42c1ceb2c04c2f7d781ddd4325d55a6b45f4d25490a0ce65cdf7b0fac8283bba

Analysis

max time kernel
134s
max time network
127s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
01/07/2024, 07:31

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll
Size

162KB
MD5

0f25a3cd7d33ca394c80f511e30df31c
SHA1

0ae4a5e588df2b0d07582683a4540f7a975c0700
SHA256

42c1ceb2c04c2f7d781ddd4325d55a6b45f4d25490a0ce65cdf7b0fac8283bba
SHA512

64bb8cdd4c9d95d01925688ce34795cadbf529c775daef8dd2a4f16277e4f815e2097f34d7abb78b94b6545c1809e1a102773cb39f4fa7f747dcad61392d6543
SSDEEP

3072:JX/VvZy8cwFhnAEzp/KFN/uX8FqxmW5F8U927fwbB2dSgypMZg5tmuSeyZjr:JXNhy87nAU/K2XKqAW5Fy1Sag/gr

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4684 wrote to memory of 3588	4684	rundll32.exe	92
PID 4684 wrote to memory of 3588	4684	rundll32.exe	92
PID 4684 wrote to memory of 3588	4684	rundll32.exe	92
PID 3588 wrote to memory of 4780	3588	rundll32.exe	93
PID 3588 wrote to memory of 4780	3588	rundll32.exe	93
PID 3588 wrote to memory of 4780	3588	rundll32.exe	93
PID 4780 wrote to memory of 2260	4780	rundll32.exe	94
PID 4780 wrote to memory of 2260	4780	rundll32.exe	94
PID 4780 wrote to memory of 2260	4780	rundll32.exe	94
PID 2260 wrote to memory of 4512	2260	rundll32.exe	95
PID 2260 wrote to memory of 4512	2260	rundll32.exe	95
PID 2260 wrote to memory of 4512	2260	rundll32.exe	95
PID 4512 wrote to memory of 3776	4512	rundll32.exe	96
PID 4512 wrote to memory of 3776	4512	rundll32.exe	96
PID 4512 wrote to memory of 3776	4512	rundll32.exe	96
PID 3776 wrote to memory of 4384	3776	rundll32.exe	97
PID 3776 wrote to memory of 4384	3776	rundll32.exe	97
PID 3776 wrote to memory of 4384	3776	rundll32.exe	97
PID 4384 wrote to memory of 3220	4384	rundll32.exe	98
PID 4384 wrote to memory of 3220	4384	rundll32.exe	98
PID 4384 wrote to memory of 3220	4384	rundll32.exe	98
PID 3220 wrote to memory of 3888	3220	rundll32.exe	99
PID 3220 wrote to memory of 3888	3220	rundll32.exe	99
PID 3220 wrote to memory of 3888	3220	rundll32.exe	99
PID 3888 wrote to memory of 4460	3888	rundll32.exe	100
PID 3888 wrote to memory of 4460	3888	rundll32.exe	100
PID 3888 wrote to memory of 4460	3888	rundll32.exe	100
PID 4460 wrote to memory of 2988	4460	rundll32.exe	101
PID 4460 wrote to memory of 2988	4460	rundll32.exe	101
PID 4460 wrote to memory of 2988	4460	rundll32.exe	101
PID 2988 wrote to memory of 1936	2988	rundll32.exe	102
PID 2988 wrote to memory of 1936	2988	rundll32.exe	102
PID 2988 wrote to memory of 1936	2988	rundll32.exe	102
PID 1936 wrote to memory of 4008	1936	rundll32.exe	103
PID 1936 wrote to memory of 4008	1936	rundll32.exe	103
PID 1936 wrote to memory of 4008	1936	rundll32.exe	103
PID 4008 wrote to memory of 4452	4008	rundll32.exe	104
PID 4008 wrote to memory of 4452	4008	rundll32.exe	104
PID 4008 wrote to memory of 4452	4008	rundll32.exe	104
PID 4452 wrote to memory of 3732	4452	rundll32.exe	105
PID 4452 wrote to memory of 3732	4452	rundll32.exe	105
PID 4452 wrote to memory of 3732	4452	rundll32.exe	105
PID 3732 wrote to memory of 4736	3732	rundll32.exe	106
PID 3732 wrote to memory of 4736	3732	rundll32.exe	106
PID 3732 wrote to memory of 4736	3732	rundll32.exe	106
PID 4736 wrote to memory of 1384	4736	rundll32.exe	107
PID 4736 wrote to memory of 1384	4736	rundll32.exe	107
PID 4736 wrote to memory of 1384	4736	rundll32.exe	107
PID 1384 wrote to memory of 2900	1384	rundll32.exe	108
PID 1384 wrote to memory of 2900	1384	rundll32.exe	108
PID 1384 wrote to memory of 2900	1384	rundll32.exe	108
PID 2900 wrote to memory of 844	2900	rundll32.exe	109
PID 2900 wrote to memory of 844	2900	rundll32.exe	109
PID 2900 wrote to memory of 844	2900	rundll32.exe	109
PID 844 wrote to memory of 5012	844	rundll32.exe	110
PID 844 wrote to memory of 5012	844	rundll32.exe	110
PID 844 wrote to memory of 5012	844	rundll32.exe	110
PID 5012 wrote to memory of 5092	5012	rundll32.exe	111
PID 5012 wrote to memory of 5092	5012	rundll32.exe	111
PID 5012 wrote to memory of 5092	5012	rundll32.exe	111
PID 5092 wrote to memory of 4084	5092	rundll32.exe	112
PID 5092 wrote to memory of 4084	5092	rundll32.exe	112
PID 5092 wrote to memory of 4084	5092	rundll32.exe	112
PID 4084 wrote to memory of 3312	4084	rundll32.exe	113

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4684
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:3588
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4780
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:2260
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4512
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:3732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:2900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        23⤵
        
        PID:3312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        24⤵
        
        PID:4404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        25⤵
        
        PID:4624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        26⤵
        
        PID:4188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        27⤵
        
        PID:2536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        28⤵
        
        PID:3864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        29⤵
        
        PID:736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        30⤵
        
        PID:1088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        31⤵
        
        PID:4500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        32⤵
        
        PID:1724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        33⤵
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        34⤵
        
        PID:4228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        35⤵
        
        PID:1800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        36⤵
        
        PID:4632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        37⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        38⤵
        
        PID:1708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        39⤵
        
        PID:976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        40⤵
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        41⤵
        
        PID:2524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        42⤵
        
        PID:1920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        43⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        44⤵
        
        PID:5088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        45⤵
        
        PID:3428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        46⤵
        
        PID:4264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        47⤵
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        48⤵
        
        PID:212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        49⤵
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        50⤵
        
        PID:1744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        51⤵
        
        PID:3520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        52⤵
        
        PID:472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        53⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        54⤵
        
        PID:1260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        55⤵
        
        PID:1808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        56⤵
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        57⤵
        
        PID:1552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        58⤵
        
        PID:4996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        59⤵
        
        PID:3592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        60⤵
        
        PID:5004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        61⤵
        
        PID:2884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        62⤵
        
        PID:1720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        63⤵
        
        PID:2184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        64⤵
        
        PID:4020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        65⤵
        
        PID:3448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        66⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        67⤵
        
        PID:4552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        68⤵
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        69⤵
        
        PID:1620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        70⤵
        
        PID:3308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        71⤵
        
        PID:1516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        72⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        73⤵
        
        PID:5140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        74⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        75⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        76⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        77⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        78⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        79⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        80⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        81⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        82⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        83⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        84⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        85⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        86⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        87⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        88⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        89⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        90⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        91⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        92⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        93⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        94⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        95⤵
        
        PID:5524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        96⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        97⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        98⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        99⤵
        
        PID:5584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        100⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        101⤵
        
        PID:5620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        102⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        103⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        104⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        105⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        106⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        107⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        108⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        109⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        110⤵
        
        PID:5772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        111⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        112⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        113⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        114⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        115⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        116⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        117⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        118⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        119⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        120⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        121⤵
        
        PID:5996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        122⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        123⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        124⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        125⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        126⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        127⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        128⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        129⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        130⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        131⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        132⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        133⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        134⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        135⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        136⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        137⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        138⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        139⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        140⤵
        
        PID:6300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        141⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        142⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        143⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        144⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        145⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        146⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        147⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        148⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        149⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        150⤵
        
        PID:6460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        151⤵
        
        PID:6476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        152⤵
        
        PID:6488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        153⤵
        
        PID:6520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        154⤵
        
        PID:6536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        155⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        156⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        157⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        158⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        159⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        160⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        161⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        162⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        163⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        164⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        165⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        166⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        167⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        168⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        169⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        170⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        171⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        172⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        173⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        174⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        175⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        176⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        177⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        178⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        179⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        180⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        181⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        182⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        183⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        184⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        185⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        186⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        187⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        188⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        189⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        190⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        191⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        192⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        193⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        194⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        195⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        196⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        197⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        198⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        199⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        200⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        201⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        202⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        203⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        204⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        205⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        206⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        207⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        208⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        209⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        210⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        211⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        212⤵
        
        PID:7688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        213⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        214⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        215⤵
        
        PID:7728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        216⤵
        
        PID:7744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        217⤵
        
        PID:7760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        218⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        219⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        220⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        221⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        222⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        223⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        224⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        225⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        226⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        227⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        228⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        229⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        230⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        231⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        232⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        233⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        234⤵
        
        PID:8072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        235⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        236⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        237⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        238⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        239⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        240⤵
        
        PID:8172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        241⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        242⤵
        
        PID:2156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        243⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        244⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        245⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        246⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        247⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        248⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        249⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        250⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        251⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        252⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        253⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        254⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        255⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        256⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        257⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        258⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        259⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        260⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        261⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        262⤵
        
        PID:8396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        263⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        264⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        265⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        266⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        267⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        268⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        269⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        270⤵
        
        PID:8568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        271⤵
        
        PID:8584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        272⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        273⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        274⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        275⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        276⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        277⤵
        
        PID:8676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        278⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        279⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        280⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        281⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        282⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        283⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        284⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        285⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        286⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        287⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        288⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        289⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        290⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        291⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        292⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        293⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        294⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        295⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        296⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        297⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        298⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        299⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        300⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        301⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        302⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        303⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        304⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        305⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        306⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        307⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        308⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        309⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        310⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        311⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        312⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        313⤵
        
        PID:2952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        314⤵
        
        PID:3688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        315⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        316⤵
        
        PID:8804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        317⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        318⤵
        
        PID:9292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        319⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        320⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        321⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        322⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        323⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        324⤵
        
        PID:9408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        325⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        326⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        327⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        328⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        329⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        330⤵
        
        PID:9508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        331⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        332⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        333⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        334⤵
        
        PID:9572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        335⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        336⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        337⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        338⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        339⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        340⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        341⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        342⤵
        
        PID:9696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        343⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        344⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        345⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        346⤵
        
        PID:9764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        347⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        348⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        349⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        350⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        351⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        352⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        353⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        354⤵
        
        PID:9892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        355⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        356⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        357⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        358⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        359⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        360⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        361⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        362⤵
        
        PID:10012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        363⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        364⤵
        
        PID:10052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        365⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        366⤵
        
        PID:10084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        367⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        368⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        369⤵
        
        PID:10140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        370⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        371⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        372⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        373⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        374⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        375⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        376⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        377⤵
        
        PID:6560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        378⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        379⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        380⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        381⤵
        
        PID:3896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        382⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        383⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        384⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        385⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        386⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        387⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        388⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        389⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        390⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        391⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        392⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        393⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        394⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        395⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        396⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        397⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        398⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        399⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        400⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        401⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        402⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        403⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        404⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        405⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        406⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        407⤵
        
        PID:10672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        408⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        409⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        410⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        411⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        412⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        413⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        414⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        415⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        416⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        417⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        418⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        419⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        420⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        421⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        422⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        423⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        424⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        425⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        426⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        427⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        428⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        429⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        430⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        431⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        432⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        433⤵
        
        PID:11052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        434⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        435⤵
        
        PID:11084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        436⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        437⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        438⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        439⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        440⤵
        
        PID:11156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        441⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        442⤵
        
        PID:11184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        443⤵
        
        PID:11200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        444⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        445⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        446⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        447⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        448⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        449⤵
        
        PID:676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        450⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        451⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        452⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        453⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        454⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        455⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        456⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        457⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        458⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        459⤵
        
        PID:11412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        460⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        461⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        462⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        463⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        464⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        465⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        466⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        467⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        468⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        469⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        470⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        471⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        472⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        473⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        474⤵
        
        PID:11632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        475⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        476⤵
        
        PID:11660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        477⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        478⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        479⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        480⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        481⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        482⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        483⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        484⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        485⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        486⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        487⤵
        
        PID:11824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        488⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        489⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        490⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        491⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        492⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        493⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        494⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        495⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        496⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        497⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        498⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        499⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        500⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        501⤵
        
        PID:12032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        502⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        503⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        504⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        505⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        506⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        507⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        508⤵
        
        PID:12136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        509⤵
        
        PID:12152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        510⤵
        
        PID:12164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        511⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        512⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        513⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        514⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        515⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        516⤵
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        517⤵
        
        PID:12272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        518⤵
        
        PID:6748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        519⤵
        
        PID:2280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        520⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        521⤵
        
        PID:12308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        522⤵
        
        PID:12320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        523⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        524⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        525⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        526⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        527⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        528⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        529⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        530⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        531⤵
        
        PID:12456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        532⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        533⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        534⤵
        
        PID:12504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        535⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        536⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        537⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        538⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        539⤵
        
        PID:12580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        540⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        541⤵
        
        PID:12612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        542⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        543⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        544⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        545⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        546⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        547⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        548⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        549⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        550⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        551⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        552⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        553⤵
        
        PID:12792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        554⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        555⤵
        
        PID:12820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        556⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        557⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        558⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        559⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        560⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        561⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        562⤵
        
        PID:12924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        563⤵
        
        PID:12936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        564⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        565⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        566⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        567⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        568⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        569⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        570⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        571⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        572⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        573⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        574⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        575⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        576⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        577⤵
        
        PID:13132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        578⤵
        
        PID:13144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        579⤵
        
        PID:13160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        580⤵
        
        PID:13176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        581⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        582⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        583⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        584⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        585⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        586⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        587⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        588⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        589⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        590⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        591⤵
        
        PID:13328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        592⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        593⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        594⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        595⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        596⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        597⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        598⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        599⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        600⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        601⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        602⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        603⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        604⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        605⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        606⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        607⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        608⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        609⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        610⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        611⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        612⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        613⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        614⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        615⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        616⤵
        
        PID:13716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        617⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        618⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        619⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        620⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        621⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        622⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        623⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        624⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        625⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        626⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        627⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        628⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        629⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        630⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        631⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        632⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        633⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        634⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        635⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        636⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        637⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        638⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        639⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        640⤵
        
        PID:14076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        641⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        642⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        643⤵
        
        PID:14120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        644⤵
        
        PID:14136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        645⤵
        
        PID:14152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        646⤵
        
        PID:14164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        647⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        648⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        649⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        650⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        651⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        652⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        653⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        654⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        655⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        656⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        657⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        658⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        659⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        660⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        661⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        662⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        663⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        664⤵
        
        PID:14404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        665⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        666⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        667⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        668⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        669⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        670⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        671⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        672⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        673⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        674⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        675⤵
        
        PID:14568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        676⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        677⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        678⤵
        
        PID:14612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        679⤵
        
        PID:14628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        680⤵
        
        PID:14644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        681⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        682⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        683⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        684⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        685⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        686⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        687⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        688⤵
        
        PID:14760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        689⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        690⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        691⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        692⤵
        
        PID:14816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        693⤵
        
        PID:14832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        694⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        695⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        696⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        697⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        698⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        699⤵
        
        PID:14924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        700⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        701⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        702⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        703⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        704⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        705⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        706⤵
        
        PID:15028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        707⤵
        
        PID:15044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        708⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        709⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        710⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        711⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        712⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        713⤵
        
        PID:15132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        714⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        715⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        716⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        717⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        718⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        719⤵
        
        PID:15212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        720⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        721⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        722⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        723⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        724⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        725⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        726⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        727⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        728⤵
        
        PID:15332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        729⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        730⤵
        
        PID:14696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        731⤵
        
        PID:4352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        732⤵
        
        PID:15376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        733⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        734⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        735⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        736⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        737⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        738⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        739⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        740⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        741⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        742⤵
        
        PID:15520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        743⤵
        
        PID:15536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        744⤵
        
        PID:15552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        745⤵
        
        PID:15568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        746⤵
        
        PID:15584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        747⤵
        
        PID:15600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        748⤵
        
        PID:15612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        749⤵
        
        PID:15628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        750⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        751⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        752⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        753⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        754⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        755⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        756⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        757⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        758⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        759⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        760⤵
        
        PID:15784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        761⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        762⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        763⤵
        
        PID:15828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        764⤵
        
        PID:15844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        765⤵
        
        PID:15856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        766⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        767⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        768⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        769⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        770⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        771⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        772⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        773⤵
        
        PID:15980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        774⤵
        
        PID:15996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        775⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        776⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        777⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        778⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        779⤵
        
        PID:16072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        780⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        781⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        782⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        783⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        784⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        785⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        786⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        787⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        788⤵
        
        PID:16208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        789⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        790⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        791⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        792⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        793⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        794⤵
        
        PID:16296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        795⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        796⤵
        
        PID:16328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        797⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        798⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        799⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        800⤵
        
        PID:15220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        801⤵
        
        PID:4724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        802⤵
        
        PID:4604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        803⤵
        
        PID:16392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        804⤵
        
        PID:16408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        805⤵
        
        PID:16424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        806⤵
        
        PID:16436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        807⤵
        
        PID:16456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        808⤵
        
        PID:16472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        809⤵
        
        PID:16488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        810⤵
        
        PID:16500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        811⤵
        
        PID:16516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        812⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        813⤵
        
        PID:16548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        814⤵
        
        PID:16564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        815⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        816⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        817⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        818⤵
        
        PID:16628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        819⤵
        
        PID:16644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        820⤵
        
        PID:16660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        821⤵
        
        PID:16672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        822⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        823⤵
        
        PID:16708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        824⤵
        
        PID:16724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        825⤵
        
        PID:16740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        826⤵
        
        PID:16756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        827⤵
        
        PID:16772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        828⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        829⤵
        
        PID:16796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        830⤵
        
        PID:16812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        831⤵
        
        PID:16832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        832⤵
        
        PID:16864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        833⤵
        
        PID:16896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        834⤵
        
        PID:16912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        835⤵
        
        PID:16928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        836⤵
        
        PID:16964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        837⤵
        
        PID:16984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        838⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        839⤵
        
        PID:17016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        840⤵
        
        PID:17028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        841⤵
        
        PID:17040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        842⤵
        
        PID:17052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        843⤵
        
        PID:17072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        844⤵
        
        PID:17088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        845⤵
        
        PID:17100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        846⤵
        
        PID:17120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        847⤵
        
        PID:17132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        848⤵
        
        PID:17148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        849⤵
        
        PID:17164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        850⤵
        
        PID:17176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        851⤵
        
        PID:17188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        852⤵
        
        PID:17204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        853⤵
        
        PID:17220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        854⤵
        
        PID:17232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        855⤵
        
        PID:17252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        856⤵
        
        PID:17272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        857⤵
        
        PID:17288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        858⤵
        
        PID:17304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        859⤵
        
        PID:17320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\0f25a3cd7d33ca394c80f511e30df31c_JaffaCakes118.dll,#1
        860⤵
        
        PID:17336

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4380,i,16866810346450717340,3849854439116899380,262144 --variations-seed-version --mojo-platform-channel-handle=4648 /prefetch:8
1⤵
PID:7396

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads