cea6b5489c765b7af8ebaf3d697ab99144563c17aa49cbaeb233e5530350c6c8

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
24/06/2024, 09:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

079c2be412562328653dc5f841503ed1_JaffaCakes118.dll
Size

87KB
MD5

079c2be412562328653dc5f841503ed1
SHA1

88059c50013347b74d078ad6383ed627f17c5e60
SHA256

cea6b5489c765b7af8ebaf3d697ab99144563c17aa49cbaeb233e5530350c6c8
SHA512

7b81fa23cda290d34deb88f7dc1e34d51716de0cfa14e487e11fd22873ed806d23e8908b5f1b5aa0f355e32ffff36567cf6f808c617bf7c45bd4e8852e693105
SSDEEP

1536:nZx6+llHurgtqz4TiK1oWqJz/tqyMSm/IvYqSAO/ExlMI7PVns7xkflcTi+/juml:nC+llOcwmiya/eSm/Igq+UDTVs74lcTb

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 368 wrote to memory of 5108	368	rundll32.exe	80
PID 368 wrote to memory of 5108	368	rundll32.exe	80
PID 368 wrote to memory of 5108	368	rundll32.exe	80
PID 5108 wrote to memory of 2908	5108	rundll32.exe	81
PID 5108 wrote to memory of 2908	5108	rundll32.exe	81
PID 5108 wrote to memory of 2908	5108	rundll32.exe	81
PID 2908 wrote to memory of 1220	2908	rundll32.exe	82
PID 2908 wrote to memory of 1220	2908	rundll32.exe	82
PID 2908 wrote to memory of 1220	2908	rundll32.exe	82
PID 1220 wrote to memory of 1624	1220	rundll32.exe	83
PID 1220 wrote to memory of 1624	1220	rundll32.exe	83
PID 1220 wrote to memory of 1624	1220	rundll32.exe	83
PID 1624 wrote to memory of 1376	1624	rundll32.exe	84
PID 1624 wrote to memory of 1376	1624	rundll32.exe	84
PID 1624 wrote to memory of 1376	1624	rundll32.exe	84
PID 1376 wrote to memory of 3632	1376	rundll32.exe	85
PID 1376 wrote to memory of 3632	1376	rundll32.exe	85
PID 1376 wrote to memory of 3632	1376	rundll32.exe	85
PID 3632 wrote to memory of 3636	3632	rundll32.exe	86
PID 3632 wrote to memory of 3636	3632	rundll32.exe	86
PID 3632 wrote to memory of 3636	3632	rundll32.exe	86
PID 3636 wrote to memory of 1916	3636	rundll32.exe	87
PID 3636 wrote to memory of 1916	3636	rundll32.exe	87
PID 3636 wrote to memory of 1916	3636	rundll32.exe	87
PID 1916 wrote to memory of 184	1916	rundll32.exe	88
PID 1916 wrote to memory of 184	1916	rundll32.exe	88
PID 1916 wrote to memory of 184	1916	rundll32.exe	88
PID 184 wrote to memory of 4180	184	rundll32.exe	89
PID 184 wrote to memory of 4180	184	rundll32.exe	89
PID 184 wrote to memory of 4180	184	rundll32.exe	89
PID 4180 wrote to memory of 3224	4180	rundll32.exe	90
PID 4180 wrote to memory of 3224	4180	rundll32.exe	90
PID 4180 wrote to memory of 3224	4180	rundll32.exe	90
PID 3224 wrote to memory of 3388	3224	rundll32.exe	91
PID 3224 wrote to memory of 3388	3224	rundll32.exe	91
PID 3224 wrote to memory of 3388	3224	rundll32.exe	91
PID 3388 wrote to memory of 4136	3388	rundll32.exe	92
PID 3388 wrote to memory of 4136	3388	rundll32.exe	92
PID 3388 wrote to memory of 4136	3388	rundll32.exe	92
PID 4136 wrote to memory of 4752	4136	rundll32.exe	93
PID 4136 wrote to memory of 4752	4136	rundll32.exe	93
PID 4136 wrote to memory of 4752	4136	rundll32.exe	93
PID 4752 wrote to memory of 3848	4752	rundll32.exe	94
PID 4752 wrote to memory of 3848	4752	rundll32.exe	94
PID 4752 wrote to memory of 3848	4752	rundll32.exe	94
PID 3848 wrote to memory of 1588	3848	rundll32.exe	95
PID 3848 wrote to memory of 1588	3848	rundll32.exe	95
PID 3848 wrote to memory of 1588	3848	rundll32.exe	95
PID 1588 wrote to memory of 2632	1588	rundll32.exe	96
PID 1588 wrote to memory of 2632	1588	rundll32.exe	96
PID 1588 wrote to memory of 2632	1588	rundll32.exe	96
PID 2632 wrote to memory of 4460	2632	rundll32.exe	97
PID 2632 wrote to memory of 4460	2632	rundll32.exe	97
PID 2632 wrote to memory of 4460	2632	rundll32.exe	97
PID 4460 wrote to memory of 1472	4460	rundll32.exe	98
PID 4460 wrote to memory of 1472	4460	rundll32.exe	98
PID 4460 wrote to memory of 1472	4460	rundll32.exe	98
PID 1472 wrote to memory of 3184	1472	rundll32.exe	99
PID 1472 wrote to memory of 3184	1472	rundll32.exe	99
PID 1472 wrote to memory of 3184	1472	rundll32.exe	99
PID 3184 wrote to memory of 2956	3184	rundll32.exe	100
PID 3184 wrote to memory of 2956	3184	rundll32.exe	100
PID 3184 wrote to memory of 2956	3184	rundll32.exe	100
PID 2956 wrote to memory of 4544	2956	rundll32.exe	101

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:368
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:5108
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2908
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1220
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1624
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:3224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:1472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        23⤵
        
        PID:4544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        24⤵
        
        PID:1888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        25⤵
        
        PID:3032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        26⤵
        
        PID:4844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        27⤵
        
        PID:4472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        28⤵
        
        PID:3900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        29⤵
        
        PID:392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        30⤵
        
        PID:2648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        31⤵
        
        PID:644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        32⤵
        
        PID:2696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        33⤵
        
        PID:1920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        34⤵
        
        PID:1532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        35⤵
        
        PID:3704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        36⤵
        
        PID:1792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        37⤵
        
        PID:4620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        38⤵
        
        PID:3088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        39⤵
        
        PID:3968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        40⤵
        
        PID:2992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        41⤵
        
        PID:1968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        42⤵
        
        PID:4160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        43⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        44⤵
        
        PID:2980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        45⤵
        
        PID:3128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        46⤵
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        47⤵
        
        PID:5036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        48⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        49⤵
        
        PID:5052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        50⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        51⤵
        
        PID:3812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        52⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        53⤵
        
        PID:3116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        54⤵
        
        PID:1540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        55⤵
        
        PID:2412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        56⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        57⤵
        
        PID:3288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        58⤵
        
        PID:4148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        59⤵
        
        PID:4000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        60⤵
        
        PID:4212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        61⤵
        
        PID:4380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        62⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        63⤵
        
        PID:1336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        64⤵
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        65⤵
        
        PID:2284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        66⤵
        
        PID:2852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        67⤵
        
        PID:1652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        68⤵
        
        PID:1852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        69⤵
        
        PID:1100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        70⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        71⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        72⤵
        
        PID:1960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        73⤵
        
        PID:1568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        74⤵
        
        PID:2076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        75⤵
        
        PID:3644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        76⤵
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        77⤵
        
        PID:2552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        78⤵
        
        PID:5116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        79⤵
        
        PID:1504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        80⤵
        
        PID:2948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        81⤵
        
        PID:2912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        82⤵
        
        PID:1164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        83⤵
        
        PID:3048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        84⤵
        
        PID:512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        85⤵
        
        PID:3668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        86⤵
        
        PID:4188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        87⤵
        
        PID:4700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        88⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        89⤵
        
        PID:4224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        90⤵
        
        PID:1500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        91⤵
        
        PID:8
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        92⤵
        
        PID:3556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        93⤵
        
        PID:856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        94⤵
        
        PID:1392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        95⤵
        
        PID:2172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        96⤵
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        97⤵
        
        PID:3444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        98⤵
        
        PID:2376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        99⤵
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        100⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        101⤵
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        102⤵
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        103⤵
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        104⤵
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        105⤵
        
        PID:4956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        106⤵
        
        PID:3080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        107⤵
        
        PID:4856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        108⤵
        
        PID:5000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        109⤵
        
        PID:2380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        110⤵
        
        PID:3092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        111⤵
        
        PID:3992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        112⤵
        
        PID:4124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        113⤵
        
        PID:3284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        114⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        115⤵
        
        PID:1104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        116⤵
        
        PID:2820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        117⤵
        
        PID:1656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        118⤵
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        119⤵
        
        PID:1732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        120⤵
        
        PID:2152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        121⤵
        
        PID:1928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        122⤵
        
        PID:1940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        123⤵
        
        PID:5024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        124⤵
        
        PID:4780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        125⤵
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        126⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        127⤵
        
        PID:1684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        128⤵
        
        PID:4372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        129⤵
        
        PID:2308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        130⤵
        
        PID:2808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        131⤵
        
        PID:3624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        132⤵
        
        PID:4204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        133⤵
        
        PID:4628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        134⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        135⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        136⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        137⤵
        
        PID:5172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        138⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        139⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        140⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        141⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        142⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        143⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        144⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        145⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        146⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        147⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        148⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        149⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        150⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        151⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        152⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        153⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        154⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        155⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        156⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        157⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        158⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        159⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        160⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        161⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        162⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        163⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        164⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        165⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        166⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        167⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        168⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        169⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        170⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        171⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        172⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        173⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        174⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        175⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        176⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        177⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        178⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        179⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        180⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        181⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        182⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        183⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        184⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        185⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        186⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        187⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        188⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        189⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        190⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        191⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        192⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        193⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        194⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        195⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        196⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        197⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        198⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        199⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        200⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        201⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        202⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        203⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        204⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        205⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        206⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        207⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        208⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        209⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        210⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        211⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        212⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        213⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        214⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        215⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        216⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        217⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        218⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        219⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        220⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        221⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        222⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        223⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        224⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        225⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        226⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        227⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        228⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        229⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        230⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        231⤵
        
        PID:6608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        232⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        233⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        234⤵
        
        PID:6656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        235⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        236⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        237⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        238⤵
        
        PID:6716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        239⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        240⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        241⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        242⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        243⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        244⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        245⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        246⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        247⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        248⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        249⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        250⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        251⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        252⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        253⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        254⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        255⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        256⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        257⤵
        
        PID:7000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        258⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        259⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        260⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        261⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        262⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        263⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        264⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        265⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        266⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        267⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        268⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        269⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        270⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        271⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        272⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        273⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        274⤵
        
        PID:7236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        275⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        276⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        277⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        278⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        279⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        280⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        281⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        282⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        283⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        284⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        285⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        286⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        287⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        288⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        289⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        290⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        291⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        292⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        293⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        294⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        295⤵
        
        PID:7564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        296⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        297⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        298⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        299⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        300⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        301⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        302⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        303⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        304⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        305⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        306⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        307⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        308⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        309⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        310⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        311⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        312⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        313⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        314⤵
        
        PID:7852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        315⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        316⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        317⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        318⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        319⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        320⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        321⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        322⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        323⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        324⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        325⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        326⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        327⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        328⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        329⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        330⤵
        
        PID:8100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        331⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        332⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        333⤵
        
        PID:8148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        334⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        335⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        336⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        337⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        338⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        339⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        340⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        341⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        342⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        343⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        344⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        345⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        346⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        347⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        348⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        349⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        350⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        351⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        352⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        353⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        354⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        355⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        356⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        357⤵
        
        PID:8520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        358⤵
        
        PID:8536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        359⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        360⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        361⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        362⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        363⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        364⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        365⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        366⤵
        
        PID:8664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        367⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        368⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        369⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        370⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        371⤵
        
        PID:8760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        372⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        373⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        374⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        375⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        376⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        377⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        378⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        379⤵
        
        PID:8880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        380⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        381⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        382⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        383⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        384⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        385⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        386⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        387⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        388⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        389⤵
        
        PID:9040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        390⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        391⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        392⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        393⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        394⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        395⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        396⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        397⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        398⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        399⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        400⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        401⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        402⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        403⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        404⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        405⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        406⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        407⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        408⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        409⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        410⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        411⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        412⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        413⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        414⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        415⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        416⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        417⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        418⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        419⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        420⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        421⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        422⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        423⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        424⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        425⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        426⤵
        
        PID:9600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        427⤵
        
        PID:9616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        428⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        429⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        430⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        431⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        432⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        433⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        434⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        435⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        436⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        437⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        438⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        439⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        440⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        441⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        442⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        443⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        444⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        445⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        446⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        447⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        448⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        449⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        450⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        451⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        452⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        453⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        454⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        455⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        456⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        457⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        458⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        459⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        460⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        461⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        462⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        463⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        464⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        465⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        466⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        467⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        468⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        469⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        470⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        471⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        472⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        473⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        474⤵
        
        PID:10340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        475⤵
        
        PID:10356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        476⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        477⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        478⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        479⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        480⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        481⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        482⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        483⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        484⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        485⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        486⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        487⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        488⤵
        
        PID:10556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        489⤵
        
        PID:10572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        490⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        491⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        492⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        493⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        494⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        495⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        496⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        497⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        498⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        499⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        500⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        501⤵
        
        PID:10764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        502⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        503⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        504⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        505⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        506⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        507⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        508⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        509⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        510⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        511⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        512⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        513⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        514⤵
        
        PID:10976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        515⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        516⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        517⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        518⤵
        
        PID:11036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        519⤵
        
        PID:11052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        520⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        521⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        522⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        523⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        524⤵
        
        PID:11132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        525⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        526⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        527⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        528⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        529⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        530⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        531⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        532⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        533⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        534⤵
        
        PID:11284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        535⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        536⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        537⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        538⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        539⤵
        
        PID:11360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        540⤵
        
        PID:11376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        541⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        542⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        543⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        544⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        545⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        546⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        547⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        548⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        549⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        550⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        551⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        552⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        553⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        554⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        555⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        556⤵
        
        PID:11604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        557⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        558⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        559⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        560⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        561⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        562⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        563⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        564⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        565⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        566⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        567⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        568⤵
        
        PID:11796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        569⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        570⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        571⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        572⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        573⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        574⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        575⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        576⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        577⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        578⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        579⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        580⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        581⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        582⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        583⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        584⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        585⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        586⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        587⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        588⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        589⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        590⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        591⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        592⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        593⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        594⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        595⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        596⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        597⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        598⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        599⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        600⤵
        
        PID:3860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        601⤵
        
        PID:2068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        602⤵
        
        PID:3708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        603⤵
        
        PID:4900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        604⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        605⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        606⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        607⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        608⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        609⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        610⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        611⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        612⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        613⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        614⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        615⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        616⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        617⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        618⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        619⤵
        
        PID:12528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        620⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        621⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        622⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        623⤵
        
        PID:12580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        624⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        625⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        626⤵
        
        PID:12628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        627⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        628⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        629⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        630⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        631⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        632⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        633⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        634⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        635⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        636⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        637⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        638⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        639⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        640⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        641⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        642⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        643⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        644⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        645⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        646⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        647⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        648⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        649⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        650⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        651⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        652⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        653⤵
        
        PID:13056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        654⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        655⤵
        
        PID:13084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        656⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        657⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        658⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        659⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        660⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        661⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        662⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        663⤵
        
        PID:13212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        664⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        665⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        666⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        667⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        668⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        669⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        670⤵
        
        PID:3652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        671⤵
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        672⤵
        
        PID:4656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        673⤵
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        674⤵
        
        PID:464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        675⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        676⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        677⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        678⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        679⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        680⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        681⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        682⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        683⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        684⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        685⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        686⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        687⤵
        
        PID:13504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        688⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        689⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        690⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        691⤵
        
        PID:13564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        692⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        693⤵
        
        PID:13596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        694⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        695⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        696⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        697⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        698⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        699⤵
        
        PID:13692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        700⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        701⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        702⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        703⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        704⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        705⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        706⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        707⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        708⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        709⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        710⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        711⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        712⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        713⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        714⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        715⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        716⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        717⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        718⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        719⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        720⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        721⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        722⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        723⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        724⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        725⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        726⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        727⤵
        
        PID:14120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        728⤵
        
        PID:14136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        729⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        730⤵
        
        PID:14168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        731⤵
        
        PID:14184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        732⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        733⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        734⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        735⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        736⤵
        
        PID:14264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        737⤵
        
        PID:14280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        738⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        739⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        740⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        741⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        742⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        743⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        744⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        745⤵
        
        PID:14388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        746⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        747⤵
        
        PID:14420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        748⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        749⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        750⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        751⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        752⤵
        
        PID:14492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        753⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        754⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        755⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        756⤵
        
        PID:14552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        757⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        758⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        759⤵
        
        PID:14600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        760⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        761⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        762⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        763⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        764⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        765⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        766⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        767⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        768⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        769⤵
        
        PID:14760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        770⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        771⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        772⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        773⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        774⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        775⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        776⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        777⤵
        
        PID:14884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        778⤵
        
        PID:14900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        779⤵
        
        PID:14912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        780⤵
        
        PID:14928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        781⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        782⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        783⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        784⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        785⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        786⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        787⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        788⤵
        
        PID:15044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        789⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        790⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        791⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        792⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        793⤵
        
        PID:15120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        794⤵
        
        PID:15136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        795⤵
        
        PID:15152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        796⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        797⤵
        
        PID:15180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        798⤵
        
        PID:15192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        799⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        800⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        801⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        802⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        803⤵
        
        PID:15268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        804⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        805⤵
        
        PID:15300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        806⤵
        
        PID:15316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        807⤵
        
        PID:15328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        808⤵
        
        PID:15344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        809⤵
        
        PID:15356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        810⤵
        
        PID:15368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        811⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        812⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        813⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        814⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        815⤵
        
        PID:15444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        816⤵
        
        PID:15460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        817⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        818⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        819⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        820⤵
        
        PID:15524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        821⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        822⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        823⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        824⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        825⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        826⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        827⤵
        
        PID:15632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        828⤵
        
        PID:15648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        829⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        830⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        831⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        832⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        833⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        834⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        835⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        836⤵
        
        PID:15768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        837⤵
        
        PID:15784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        838⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        839⤵
        
        PID:15816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        840⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        841⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        842⤵
        
        PID:15860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        843⤵
        
        PID:15876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        844⤵
        
        PID:15892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        845⤵
        
        PID:15908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        846⤵
        
        PID:15924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        847⤵
        
        PID:15936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        848⤵
        
        PID:15952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        849⤵
        
        PID:15968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        850⤵
        
        PID:15984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        851⤵
        
        PID:15996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        852⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        853⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        854⤵
        
        PID:16036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        855⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        856⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        857⤵
        
        PID:16080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        858⤵
        
        PID:16096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        859⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        860⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        861⤵
        
        PID:16144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        862⤵
        
        PID:16160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        863⤵
        
        PID:16176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        864⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        865⤵
        
        PID:16208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        866⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        867⤵
        
        PID:16236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        868⤵
        
        PID:16252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        869⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        870⤵
        
        PID:16284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        871⤵
        
        PID:16300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        872⤵
        
        PID:16316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        873⤵
        
        PID:16332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        874⤵
        
        PID:16348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        875⤵
        
        PID:16364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        876⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        877⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        878⤵
        
        PID:16408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        879⤵
        
        PID:16420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        880⤵
        
        PID:16440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        881⤵
        
        PID:16456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        882⤵
        
        PID:16472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        883⤵
        
        PID:16484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        884⤵
        
        PID:16500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        885⤵
        
        PID:16512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        886⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        887⤵
        
        PID:16540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        888⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        889⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        890⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        891⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        892⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        893⤵
        
        PID:16628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        894⤵
        
        PID:16644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        895⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        896⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        897⤵
        
        PID:16688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        898⤵
        
        PID:16704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        899⤵
        
        PID:16720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\079c2be412562328653dc5f841503ed1_JaffaCakes118.dll,#1
        900⤵
        
        PID:16736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/16644-3-0x0000000074E60000-0x00000000750E4000-memory.dmp

Filesize
2.5MB

Download
memory/16660-2-0x0000000074E60000-0x00000000750E4000-memory.dmp

Filesize
2.5MB

Download
memory/16672-1-0x0000000074E60000-0x00000000750E4000-memory.dmp

Filesize
2.5MB

Download
memory/16688-0-0x0000000074E60000-0x00000000750E4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads