9291047ab33eefab710c8ff4489cfea00afb055ffc6568a546942c91349dd0fa

Analysis

max time kernel
41s
max time network
49s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
03/07/2024, 14:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll
Size

140KB
MD5

22ab42d5a0742c35e6bfd46df7745d1f
SHA1

a00074db47c0ff241ca2536729b7f00802bfc81f
SHA256

9291047ab33eefab710c8ff4489cfea00afb055ffc6568a546942c91349dd0fa
SHA512

be410f07e2d769cec80023a5ea73c37c5343dc64fa8bff04b1c2bb214245145cf7d4d531897fbdf5ccaf90d97ff4c05f69fd4516317811598c952c0fefdd8521
SSDEEP

1536:lY5i6+mu9ULhhaiqOnjWAp+2TKarnYAwTBJ/tILtFnCKiUKL0lomKdvqS0tFr/40:lZmu9K33WSwdJ/tILtAPrL+oxdvqjD4

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4480 wrote to memory of 2296	4480	rundll32.exe	81
PID 4480 wrote to memory of 2296	4480	rundll32.exe	81
PID 4480 wrote to memory of 2296	4480	rundll32.exe	81
PID 2296 wrote to memory of 4204	2296	rundll32.exe	82
PID 2296 wrote to memory of 4204	2296	rundll32.exe	82
PID 2296 wrote to memory of 4204	2296	rundll32.exe	82
PID 4204 wrote to memory of 3916	4204	rundll32.exe	83
PID 4204 wrote to memory of 3916	4204	rundll32.exe	83
PID 4204 wrote to memory of 3916	4204	rundll32.exe	83
PID 3916 wrote to memory of 2944	3916	rundll32.exe	84
PID 3916 wrote to memory of 2944	3916	rundll32.exe	84
PID 3916 wrote to memory of 2944	3916	rundll32.exe	84
PID 2944 wrote to memory of 2328	2944	rundll32.exe	85
PID 2944 wrote to memory of 2328	2944	rundll32.exe	85
PID 2944 wrote to memory of 2328	2944	rundll32.exe	85
PID 2328 wrote to memory of 4000	2328	rundll32.exe	86
PID 2328 wrote to memory of 4000	2328	rundll32.exe	86
PID 2328 wrote to memory of 4000	2328	rundll32.exe	86
PID 4000 wrote to memory of 3496	4000	rundll32.exe	87
PID 4000 wrote to memory of 3496	4000	rundll32.exe	87
PID 4000 wrote to memory of 3496	4000	rundll32.exe	87
PID 3496 wrote to memory of 2276	3496	rundll32.exe	88
PID 3496 wrote to memory of 2276	3496	rundll32.exe	88
PID 3496 wrote to memory of 2276	3496	rundll32.exe	88
PID 2276 wrote to memory of 1692	2276	rundll32.exe	89
PID 2276 wrote to memory of 1692	2276	rundll32.exe	89
PID 2276 wrote to memory of 1692	2276	rundll32.exe	89
PID 1692 wrote to memory of 1008	1692	rundll32.exe	90
PID 1692 wrote to memory of 1008	1692	rundll32.exe	90
PID 1692 wrote to memory of 1008	1692	rundll32.exe	90
PID 1008 wrote to memory of 2712	1008	rundll32.exe	91
PID 1008 wrote to memory of 2712	1008	rundll32.exe	91
PID 1008 wrote to memory of 2712	1008	rundll32.exe	91
PID 2712 wrote to memory of 100	2712	rundll32.exe	92
PID 2712 wrote to memory of 100	2712	rundll32.exe	92
PID 2712 wrote to memory of 100	2712	rundll32.exe	92
PID 100 wrote to memory of 2020	100	rundll32.exe	93
PID 100 wrote to memory of 2020	100	rundll32.exe	93
PID 100 wrote to memory of 2020	100	rundll32.exe	93
PID 2020 wrote to memory of 516	2020	rundll32.exe	94
PID 2020 wrote to memory of 516	2020	rundll32.exe	94
PID 2020 wrote to memory of 516	2020	rundll32.exe	94
PID 516 wrote to memory of 3184	516	rundll32.exe	95
PID 516 wrote to memory of 3184	516	rundll32.exe	95
PID 516 wrote to memory of 3184	516	rundll32.exe	95
PID 3184 wrote to memory of 5100	3184	rundll32.exe	96
PID 3184 wrote to memory of 5100	3184	rundll32.exe	96
PID 3184 wrote to memory of 5100	3184	rundll32.exe	96
PID 5100 wrote to memory of 4768	5100	rundll32.exe	97
PID 5100 wrote to memory of 4768	5100	rundll32.exe	97
PID 5100 wrote to memory of 4768	5100	rundll32.exe	97
PID 4768 wrote to memory of 1892	4768	rundll32.exe	98
PID 4768 wrote to memory of 1892	4768	rundll32.exe	98
PID 4768 wrote to memory of 1892	4768	rundll32.exe	98
PID 1892 wrote to memory of 744	1892	rundll32.exe	99
PID 1892 wrote to memory of 744	1892	rundll32.exe	99
PID 1892 wrote to memory of 744	1892	rundll32.exe	99
PID 744 wrote to memory of 2544	744	rundll32.exe	100
PID 744 wrote to memory of 2544	744	rundll32.exe	100
PID 744 wrote to memory of 2544	744	rundll32.exe	100
PID 2544 wrote to memory of 4820	2544	rundll32.exe	101
PID 2544 wrote to memory of 4820	2544	rundll32.exe	101
PID 2544 wrote to memory of 4820	2544	rundll32.exe	101
PID 4820 wrote to memory of 4528	4820	rundll32.exe	102

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4480
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:2296
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4204
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3916
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2944
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:2276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:1692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:1008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:2712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:5100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        23⤵
        
        PID:4528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        24⤵
        
        PID:2484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        25⤵
        
        PID:2656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        26⤵
        
        PID:3160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        27⤵
        
        PID:1960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        28⤵
        
        PID:3844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        29⤵
        
        PID:2780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        30⤵
        
        PID:3068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        31⤵
        
        PID:4124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        32⤵
        
        PID:3732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        33⤵
        
        PID:4580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        34⤵
        
        PID:2120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        35⤵
        
        PID:3152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        36⤵
        
        PID:3244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        37⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        38⤵
        
        PID:1772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        39⤵
        
        PID:5020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        40⤵
        
        PID:2804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        41⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        42⤵
        
        PID:1964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        43⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        44⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        45⤵
        
        PID:4232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        46⤵
        
        PID:1056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        47⤵
        
        PID:1884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        48⤵
        
        PID:872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        49⤵
        
        PID:4344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        50⤵
        
        PID:3644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        51⤵
        
        PID:2412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        52⤵
        
        PID:1740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        53⤵
        
        PID:2184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        54⤵
        
        PID:2140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        55⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        56⤵
        
        PID:1212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        57⤵
        
        PID:2540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        58⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        59⤵
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        60⤵
        
        PID:3744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        61⤵
        
        PID:4064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        62⤵
        
        PID:448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        63⤵
        
        PID:1868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        64⤵
        
        PID:4156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        65⤵
        
        PID:4932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        66⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        67⤵
        
        PID:2784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        68⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        69⤵
        
        PID:2348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        70⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        71⤵
        
        PID:3704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        72⤵
        
        PID:712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        73⤵
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        74⤵
        
        PID:2116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        75⤵
        
        PID:4776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        76⤵
        
        PID:916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        77⤵
        
        PID:4732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        78⤵
        
        PID:4780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        79⤵
        
        PID:2984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        80⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        81⤵
        
        PID:4948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        82⤵
        
        PID:400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        83⤵
        
        PID:1376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        84⤵
        
        PID:1404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        85⤵
        
        PID:708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        86⤵
        
        PID:3728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        87⤵
        
        PID:3424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        88⤵
        
        PID:2956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        89⤵
        
        PID:2652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        90⤵
        
        PID:4432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        91⤵
        
        PID:2772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        92⤵
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        93⤵
        
        PID:2200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        94⤵
        
        PID:1856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        95⤵
        
        PID:2488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        96⤵
        
        PID:2372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        97⤵
        
        PID:1420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        98⤵
        
        PID:1264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        99⤵
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        100⤵
        
        PID:4012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        101⤵
        
        PID:4632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        102⤵
        
        PID:4748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        103⤵
        
        PID:1104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        104⤵
        
        PID:3064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        105⤵
        
        PID:3180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        106⤵
        
        PID:1848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        107⤵
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        108⤵
        
        PID:2896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        109⤵
        
        PID:1304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        110⤵
        
        PID:2548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        111⤵
        
        PID:4476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        112⤵
        
        PID:4936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        113⤵
        
        PID:2676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        114⤵
        
        PID:716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        115⤵
        
        PID:4972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        116⤵
        
        PID:1976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        117⤵
        
        PID:1916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        118⤵
        
        PID:3856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        119⤵
        
        PID:544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        120⤵
        
        PID:1020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        121⤵
        
        PID:4728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        122⤵
        
        PID:2264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        123⤵
        
        PID:1680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        124⤵
        
        PID:1788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        125⤵
        
        PID:1992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        126⤵
        
        PID:1644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        127⤵
        
        PID:3700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        128⤵
        
        PID:2988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        129⤵
        
        PID:804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        130⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        131⤵
        
        PID:932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        132⤵
        
        PID:2496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        133⤵
        
        PID:1924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        134⤵
        
        PID:4164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        135⤵
        
        PID:3536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        136⤵
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        137⤵
        
        PID:1696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        138⤵
        
        PID:4504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        139⤵
        
        PID:644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        140⤵
        
        PID:2108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        141⤵
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        142⤵
        
        PID:3272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        143⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        144⤵
        
        PID:5140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        145⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        146⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        147⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        148⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        149⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        150⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        151⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        152⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        153⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        154⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        155⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        156⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        157⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        158⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        159⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        160⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        161⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        162⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        163⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        164⤵
        
        PID:5428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        165⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        166⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        167⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        168⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        169⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        170⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        171⤵
        
        PID:5524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        172⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        173⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        174⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        175⤵
        
        PID:5584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        176⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        177⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        178⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        179⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        180⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        181⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        182⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        183⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        184⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        185⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        186⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        187⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        188⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        189⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        190⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        191⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        192⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        193⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        194⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        195⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        196⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        197⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        198⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        199⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        200⤵
        
        PID:5984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        201⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        202⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        203⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        204⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        205⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        206⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        207⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        208⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        209⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        210⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        211⤵
        
        PID:6152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        212⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        213⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        214⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        215⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        216⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        217⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        218⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        219⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        220⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        221⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        222⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        223⤵
        
        PID:6344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        224⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        225⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        226⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        227⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        228⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        229⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        230⤵
        
        PID:6448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        231⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        232⤵
        
        PID:6480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        233⤵
        
        PID:6496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        234⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        235⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        236⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        237⤵
        
        PID:6556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        238⤵
        
        PID:6572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        239⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        240⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        241⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        242⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        243⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        244⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        245⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        246⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        247⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        248⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        249⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        250⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        251⤵
        
        PID:6764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        252⤵
        
        PID:6780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        253⤵
        
        PID:6796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        254⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        255⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        256⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        257⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        258⤵
        
        PID:6872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        259⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        260⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        261⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        262⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        263⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        264⤵
        
        PID:6956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        265⤵
        
        PID:6972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        266⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        267⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        268⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        269⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        270⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        271⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        272⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        273⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        274⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        275⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        276⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        277⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        278⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        279⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        280⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        281⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        282⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        283⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        284⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        285⤵
        
        PID:7268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        286⤵
        
        PID:7280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        287⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        288⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        289⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        290⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        291⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        292⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        293⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        294⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        295⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        296⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        297⤵
        
        PID:7448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        298⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        299⤵
        
        PID:7480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        300⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        301⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        302⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        303⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        304⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        305⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        306⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        307⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        308⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        309⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        310⤵
        
        PID:7644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        311⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        312⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        313⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        314⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        315⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        316⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        317⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        318⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        319⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        320⤵
        
        PID:7812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        321⤵
        
        PID:7828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        322⤵
        
        PID:7844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        323⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        324⤵
        
        PID:7876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        325⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        326⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        327⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        328⤵
        
        PID:7936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        329⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        330⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        331⤵
        
        PID:7976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        332⤵
        
        PID:7988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        333⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        334⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        335⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        336⤵
        
        PID:8040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        337⤵
        
        PID:8056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        338⤵
        
        PID:8068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        339⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        340⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        341⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        342⤵
        
        PID:8116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        343⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        344⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        345⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        346⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        347⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        348⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        349⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        350⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        351⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        352⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        353⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        354⤵
        
        PID:8288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        355⤵
        
        PID:8300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        356⤵
        
        PID:8316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        357⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        358⤵
        
        PID:8348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        359⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        360⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        361⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        362⤵
        
        PID:8408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        363⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        364⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        365⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        366⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        367⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        368⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        369⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        370⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        371⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        372⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        373⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        374⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        375⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        376⤵
        
        PID:8656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        377⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        378⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        379⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        380⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        381⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        382⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        383⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        384⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        385⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        386⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        387⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        388⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        389⤵
        
        PID:8836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        390⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        391⤵
        
        PID:8868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        392⤵
        
        PID:8880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        393⤵
        
        PID:8892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        394⤵
        
        PID:8908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        395⤵
        
        PID:8924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        396⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        397⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        398⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        399⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        400⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        401⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        402⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        403⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        404⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        405⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        406⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        407⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        408⤵
        
        PID:9100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        409⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        410⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        411⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        412⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        413⤵
        
        PID:9164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        414⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        415⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        416⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        417⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        418⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        419⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        420⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        421⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        422⤵
        
        PID:9304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        423⤵
        
        PID:9320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        424⤵
        
        PID:9336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        425⤵
        
        PID:9352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        426⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        427⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        428⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        429⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        430⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        431⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        432⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        433⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        434⤵
        
        PID:9496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        435⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        436⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        437⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        438⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        439⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        440⤵
        
        PID:9588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        441⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        442⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        443⤵
        
        PID:9636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        444⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        445⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        446⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        447⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        448⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        449⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        450⤵
        
        PID:9748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        451⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        452⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        453⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        454⤵
        
        PID:9808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        455⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        456⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        457⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        458⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        459⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        460⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        461⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        462⤵
        
        PID:9936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        463⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        464⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        465⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        466⤵
        
        PID:10000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        467⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        468⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        469⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        470⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        471⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        472⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        473⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        474⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        475⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        476⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        477⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        478⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        479⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        480⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        481⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        482⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        483⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        484⤵
        
        PID:10264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        485⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        486⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        487⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        488⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        489⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        490⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        491⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        492⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        493⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        494⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        495⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        496⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        497⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        498⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        499⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        500⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        501⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        502⤵
        
        PID:10528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        503⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        504⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        505⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        506⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        507⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        508⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        509⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        510⤵
        
        PID:10656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        511⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        512⤵
        
        PID:10684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        513⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        514⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        515⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        516⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        517⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        518⤵
        
        PID:10780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        519⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        520⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        521⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        522⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        523⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        524⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        525⤵
        
        PID:10876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        526⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        527⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        528⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        529⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        530⤵
        
        PID:10948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        531⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        532⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        533⤵
        
        PID:10988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        534⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        535⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        536⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        537⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        538⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        539⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        540⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        541⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        542⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        543⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        544⤵
        
        PID:11144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        545⤵
        
        PID:11160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        546⤵
        
        PID:11176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        547⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        548⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        549⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        550⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        551⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        552⤵
        
        PID:4176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        553⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        554⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        555⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        556⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        557⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        558⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        559⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        560⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        561⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        562⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        563⤵
        
        PID:11412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        564⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        565⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        566⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        567⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        568⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        569⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        570⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        571⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        572⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        573⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        574⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        575⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        576⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        577⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        578⤵
        
        PID:11616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        579⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        580⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        581⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        582⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        583⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        584⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        585⤵
        
        PID:11708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        586⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        587⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        588⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        589⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        590⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        591⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        592⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        593⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        594⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        595⤵
        
        PID:11848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        596⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        597⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        598⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        599⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        600⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        601⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        602⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        603⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        604⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        605⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        606⤵
        
        PID:11996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        607⤵
        
        PID:12012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        608⤵
        
        PID:12024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        609⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        610⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        611⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        612⤵
        
        PID:12096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        613⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        614⤵
        
        PID:12120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        615⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        616⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        617⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        618⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        619⤵
        
        PID:12184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        620⤵
        
        PID:12200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        621⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        622⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        623⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        624⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        625⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        626⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        627⤵
        
        PID:3664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        628⤵
        
        PID:4908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        629⤵
        
        PID:4916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        630⤵
        
        PID:12304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        631⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        632⤵
        
        PID:12332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        633⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        634⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        635⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        636⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        637⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        638⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        639⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        640⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        641⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        642⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        643⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        644⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        645⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        646⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        647⤵
        
        PID:12568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        648⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        649⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        650⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        651⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        652⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        653⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        654⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        655⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        656⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        657⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        658⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        659⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        660⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        661⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        662⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        663⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        664⤵
        
        PID:12828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        665⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        666⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        667⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        668⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        669⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        670⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        671⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        672⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        673⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        674⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        675⤵
        
        PID:12992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        676⤵
        
        PID:13004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        677⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        678⤵
        
        PID:13028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        679⤵
        
        PID:13044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        680⤵
        
        PID:13056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        681⤵
        
        PID:13072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        682⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        683⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        684⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        685⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        686⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        687⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        688⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        689⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        690⤵
        
        PID:13212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        691⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        692⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        693⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        694⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        695⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        696⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        697⤵
        
        PID:3592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        698⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        699⤵
        
        PID:4100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        700⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        701⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        702⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        703⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        704⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        705⤵
        
        PID:13384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        706⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        707⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        708⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        709⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        710⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        711⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        712⤵
        
        PID:13476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        713⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        714⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        715⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        716⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        717⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        718⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        719⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        720⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        721⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        722⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        723⤵
        
        PID:13628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        724⤵
        
        PID:13644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        725⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        726⤵
        
        PID:13672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        727⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        728⤵
        
        PID:13704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        729⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        730⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        731⤵
        
        PID:13748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        732⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        733⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        734⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        735⤵
        
        PID:13808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        736⤵
        
        PID:13820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        737⤵
        
        PID:13832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        738⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        739⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        740⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        741⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        742⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        743⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        744⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        745⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        746⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        747⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        748⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        749⤵
        
        PID:14000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        750⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        751⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        752⤵
        
        PID:14048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        753⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        754⤵
        
        PID:14076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        755⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        756⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        757⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        758⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        759⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        760⤵
        
        PID:14164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        761⤵
        
        PID:14180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        762⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        763⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        764⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        765⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        766⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        767⤵
        
        PID:14260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        768⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        769⤵
        
        PID:14292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        770⤵
        
        PID:14304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        771⤵
        
        PID:14320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        772⤵
        
        PID:14332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        773⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        774⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        775⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        776⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        777⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        778⤵
        
        PID:14416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        779⤵
        
        PID:14432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        780⤵
        
        PID:14448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        781⤵
        
        PID:14464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        782⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        783⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        784⤵
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        785⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        786⤵
        
        PID:14532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        787⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        788⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        789⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        790⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        791⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        792⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        793⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        794⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        795⤵
        
        PID:14668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        796⤵
        
        PID:14684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        797⤵
        
        PID:14700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        798⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        799⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        800⤵
        
        PID:14744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        801⤵
        
        PID:14756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        802⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        803⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        804⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        805⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        806⤵
        
        PID:14832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        807⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        808⤵
        
        PID:14864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        809⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        810⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        811⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        812⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        813⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        814⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        815⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        816⤵
        
        PID:14988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        817⤵
        
        PID:15004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        818⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        819⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        820⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        821⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        822⤵
        
        PID:15076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        823⤵
        
        PID:15092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        824⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        825⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        826⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        827⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        828⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        829⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        830⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        831⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        832⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        833⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        834⤵
        
        PID:15256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        835⤵
        
        PID:15268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        836⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        837⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        838⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        839⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        840⤵
        
        PID:15332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        841⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        842⤵
        
        PID:15364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        843⤵
        
        PID:15376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        844⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        845⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        846⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        847⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        848⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        849⤵
        
        PID:15464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        850⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        851⤵
        
        PID:15488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        852⤵
        
        PID:15504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        853⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        854⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        855⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        856⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        857⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        858⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        859⤵
        
        PID:15600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        860⤵
        
        PID:15616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        861⤵
        
        PID:15628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        862⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        863⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        864⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        865⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        866⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        867⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        868⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        869⤵
        
        PID:15748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        870⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        871⤵
        
        PID:15780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        872⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        873⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        874⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        875⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        876⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        877⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        878⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        879⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        880⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        881⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        882⤵
        
        PID:15948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        883⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        884⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        885⤵
        
        PID:15984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        886⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        887⤵
        
        PID:16016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        888⤵
        
        PID:16032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        889⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        890⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        891⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        892⤵
        
        PID:16080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        893⤵
        
        PID:16096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        894⤵
        
        PID:16112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        895⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        896⤵
        
        PID:16140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        897⤵
        
        PID:16160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        898⤵
        
        PID:16176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        899⤵
        
        PID:16192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        900⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        901⤵
        
        PID:16220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\22ab42d5a0742c35e6bfd46df7745d1f_JaffaCakes118.dll,#1
        902⤵
        
        PID:16232

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2296-0-0x0000000075470000-0x00000000756F4000-memory.dmp

Filesize
2.5MB

Download
memory/2656-23-0x0000000075470000-0x00000000756F4000-memory.dmp

Filesize
2.5MB

Download
memory/3184-14-0x0000000075470000-0x00000000756F4000-memory.dmp

Filesize
2.5MB

Download
memory/16232-25-0x0000000075470000-0x00000000756F4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads