15b163a85fe42bfaa29e8ebcb0842fc8c728366dbdbbb4c2a0dc9b6eb8a01f77

Analysis

max time kernel
125s
max time network
127s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
28/06/2024, 05:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll
Size

87KB
MD5

18f6987c2ff4a33a8f2b715f9f5f563e
SHA1

493a5abcf99c2aa032ecfe9c62a9ba7f7f0467dc
SHA256

15b163a85fe42bfaa29e8ebcb0842fc8c728366dbdbbb4c2a0dc9b6eb8a01f77
SHA512

c8935d23036b8d41347900310d249b2bc4b42eea933ca902088d68face6b05d78a796346c3c401afac20029c576ec0a8963305fec19f0d787ee2fa61fa7bae12
SSDEEP

1536:H/yhxfrkeM7kggDwz57yCu7jMDuPC/GGKvh68Vq058OvKs7S4+5IZ/jMjBNWNyiT:HIJrkh7S6Bu7jMnipPtvKs7C5K

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2260 wrote to memory of 436	2260	rundll32.exe	88
PID 2260 wrote to memory of 436	2260	rundll32.exe	88
PID 2260 wrote to memory of 436	2260	rundll32.exe	88
PID 436 wrote to memory of 4920	436	rundll32.exe	89
PID 436 wrote to memory of 4920	436	rundll32.exe	89
PID 436 wrote to memory of 4920	436	rundll32.exe	89
PID 4920 wrote to memory of 1088	4920	rundll32.exe	90
PID 4920 wrote to memory of 1088	4920	rundll32.exe	90
PID 4920 wrote to memory of 1088	4920	rundll32.exe	90
PID 1088 wrote to memory of 3644	1088	rundll32.exe	91
PID 1088 wrote to memory of 3644	1088	rundll32.exe	91
PID 1088 wrote to memory of 3644	1088	rundll32.exe	91
PID 3644 wrote to memory of 2108	3644	rundll32.exe	92
PID 3644 wrote to memory of 2108	3644	rundll32.exe	92
PID 3644 wrote to memory of 2108	3644	rundll32.exe	92
PID 2108 wrote to memory of 2564	2108	rundll32.exe	93
PID 2108 wrote to memory of 2564	2108	rundll32.exe	93
PID 2108 wrote to memory of 2564	2108	rundll32.exe	93
PID 2564 wrote to memory of 3332	2564	rundll32.exe	94
PID 2564 wrote to memory of 3332	2564	rundll32.exe	94
PID 2564 wrote to memory of 3332	2564	rundll32.exe	94
PID 3332 wrote to memory of 4240	3332	rundll32.exe	95
PID 3332 wrote to memory of 4240	3332	rundll32.exe	95
PID 3332 wrote to memory of 4240	3332	rundll32.exe	95
PID 4240 wrote to memory of 3696	4240	rundll32.exe	96
PID 4240 wrote to memory of 3696	4240	rundll32.exe	96
PID 4240 wrote to memory of 3696	4240	rundll32.exe	96
PID 3696 wrote to memory of 348	3696	rundll32.exe	97
PID 3696 wrote to memory of 348	3696	rundll32.exe	97
PID 3696 wrote to memory of 348	3696	rundll32.exe	97
PID 348 wrote to memory of 1708	348	rundll32.exe	98
PID 348 wrote to memory of 1708	348	rundll32.exe	98
PID 348 wrote to memory of 1708	348	rundll32.exe	98
PID 1708 wrote to memory of 3060	1708	rundll32.exe	99
PID 1708 wrote to memory of 3060	1708	rundll32.exe	99
PID 1708 wrote to memory of 3060	1708	rundll32.exe	99
PID 3060 wrote to memory of 4576	3060	rundll32.exe	100
PID 3060 wrote to memory of 4576	3060	rundll32.exe	100
PID 3060 wrote to memory of 4576	3060	rundll32.exe	100
PID 4576 wrote to memory of 4088	4576	rundll32.exe	101
PID 4576 wrote to memory of 4088	4576	rundll32.exe	101
PID 4576 wrote to memory of 4088	4576	rundll32.exe	101
PID 4088 wrote to memory of 2500	4088	rundll32.exe	102
PID 4088 wrote to memory of 2500	4088	rundll32.exe	102
PID 4088 wrote to memory of 2500	4088	rundll32.exe	102
PID 2500 wrote to memory of 2736	2500	rundll32.exe	103
PID 2500 wrote to memory of 2736	2500	rundll32.exe	103
PID 2500 wrote to memory of 2736	2500	rundll32.exe	103
PID 2736 wrote to memory of 2872	2736	rundll32.exe	104
PID 2736 wrote to memory of 2872	2736	rundll32.exe	104
PID 2736 wrote to memory of 2872	2736	rundll32.exe	104
PID 2872 wrote to memory of 1408	2872	rundll32.exe	105
PID 2872 wrote to memory of 1408	2872	rundll32.exe	105
PID 2872 wrote to memory of 1408	2872	rundll32.exe	105
PID 1408 wrote to memory of 4452	1408	rundll32.exe	106
PID 1408 wrote to memory of 4452	1408	rundll32.exe	106
PID 1408 wrote to memory of 4452	1408	rundll32.exe	106
PID 4452 wrote to memory of 1764	4452	rundll32.exe	107
PID 4452 wrote to memory of 1764	4452	rundll32.exe	107
PID 4452 wrote to memory of 1764	4452	rundll32.exe	107
PID 1764 wrote to memory of 1348	1764	rundll32.exe	108
PID 1764 wrote to memory of 1348	1764	rundll32.exe	108
PID 1764 wrote to memory of 1348	1764	rundll32.exe	108
PID 1348 wrote to memory of 2596	1348	rundll32.exe	109

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2260
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:436
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4920
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1088
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3644
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:2564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:2500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:2736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:1764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:1348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        23⤵
        
        PID:2596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        24⤵
        
        PID:1600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        25⤵
        
        PID:1852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        26⤵
        
        PID:4444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        27⤵
        
        PID:2524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        28⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        29⤵
        
        PID:908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        30⤵
        
        PID:3364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        31⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        32⤵
        
        PID:1776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        33⤵
        
        PID:3340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        34⤵
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        35⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        36⤵
        
        PID:4448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        37⤵
        
        PID:3704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        38⤵
        
        PID:3712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        39⤵
        
        PID:2928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        40⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        41⤵
        
        PID:4268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        42⤵
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        43⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        44⤵
        
        PID:4804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        45⤵
        
        PID:4068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        46⤵
        
        PID:4224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        47⤵
        
        PID:3156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        48⤵
        
        PID:840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        49⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        50⤵
        
        PID:2188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        51⤵
        
        PID:2012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        52⤵
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        53⤵
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        54⤵
        
        PID:1628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        55⤵
        
        PID:2760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        56⤵
        
        PID:3428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        57⤵
        
        PID:4756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        58⤵
        
        PID:4940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        59⤵
        
        PID:3384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        60⤵
        
        PID:1716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        61⤵
        
        PID:1780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        62⤵
        
        PID:1736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        63⤵
        
        PID:4364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        64⤵
        
        PID:4676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        65⤵
        
        PID:3472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        66⤵
        
        PID:3092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        67⤵
        
        PID:4732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        68⤵
        
        PID:2232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        69⤵
        
        PID:4916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        70⤵
        
        PID:3508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        71⤵
        
        PID:1532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        72⤵
        
        PID:1940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        73⤵
        
        PID:3164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        74⤵
        
        PID:3708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        75⤵
        
        PID:3924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        76⤵
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        77⤵
        
        PID:4152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        78⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        79⤵
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        80⤵
        
        PID:3892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        81⤵
        
        PID:5040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        82⤵
        
        PID:1932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        83⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        84⤵
        
        PID:656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        85⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        86⤵
        
        PID:2912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        87⤵
        
        PID:3624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        88⤵
        
        PID:2664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        89⤵
        
        PID:3888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        90⤵
        
        PID:5028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        91⤵
        
        PID:684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        92⤵
        
        PID:4344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        93⤵
        
        PID:1244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        94⤵
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        95⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        96⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        97⤵
        
        PID:1804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        98⤵
        
        PID:3588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        99⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        100⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        101⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        102⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        103⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        104⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        105⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        106⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        107⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        108⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        109⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        110⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        111⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        112⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        113⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        114⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        115⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        116⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        117⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        118⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        119⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        120⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        121⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        122⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        123⤵
        
        PID:5560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        124⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        125⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        126⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        127⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        128⤵
        
        PID:5640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        129⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        130⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        131⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        132⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        133⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        134⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        135⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        136⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        137⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        138⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        139⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        140⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        141⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        142⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        143⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        144⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        145⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        146⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        147⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        148⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        149⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        150⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        151⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        152⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        153⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        154⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        155⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        156⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        157⤵
        
        PID:6176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        158⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        159⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        160⤵
        
        PID:6272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        161⤵
        
        PID:6288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        162⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        163⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        164⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        165⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        166⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        167⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        168⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        169⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        170⤵
        
        PID:6448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        171⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        172⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        173⤵
        
        PID:6492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        174⤵
        
        PID:6508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        175⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        176⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        177⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        178⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        179⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        180⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        181⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        182⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        183⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        184⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        185⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        186⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        187⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        188⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        189⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        190⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        191⤵
        
        PID:6800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        192⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        193⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        194⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        195⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        196⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        197⤵
        
        PID:6896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        198⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        199⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        200⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        201⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        202⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        203⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        204⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        205⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        206⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        207⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        208⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        209⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        210⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        211⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        212⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        213⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        214⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        215⤵
        
        PID:464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        216⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        217⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        218⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        219⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        220⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        221⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        222⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        223⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        224⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        225⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        226⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        227⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        228⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        229⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        230⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        231⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        232⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        233⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        234⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        235⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        236⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        237⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        238⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        239⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        240⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        241⤵
        
        PID:7564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        242⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        243⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        244⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        245⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        246⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        247⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        248⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        249⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        250⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        251⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        252⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        253⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        254⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        255⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        256⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        257⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        258⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        259⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        260⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        261⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        262⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        263⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        264⤵
        
        PID:7936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        265⤵
        
        PID:7952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        266⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        267⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        268⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        269⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        270⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        271⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        272⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        273⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        274⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        275⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        276⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        277⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        278⤵
        
        PID:8144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        279⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        280⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        281⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        282⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        283⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        284⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        285⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        286⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        287⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        288⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        289⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        290⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        291⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        292⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        293⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        294⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        295⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        296⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        297⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        298⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        299⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        300⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        301⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        302⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        303⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        304⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        305⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        306⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        307⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        308⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        309⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        310⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        311⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        312⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        313⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        314⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        315⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        316⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        317⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        318⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        319⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        320⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        321⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        322⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        323⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        324⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        325⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        326⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        327⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        328⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        329⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        330⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        331⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        332⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        333⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        334⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        335⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        336⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        337⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        338⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        339⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        340⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        341⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        342⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        343⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        344⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        345⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        346⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        347⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        348⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        349⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        350⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        351⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        352⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        353⤵
        
        PID:9284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        354⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        355⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        356⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        357⤵
        
        PID:9336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        358⤵
        
        PID:9352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        359⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        360⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        361⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        362⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        363⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        364⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        365⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        366⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        367⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        368⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        369⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        370⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        371⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        372⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        373⤵
        
        PID:9712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        374⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        375⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        376⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        377⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        378⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        379⤵
        
        PID:9800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        380⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        381⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        382⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        383⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        384⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        385⤵
        
        PID:9892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        386⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        387⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        388⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        389⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        390⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        391⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        392⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        393⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        394⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        395⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        396⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        397⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        398⤵
        
        PID:10092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        399⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        400⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        401⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        402⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        403⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        404⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        405⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        406⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        407⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        408⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        409⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        410⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        411⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        412⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        413⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        414⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        415⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        416⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        417⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        418⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        419⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        420⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        421⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        422⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        423⤵
        
        PID:10464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        424⤵
        
        PID:10480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        425⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        426⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        427⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        428⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        429⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        430⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        431⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        432⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        433⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        434⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        435⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        436⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        437⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        438⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        439⤵
        
        PID:10704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        440⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        441⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        442⤵
        
        PID:10752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        443⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        444⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        445⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        446⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        447⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        448⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        449⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        450⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        451⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        452⤵
        
        PID:10900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        453⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        454⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        455⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        456⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        457⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        458⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        459⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        460⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        461⤵
        
        PID:11036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        462⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        463⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        464⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        465⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        466⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        467⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        468⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        469⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        470⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        471⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        472⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        473⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        474⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        475⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        476⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        477⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        478⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        479⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        480⤵
        
        PID:3736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        481⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        482⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        483⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        484⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        485⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        486⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        487⤵
        
        PID:11364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        488⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        489⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        490⤵
        
        PID:11412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        491⤵
        
        PID:11428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        492⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        493⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        494⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        495⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        496⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        497⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        498⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        499⤵
        
        PID:11548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        500⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        501⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        502⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        503⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        504⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        505⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        506⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        507⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        508⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        509⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        510⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        511⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        512⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        513⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        514⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        515⤵
        
        PID:11796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        516⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        517⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        518⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        519⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        520⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        521⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        522⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        523⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        524⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        525⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        526⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        527⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        528⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        529⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        530⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        531⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        532⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        533⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        534⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        535⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        536⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        537⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        538⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        539⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        540⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        541⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        542⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        543⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        544⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        545⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        546⤵
        
        PID:12264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        547⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        548⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        549⤵
        
        PID:12324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        550⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        551⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        552⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        553⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        554⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        555⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        556⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        557⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        558⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        559⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        560⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        561⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        562⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        563⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        564⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        565⤵
        
        PID:12580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        566⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        567⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        568⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        569⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        570⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        571⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        572⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        573⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        574⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        575⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        576⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        577⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        578⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        579⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        580⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        581⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        582⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        583⤵
        
        PID:12852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        584⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        585⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        586⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        587⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        588⤵
        
        PID:12924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        589⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        590⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        591⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        592⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        593⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        594⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        595⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        596⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        597⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        598⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        599⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        600⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        601⤵
        
        PID:13128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        602⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        603⤵
        
        PID:13160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        604⤵
        
        PID:13176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        605⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        606⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        607⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        608⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        609⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        610⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        611⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        612⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        613⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        614⤵
        
        PID:12440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        615⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        616⤵
        
        PID:13324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        617⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        618⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        619⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        620⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        621⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        622⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        623⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        624⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        625⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        626⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        627⤵
        
        PID:13492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        628⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        629⤵
        
        PID:13520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        630⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        631⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        632⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        633⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        634⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        635⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        636⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        637⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        638⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        639⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        640⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        641⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        642⤵
        
        PID:13716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        643⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        644⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        645⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        646⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        647⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        648⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        649⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        650⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        651⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        652⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        653⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        654⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        655⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        656⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        657⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        658⤵
        
        PID:13960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        659⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        660⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        661⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        662⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        663⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        664⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        665⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        666⤵
        
        PID:14084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        667⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        668⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        669⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        670⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        671⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        672⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        673⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        674⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        675⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        676⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        677⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        678⤵
        
        PID:14264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        679⤵
        
        PID:14276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        680⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        681⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        682⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        683⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        684⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        685⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        686⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        687⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        688⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        689⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        690⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        691⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        692⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        693⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        694⤵
        
        PID:14500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        695⤵
        
        PID:14516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        696⤵
        
        PID:14532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        697⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        698⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        699⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        700⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        701⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        702⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        703⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        704⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        705⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        706⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        707⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        708⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        709⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        710⤵
        
        PID:14740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        711⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        712⤵
        
        PID:14768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        713⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        714⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        715⤵
        
        PID:14816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        716⤵
        
        PID:14832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        717⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        718⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        719⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        720⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        721⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        722⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        723⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        724⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        725⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        726⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        727⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        728⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        729⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        730⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        731⤵
        
        PID:15052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        732⤵
        
        PID:15068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        733⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        734⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        735⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        736⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        737⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        738⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        739⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        740⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        741⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        742⤵
        
        PID:15224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        743⤵
        
        PID:15240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        744⤵
        
        PID:15252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        745⤵
        
        PID:15268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        746⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        747⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        748⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        749⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        750⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        751⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        752⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        753⤵
        
        PID:15376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        754⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        755⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        756⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        757⤵
        
        PID:15432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        758⤵
        
        PID:15448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        759⤵
        
        PID:15464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        760⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        761⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        762⤵
        
        PID:15504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        763⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        764⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        765⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        766⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        767⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        768⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        769⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        770⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        771⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        772⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        773⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        774⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        775⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        776⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        777⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        778⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        779⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        780⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        781⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        782⤵
        
        PID:15808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        783⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        784⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        785⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        786⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        787⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        788⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        789⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        790⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        791⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        792⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        793⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        794⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        795⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        796⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        797⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        798⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        799⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        800⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        801⤵
        
        PID:16100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        802⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        803⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        804⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        805⤵
        
        PID:16164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        806⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        807⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        808⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        809⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        810⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        811⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        812⤵
        
        PID:16272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        813⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        814⤵
        
        PID:16300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        815⤵
        
        PID:16316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        816⤵
        
        PID:16332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        817⤵
        
        PID:16348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        818⤵
        
        PID:16364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        819⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        820⤵
        
        PID:16388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        821⤵
        
        PID:16404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        822⤵
        
        PID:16420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        823⤵
        
        PID:16436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        824⤵
        
        PID:16452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        825⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        826⤵
        
        PID:16480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        827⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        828⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        829⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        830⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        831⤵
        
        PID:16548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        832⤵
        
        PID:16564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        833⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        834⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        835⤵
        
        PID:16608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        836⤵
        
        PID:16624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        837⤵
        
        PID:16640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        838⤵
        
        PID:16656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        839⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        840⤵
        
        PID:16688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        841⤵
        
        PID:16704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        842⤵
        
        PID:16720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        843⤵
        
        PID:16736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        844⤵
        
        PID:16752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        845⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        846⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        847⤵
        
        PID:16796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        848⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        849⤵
        
        PID:16820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        850⤵
        
        PID:16836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        851⤵
        
        PID:16852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        852⤵
        
        PID:16868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        853⤵
        
        PID:16880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        854⤵
        
        PID:16896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        855⤵
        
        PID:16908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        856⤵
        
        PID:16924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        857⤵
        
        PID:16940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        858⤵
        
        PID:16956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        859⤵
        
        PID:16972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        860⤵
        
        PID:16988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        861⤵
        
        PID:17004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\18f6987c2ff4a33a8f2b715f9f5f563e_JaffaCakes118.dll,#1
        862⤵
        
        PID:17020

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=4332,i,15721081447618313297,6839074028983272033,262144 --variations-seed-version --mojo-platform-channel-handle=3900 /prefetch:8
1⤵
PID:6720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/16988-2-0x0000000074A50000-0x0000000074CD4000-memory.dmp

Filesize
2.5MB

Download
memory/17004-1-0x0000000074A50000-0x0000000074CD4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads