
        
        PID:1728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        29⤵
        
        PID:2152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        30⤵
        
        PID:4940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        31⤵
        
        PID:4728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        32⤵
        
        PID:4236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        33⤵
        
        PID:2092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        34⤵
        
        PID:1380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        35⤵
        
        PID:2732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        36⤵
        
        PID:1224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        37⤵
        
        PID:3056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        38⤵
        
        PID:2464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        39⤵
        
        PID:2044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        40⤵
        
        PID:544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        41⤵
        
        PID:3944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        42⤵
        
        PID:3064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        43⤵
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        44⤵
        
        PID:4596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        45⤵
        
        PID:4848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        46⤵
        
        PID:2180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        47⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        48⤵
        
        PID:2116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        49⤵
        
        PID:1300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        50⤵
        
        PID:2812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        51⤵
        
        PID:3688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        52⤵
        
        PID:60
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        53⤵
        
        PID:1416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        54⤵
        
        PID:2492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        55⤵
        
        PID:5044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        56⤵
        
        PID:3732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        57⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        58⤵
        
        PID:4188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        59⤵
        
        PID:516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        60⤵
        
        PID:932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        61⤵
        
        PID:2600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        62⤵
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        63⤵
        
        PID:1608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        64⤵
        
        PID:4748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        65⤵
        
        PID:2392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        66⤵
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        67⤵
        
        PID:848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        68⤵
        
        PID:2684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        69⤵
        
        PID:2952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        70⤵
        
        PID:4524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        71⤵
        
        PID:3588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        72⤵
        
        PID:2172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        73⤵
        
        PID:3464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        74⤵
        
        PID:3756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        75⤵
        
        PID:1272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        76⤵
        
        PID:3084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        77⤵
        
        PID:1180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        78⤵
        
        PID:2316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        79⤵
        
        PID:652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        80⤵
        
        PID:3348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        81⤵
        
        PID:1644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        82⤵
        
        PID:2808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        83⤵
        
        PID:4544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        84⤵
        
        PID:1796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        85⤵
        
        PID:1828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        86⤵
        
        PID:4684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        87⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        88⤵
        
        PID:3248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        89⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        90⤵
        
        PID:2240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        91⤵
        
        PID:664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        92⤵
        
        PID:768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        93⤵
        
        PID:3952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        94⤵
        
        PID:3232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        95⤵
        
        PID:3024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        96⤵
        
        PID:3308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        97⤵
        
        PID:972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        98⤵
        
        PID:1488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        99⤵
        
        PID:2624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        100⤵
        
        PID:2144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        101⤵
        
        PID:1988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        102⤵
        
        PID:3620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        103⤵
        
        PID:4004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        104⤵
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        105⤵
        
        PID:5032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        106⤵
        
        PID:3000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        107⤵
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        108⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        109⤵
        
        PID:5040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        110⤵
        
        PID:4800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        111⤵
        
        PID:2688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        112⤵
        
        PID:1580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        113⤵
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        114⤵
        
        PID:3772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        115⤵
        
        PID:2460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        116⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        117⤵
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        118⤵
        
        PID:1292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        119⤵
        
        PID:4068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        120⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        121⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        122⤵
        
        PID:4312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        123⤵
        
        PID:4404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        124⤵
        
        PID:1764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        125⤵
        
        PID:4540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        126⤵
        
        PID:3912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        127⤵
        
        PID:4860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        128⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        129⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        130⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        131⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        132⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        133⤵
        
        PID:5200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        134⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        135⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        136⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        137⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        138⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        139⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        140⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        141⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        142⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        143⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        144⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        145⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        146⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        147⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        148⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        149⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        150⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        151⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        152⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        153⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        154⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        155⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        156⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        157⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        158⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        159⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        160⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        161⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        162⤵
        
        PID:5648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        163⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        164⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        165⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        166⤵
        
        PID:5708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        167⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        168⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        169⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        170⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        171⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        172⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        173⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        174⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        175⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        176⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        177⤵
        
        PID:5872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        178⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        179⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        180⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        181⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        182⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        183⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        184⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        185⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        186⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        187⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        188⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        189⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        190⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        191⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        192⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        193⤵
        
        PID:6112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        194⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        195⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        196⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        197⤵
        
        PID:6176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        198⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        199⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        200⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        201⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        202⤵
        
        PID:6252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        203⤵
        
        PID:6268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        204⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        205⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        206⤵
        
        PID:6316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        207⤵
        
        PID:6332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        208⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        209⤵
        
        PID:6364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        210⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        211⤵
        
        PID:6392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        212⤵
        
        PID:6408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        213⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        214⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        215⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        216⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        217⤵
        
        PID:6492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        218⤵
        
        PID:6508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        219⤵
        
        PID:6524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        220⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        221⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        222⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        223⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        224⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        225⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        226⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        227⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        228⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        229⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        230⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        231⤵
        
        PID:6716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        232⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        233⤵
        
        PID:6748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        234⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        235⤵
        
        PID:6780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        236⤵
        
        PID:6796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        237⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        238⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        239⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        240⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        241⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        242⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        243⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        244⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        245⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        246⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        247⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        248⤵
        
        PID:6988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        249⤵
        
        PID:7004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        250⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        251⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        252⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        253⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        254⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        255⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        256⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        257⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        258⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        259⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        260⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        261⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        262⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        263⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        264⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        265⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        266⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        267⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        268⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        269⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        270⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        271⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        272⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        273⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        274⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        275⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        276⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        277⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        278⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        279⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        280⤵
        
        PID:7496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        281⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        282⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        283⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        284⤵
        
        PID:7556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        285⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        286⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        287⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        288⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        289⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        290⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        291⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        292⤵
        
        PID:7680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        293⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        294⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        295⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        296⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        297⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        298⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        299⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        300⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        301⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        302⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        303⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        304⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        305⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        306⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        307⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        308⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        309⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        310⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        311⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        312⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        313⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        314⤵
        
        PID:8020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        315⤵
        
        PID:8032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        316⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        317⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        318⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        319⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        320⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        321⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        322⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        323⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        324⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        325⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        326⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        327⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        328⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        329⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        330⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        331⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        332⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        333⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        334⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        335⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        336⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        337⤵
        
        PID:8360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        338⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        339⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        340⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        341⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        342⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        343⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        344⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        345⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        346⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        347⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        348⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        349⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        350⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        351⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        352⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        353⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        354⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        355⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        356⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        357⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        358⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        359⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        360⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        361⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        362⤵
        
        PID:8728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        363⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        364⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        365⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        366⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        367⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        368⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        369⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        370⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        371⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        372⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        373⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        374⤵
        
        PID:8908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        375⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        376⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        377⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        378⤵
        
        PID:8976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        379⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        380⤵
        
        PID:9012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        381⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        382⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        383⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        384⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        385⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        386⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        387⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        388⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        389⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        390⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        391⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        392⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        393⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        394⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        395⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        396⤵
        
        PID:9276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        397⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        398⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        399⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        400⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        401⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        402⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        403⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        404⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        405⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        406⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        407⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        408⤵
        
        PID:9456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        409⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        410⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        411⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        412⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        413⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        414⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        415⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        416⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        417⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        418⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        419⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        420⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        421⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        422⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        423⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        424⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        425⤵
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        426⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        427⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        428⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        429⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        430⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        431⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        432⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        433⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        434⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        435⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        436⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        437⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        438⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        439⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        440⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        441⤵
        
        PID:9960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        442⤵
        
        PID:9976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        443⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        444⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        445⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        446⤵
        
        PID:10044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        447⤵
        
        PID:10056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        448⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        449⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        450⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        451⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        452⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        453⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        454⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        455⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        456⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        457⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        458⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        459⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        460⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        461⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        462⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        463⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        464⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        465⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        466⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        467⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        468⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        469⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        470⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        471⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        472⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        473⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        474⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        475⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        476⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        477⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        478⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        479⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        480⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        481⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        482⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        483⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        484⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        485⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        486⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        487⤵
        
        PID:10672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        488⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        489⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        490⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        491⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        492⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        493⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        494⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        495⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        496⤵
        
        PID:10816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        497⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        498⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        499⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        500⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        501⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        502⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        503⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        504⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        505⤵
        
        PID:10948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        506⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        507⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        508⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        509⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        510⤵
        
        PID:11028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        511⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        512⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        513⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        514⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        515⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        516⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        517⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        518⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        519⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        520⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        521⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        522⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        523⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        524⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        525⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        526⤵
        
        PID:980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        527⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        528⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        529⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        530⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        531⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        532⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        533⤵
        
        PID:11364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        534⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        535⤵
        
        PID:11392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        536⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        537⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        538⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        539⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        540⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        541⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        542⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        543⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        544⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        545⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        546⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        547⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        548⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        549⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        550⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        551⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        552⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        553⤵
        
        PID:11660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        554⤵
        
        PID:11676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        555⤵
        
        PID:11692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        556⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        557⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        558⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        559⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        560⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        561⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        562⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        563⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        564⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        565⤵
        
        PID:11848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        566⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        567⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        568⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        569⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        570⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        571⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        572⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        573⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        574⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        575⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        576⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        577⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        578⤵
        
        PID:12032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        579⤵
        
        PID:12048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        580⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        581⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        582⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        583⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        584⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        585⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        586⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        587⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        588⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        589⤵
        
        PID:12196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        590⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        591⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        592⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        593⤵
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        594⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        595⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        596⤵
        
        PID:1044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        597⤵
        
        PID:2268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        598⤵
        
        PID:2312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        599⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        600⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        601⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        602⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        603⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        604⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        605⤵
        
        PID:12384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        606⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        607⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        608⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        609⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        610⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        611⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        612⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        613⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        614⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        615⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        616⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        617⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        618⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        619⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        620⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        621⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        622⤵
        
        PID:12628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        623⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        624⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        625⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        626⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        627⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        628⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        629⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        630⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        631⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        632⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        633⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        634⤵
        
        PID:12808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        635⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        636⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        637⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        638⤵
        
        PID:12868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        639⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        640⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        641⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        642⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        643⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        644⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        645⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        646⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        647⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        648⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        649⤵
        
        PID:13036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        650⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        651⤵
        
        PID:13068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        652⤵
        
        PID:13084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        653⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        654⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        655⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        656⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        657⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        658⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        659⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        660⤵
        
        PID:13212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        661⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        662⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        663⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        664⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        665⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        666⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        667⤵
        
        PID:3304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        668⤵
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        669⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        670⤵
        
        PID:4136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        671⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        672⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        673⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        674⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        675⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        676⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        677⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        678⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        679⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        680⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        681⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        682⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        683⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        684⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        685⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        686⤵
        
        PID:13564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        687⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        688⤵
        
        PID:13596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        689⤵
        
        PID:13612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        690⤵
        
        PID:13628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        691⤵
        
        PID:13644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        692⤵
        
        PID:13660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        693⤵
        
        PID:13676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        694⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        695⤵
        
        PID:13704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        696⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        697⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        698⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        699⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        700⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        701⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        702⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        703⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        704⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        705⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        706⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        707⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        708⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        709⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        710⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        711⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        712⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        713⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        714⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        715⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        716⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        717⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        718⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        719⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        720⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        721⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        722⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        723⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        724⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        725⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        726⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        727⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        728⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        729⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        730⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        731⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        732⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        733⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        734⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        735⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        736⤵
        
        PID:4288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        737⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        738⤵
        
        PID:14372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        739⤵
        
        PID:14388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        740⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        741⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        742⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        743⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        744⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        745⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        746⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        747⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        748⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        749⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        750⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        751⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        752⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        753⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        754⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        755⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        756⤵
        
        PID:14640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        757⤵
        
        PID:14656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        758⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        759⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        760⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        761⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        762⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        763⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        764⤵
        
        PID:14768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        765⤵
        
        PID:14784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        766⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        767⤵
        
        PID:14816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        768⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        769⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        770⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        771⤵
        
        PID:14872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        772⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        773⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        774⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        775⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        776⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        777⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        778⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        779⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        780⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        781⤵
        
        PID:15028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        782⤵
        
        PID:15044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        783⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        784⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        785⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        786⤵
        
        PID:15104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        787⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        788⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        789⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        790⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        791⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        792⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        793⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        794⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        795⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        796⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        797⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        798⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        799⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        800⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        801⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        802⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        803⤵
        
        PID:15364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        804⤵
        
        PID:15380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        805⤵
        
        PID:15396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        806⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        807⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        808⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        809⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        810⤵
        
        PID:15464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        811⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        812⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        813⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        814⤵
        
        PID:15524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        815⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        816⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        817⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        818⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        819⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        820⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        821⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        822⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        823⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        824⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        825⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        826⤵
        
        PID:15720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        827⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        828⤵
        
        PID:15748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        829⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        830⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        831⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        832⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        833⤵
        
        PID:15828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        834⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        835⤵
        
        PID:15856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        836⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        837⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        838⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        839⤵
        
        PID:15912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        840⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        841⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        842⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        843⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        844⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        845⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        846⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        847⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        848⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        849⤵
        
        PID:16072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        850⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        851⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        852⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        853⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        854⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        855⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        856⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        857⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        858⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        859⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        860⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        861⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        862⤵
        
        PID:16272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        863⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        864⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        865⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        866⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        867⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        868⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        869⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        870⤵
        
        PID:16400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        871⤵
        
        PID:16416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        872⤵
        
        PID:16432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        873⤵
        
        PID:16448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        874⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        875⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        876⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        877⤵
        
        PID:16508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        878⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        879⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        880⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        881⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        882⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        883⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        884⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        885⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        886⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        887⤵
        
        PID:16664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        888⤵
        
        PID:16676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        889⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        890⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        891⤵
        
        PID:16724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        892⤵
        
        PID:16736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        893⤵
        
        PID:16748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        894⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        895⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        896⤵
        
        PID:16792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\074ccfbe57af087ef3fa8263e0e75a11_JaffaCakes118.dll,#1
        897⤵
        
        PID:16808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/16764-2-0x0000000075810000-0x0000000075A94000-memory.dmp

Filesize
2.5MB

Download
memory/16780-1-0x0000000075810000-0x0000000075A94000-memory.dmp

Filesize
2.5MB

Download
memory/16792-0-0x0000000075810000-0x0000000075A94000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads