005f7d87b89ceefdde0d4e72d2924fd0908051be405afecf77cf89ca3702677f

Analysis

max time kernel
41s
max time network
49s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
04/07/2024, 08:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll
Size

287KB
MD5

253e936675c2856e13b613d6ce2e9248
SHA1

e3a2f4417ba595984453911a1ad57881051874f1
SHA256

005f7d87b89ceefdde0d4e72d2924fd0908051be405afecf77cf89ca3702677f
SHA512

b089353f3f078dfed66a809958011823106efb3e157f763490d354153bd9075dd56d43ffed10e0d66cdd9c6a9865ae722378fe391bfe4bdae6eb55cc910334ee
SSDEEP

6144:VN2J/jKSvqiaf+hPyyyhTWufBH6RaJM5V4Zew+3Q:VcJ/jKSdafyPyyyZW4BH6N5pw

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3992 wrote to memory of 1224	3992	rundll32.exe	80
PID 3992 wrote to memory of 1224	3992	rundll32.exe	80
PID 3992 wrote to memory of 1224	3992	rundll32.exe	80
PID 1224 wrote to memory of 2448	1224	rundll32.exe	81
PID 1224 wrote to memory of 2448	1224	rundll32.exe	81
PID 1224 wrote to memory of 2448	1224	rundll32.exe	81
PID 2448 wrote to memory of 3912	2448	rundll32.exe	82
PID 2448 wrote to memory of 3912	2448	rundll32.exe	82
PID 2448 wrote to memory of 3912	2448	rundll32.exe	82
PID 3912 wrote to memory of 1384	3912	rundll32.exe	83
PID 3912 wrote to memory of 1384	3912	rundll32.exe	83
PID 3912 wrote to memory of 1384	3912	rundll32.exe	83
PID 1384 wrote to memory of 1636	1384	rundll32.exe	84
PID 1384 wrote to memory of 1636	1384	rundll32.exe	84
PID 1384 wrote to memory of 1636	1384	rundll32.exe	84
PID 1636 wrote to memory of 3516	1636	rundll32.exe	85
PID 1636 wrote to memory of 3516	1636	rundll32.exe	85
PID 1636 wrote to memory of 3516	1636	rundll32.exe	85
PID 3516 wrote to memory of 3284	3516	rundll32.exe	86
PID 3516 wrote to memory of 3284	3516	rundll32.exe	86
PID 3516 wrote to memory of 3284	3516	rundll32.exe	86
PID 3284 wrote to memory of 3884	3284	rundll32.exe	87
PID 3284 wrote to memory of 3884	3284	rundll32.exe	87
PID 3284 wrote to memory of 3884	3284	rundll32.exe	87
PID 3884 wrote to memory of 4268	3884	rundll32.exe	88
PID 3884 wrote to memory of 4268	3884	rundll32.exe	88
PID 3884 wrote to memory of 4268	3884	rundll32.exe	88
PID 4268 wrote to memory of 3776	4268	rundll32.exe	89
PID 4268 wrote to memory of 3776	4268	rundll32.exe	89
PID 4268 wrote to memory of 3776	4268	rundll32.exe	89
PID 3776 wrote to memory of 1840	3776	rundll32.exe	90
PID 3776 wrote to memory of 1840	3776	rundll32.exe	90
PID 3776 wrote to memory of 1840	3776	rundll32.exe	90
PID 1840 wrote to memory of 4540	1840	rundll32.exe	91
PID 1840 wrote to memory of 4540	1840	rundll32.exe	91
PID 1840 wrote to memory of 4540	1840	rundll32.exe	91
PID 4540 wrote to memory of 2180	4540	rundll32.exe	92
PID 4540 wrote to memory of 2180	4540	rundll32.exe	92
PID 4540 wrote to memory of 2180	4540	rundll32.exe	92
PID 2180 wrote to memory of 4444	2180	rundll32.exe	93
PID 2180 wrote to memory of 4444	2180	rundll32.exe	93
PID 2180 wrote to memory of 4444	2180	rundll32.exe	93
PID 4444 wrote to memory of 4532	4444	rundll32.exe	94
PID 4444 wrote to memory of 4532	4444	rundll32.exe	94
PID 4444 wrote to memory of 4532	4444	rundll32.exe	94
PID 4532 wrote to memory of 376	4532	rundll32.exe	95
PID 4532 wrote to memory of 376	4532	rundll32.exe	95
PID 4532 wrote to memory of 376	4532	rundll32.exe	95
PID 376 wrote to memory of 4276	376	rundll32.exe	96
PID 376 wrote to memory of 4276	376	rundll32.exe	96
PID 376 wrote to memory of 4276	376	rundll32.exe	96
PID 4276 wrote to memory of 512	4276	rundll32.exe	97
PID 4276 wrote to memory of 512	4276	rundll32.exe	97
PID 4276 wrote to memory of 512	4276	rundll32.exe	97
PID 512 wrote to memory of 4300	512	rundll32.exe	98
PID 512 wrote to memory of 4300	512	rundll32.exe	98
PID 512 wrote to memory of 4300	512	rundll32.exe	98
PID 4300 wrote to memory of 656	4300	rundll32.exe	99
PID 4300 wrote to memory of 656	4300	rundll32.exe	99
PID 4300 wrote to memory of 656	4300	rundll32.exe	99
PID 656 wrote to memory of 4168	656	rundll32.exe	100
PID 656 wrote to memory of 4168	656	rundll32.exe	100
PID 656 wrote to memory of 4168	656	rundll32.exe	100
PID 4168 wrote to memory of 1080	4168	rundll32.exe	101

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3992
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1224
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2448
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3912
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1384
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:3776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:4300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        23⤵
        
        PID:1080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        24⤵
        
        PID:3648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        25⤵
        
        PID:1092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        26⤵
        
        PID:2132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        27⤵
        
        PID:1176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        28⤵
        
        PID:3936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        29⤵
        
        PID:4416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        30⤵
        
        PID:1072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        31⤵
        
        PID:2808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        32⤵
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        33⤵
        
        PID:4064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        34⤵
        
        PID:756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        35⤵
        
        PID:3452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        36⤵
        
        PID:4624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        37⤵
        
        PID:1564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        38⤵
        
        PID:3932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        39⤵
        
        PID:1220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        40⤵
        
        PID:1372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        41⤵
        
        PID:2948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        42⤵
        
        PID:2564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        43⤵
        
        PID:4024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        44⤵
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        45⤵
        
        PID:2860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        46⤵
        
        PID:1820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        47⤵
        
        PID:1592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        48⤵
        
        PID:4544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        49⤵
        
        PID:4980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        50⤵
        
        PID:1816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        51⤵
        
        PID:1944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        52⤵
        
        PID:2764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        53⤵
        
        PID:2428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        54⤵
        
        PID:876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        55⤵
        
        PID:2868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        56⤵
        
        PID:4640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        57⤵
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        58⤵
        
        PID:2052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        59⤵
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        60⤵
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        61⤵
        
        PID:2896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        62⤵
        
        PID:3244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        63⤵
        
        PID:3208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        64⤵
        
        PID:3544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        65⤵
        
        PID:4736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        66⤵
        
        PID:4720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        67⤵
        
        PID:2444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        68⤵
        
        PID:2520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        69⤵
        
        PID:2036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        70⤵
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        71⤵
        
        PID:1652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        72⤵
        
        PID:848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        73⤵
        
        PID:3572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        74⤵
        
        PID:2116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        75⤵
        
        PID:1992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        76⤵
        
        PID:4612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        77⤵
        
        PID:3264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        78⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        79⤵
        
        PID:1588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        80⤵
        
        PID:1768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        81⤵
        
        PID:2688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        82⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        83⤵
        
        PID:4800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        84⤵
        
        PID:2952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        85⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        86⤵
        
        PID:2852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        87⤵
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        88⤵
        
        PID:3224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        89⤵
        
        PID:4392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        90⤵
        
        PID:5016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        91⤵
        
        PID:3476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        92⤵
        
        PID:5088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        93⤵
        
        PID:2228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        94⤵
        
        PID:3856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        95⤵
        
        PID:1288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        96⤵
        
        PID:2124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        97⤵
        
        PID:432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        98⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        99⤵
        
        PID:4372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        100⤵
        
        PID:808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        101⤵
        
        PID:2888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        102⤵
        
        PID:3248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        103⤵
        
        PID:4324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        104⤵
        
        PID:4588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        105⤵
        
        PID:4140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        106⤵
        
        PID:4952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        107⤵
        
        PID:1256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        108⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        109⤵
        
        PID:5064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        110⤵
        
        PID:884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        111⤵
        
        PID:652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        112⤵
        
        PID:4660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        113⤵
        
        PID:1180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        114⤵
        
        PID:1556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        115⤵
        
        PID:4740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        116⤵
        
        PID:1988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        117⤵
        
        PID:1060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        118⤵
        
        PID:3620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        119⤵
        
        PID:4148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        120⤵
        
        PID:4412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        121⤵
        
        PID:2224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        122⤵
        
        PID:1724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        123⤵
        
        PID:4652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        124⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        125⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        126⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        127⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        128⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        129⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        130⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        131⤵
        
        PID:5308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        132⤵
        
        PID:5324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        133⤵
        
        PID:5340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        134⤵
        
        PID:5356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        135⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        136⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        137⤵
        
        PID:5404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        138⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        139⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        140⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        141⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        142⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        143⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        144⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        145⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        146⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        147⤵
        
        PID:5564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        148⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        149⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        150⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        151⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        152⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        153⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        154⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        155⤵
        
        PID:5724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        156⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        157⤵
        
        PID:5748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        158⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        159⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        160⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        161⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        162⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        163⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        164⤵
        
        PID:5864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        165⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        166⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        167⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        168⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        169⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        170⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        171⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        172⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        173⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        174⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        175⤵
        
        PID:6032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        176⤵
        
        PID:6048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        177⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        178⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        179⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        180⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        181⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        182⤵
        
        PID:6128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        183⤵
        
        PID:4892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        184⤵
        
        PID:4824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        185⤵
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        186⤵
        
        PID:568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        187⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        188⤵
        
        PID:4872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        189⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        190⤵
        
        PID:4164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        191⤵
        
        PID:5124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        192⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        193⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        194⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        195⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        196⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        197⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        198⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        199⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        200⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        201⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        202⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        203⤵
        
        PID:6272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        204⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        205⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        206⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        207⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        208⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        209⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        210⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        211⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        212⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        213⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        214⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        215⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        216⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        217⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        218⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        219⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        220⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        221⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        222⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        223⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        224⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        225⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        226⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        227⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        228⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        229⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        230⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        231⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        232⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        233⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        234⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        235⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        236⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        237⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        238⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        239⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        240⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        241⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        242⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        243⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        244⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        245⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        246⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        247⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        248⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        249⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        250⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        251⤵
        
        PID:7024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        252⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        253⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        254⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        255⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        256⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        257⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        258⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        259⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        260⤵
        
        PID:3828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        261⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        262⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        263⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        264⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        265⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        266⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        267⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        268⤵
        
        PID:7284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        269⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        270⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        271⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        272⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        273⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        274⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        275⤵
        
        PID:7380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        276⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        277⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        278⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        279⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        280⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        281⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        282⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        283⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        284⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        285⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        286⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        287⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        288⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        289⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        290⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        291⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        292⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        293⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        294⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        295⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        296⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        297⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        298⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        299⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        300⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        301⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        302⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        303⤵
        
        PID:7868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        304⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        305⤵
        
        PID:7900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        306⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        307⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        308⤵
        
        PID:7944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        309⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        310⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        311⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        312⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        313⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        314⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        315⤵
        
        PID:8036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        316⤵
        
        PID:8052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        317⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        318⤵
        
        PID:8080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        319⤵
        
        PID:8096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        320⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        321⤵
        
        PID:8124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        322⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        323⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        324⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        325⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        326⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        327⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        328⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        329⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        330⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        331⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        332⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        333⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        334⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        335⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        336⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        337⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        338⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        339⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        340⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        341⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        342⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        343⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        344⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        345⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        346⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        347⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        348⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        349⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        350⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        351⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        352⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        353⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        354⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        355⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        356⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        357⤵
        
        PID:8644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        358⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        359⤵
        
        PID:8676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        360⤵
        
        PID:8688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        361⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        362⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        363⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        364⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        365⤵
        
        PID:8760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        366⤵
        
        PID:8772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        367⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        368⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        369⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        370⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        371⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        372⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        373⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        374⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        375⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        376⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        377⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        378⤵
        
        PID:8952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        379⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        380⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        381⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        382⤵
        
        PID:9012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        383⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        384⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        385⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        386⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        387⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        388⤵
        
        PID:9108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        389⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        390⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        391⤵
        
        PID:9152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        392⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        393⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        394⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        395⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        396⤵
        
        PID:9220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        397⤵
        
        PID:9236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        398⤵
        
        PID:9252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        399⤵
        
        PID:9268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        400⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        401⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        402⤵
        
        PID:9308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        403⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        404⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        405⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        406⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        407⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        408⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        409⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        410⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        411⤵
        
        PID:9448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        412⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        413⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        414⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        415⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        416⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        417⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        418⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        419⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        420⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        421⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        422⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        423⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        424⤵
        
        PID:9648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        425⤵
        
        PID:9664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        426⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        427⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        428⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        429⤵
        
        PID:9724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        430⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        431⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        432⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        433⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        434⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        435⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        436⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        437⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        438⤵
        
        PID:9864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        439⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        440⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        441⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        442⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        443⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        444⤵
        
        PID:9960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        445⤵
        
        PID:9976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        446⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        447⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        448⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        449⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        450⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        451⤵
        
        PID:10072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        452⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        453⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        454⤵
        
        PID:10116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        455⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        456⤵
        
        PID:10148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        457⤵
        
        PID:10160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        458⤵
        
        PID:10176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        459⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        460⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        461⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        462⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        463⤵
        
        PID:400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        464⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        465⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        466⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        467⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        468⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        469⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        470⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        471⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        472⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        473⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        474⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        475⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        476⤵
        
        PID:10436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        477⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        478⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        479⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        480⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        481⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        482⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        483⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        484⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        485⤵
        
        PID:10580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        486⤵
        
        PID:10596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        487⤵
        
        PID:10612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        488⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        489⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        490⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        491⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        492⤵
        
        PID:10684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        493⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        494⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        495⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        496⤵
        
        PID:10748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        497⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        498⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        499⤵
        
        PID:10792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        500⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        501⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        502⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        503⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        504⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        505⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        506⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        507⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        508⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        509⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        510⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        511⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        512⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        513⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        514⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        515⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        516⤵
        
        PID:11040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        517⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        518⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        519⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        520⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        521⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        522⤵
        
        PID:11132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        523⤵
        
        PID:11148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        524⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        525⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        526⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        527⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        528⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        529⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        530⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        531⤵
        
        PID:3892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        532⤵
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        533⤵
        
        PID:216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        534⤵
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        535⤵
        
        PID:1300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        536⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        537⤵
        
        PID:11284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        538⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        539⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        540⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        541⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        542⤵
        
        PID:11364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        543⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        544⤵
        
        PID:11400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        545⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        546⤵
        
        PID:11432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        547⤵
        
        PID:11448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        548⤵
        
        PID:11460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        549⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        550⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        551⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        552⤵
        
        PID:11520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        553⤵
        
        PID:11536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        554⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        555⤵
        
        PID:11564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        556⤵
        
        PID:11580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        557⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        558⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        559⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        560⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        561⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        562⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        563⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        564⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        565⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        566⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        567⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        568⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        569⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        570⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        571⤵
        
        PID:11808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        572⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        573⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        574⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        575⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        576⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        577⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        578⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        579⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        580⤵
        
        PID:11948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        581⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        582⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        583⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        584⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        585⤵
        
        PID:12024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        586⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        587⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        588⤵
        
        PID:12072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        589⤵
        
        PID:12092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        590⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        591⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        592⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        593⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        594⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        595⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        596⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        597⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        598⤵
        
        PID:12236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        599⤵
        
        PID:12248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        600⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        601⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        602⤵
        
        PID:4208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        603⤵
        
        PID:3696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        604⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        605⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        606⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        607⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        608⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        609⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        610⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        611⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        612⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        613⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        614⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        615⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        616⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        617⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        618⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        619⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        620⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        621⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        622⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        623⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        624⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        625⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        626⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        627⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        628⤵
        
        PID:12660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        629⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        630⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        631⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        632⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        633⤵
        
        PID:12732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        634⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        635⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        636⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        637⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        638⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        639⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        640⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        641⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        642⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        643⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        644⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        645⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        646⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        647⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        648⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        649⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        650⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        651⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        652⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        653⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        654⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        655⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        656⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        657⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        658⤵
        
        PID:13116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        659⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        660⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        661⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        662⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        663⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        664⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        665⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        666⤵
        
        PID:13248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        667⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        668⤵
        
        PID:13280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        669⤵
        
        PID:13296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        670⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        671⤵
        
        PID:3732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        672⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        673⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        674⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        675⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        676⤵
        
        PID:13376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        677⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        678⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        679⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        680⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        681⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        682⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        683⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        684⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        685⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        686⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        687⤵
        
        PID:13540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        688⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        689⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        690⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        691⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        692⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        693⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        694⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        695⤵
        
        PID:13660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        696⤵
        
        PID:13676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        697⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        698⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        699⤵
        
        PID:13716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        700⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        701⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        702⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        703⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        704⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        705⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        706⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        707⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        708⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        709⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        710⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        711⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        712⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        713⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        714⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        715⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        716⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        717⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        718⤵
        
        PID:13996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        719⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        720⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        721⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        722⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        723⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        724⤵
        
        PID:14084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        725⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        726⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        727⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        728⤵
        
        PID:14152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        729⤵
        
        PID:14168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        730⤵
        
        PID:14184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        731⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        732⤵
        
        PID:14212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        733⤵
        
        PID:14224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        734⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        735⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        736⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        737⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        738⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        739⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        740⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        741⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        742⤵
        
        PID:14356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        743⤵
        
        PID:14372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        744⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        745⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        746⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        747⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        748⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        749⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        750⤵
        
        PID:14468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        751⤵
        
        PID:14484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        752⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        753⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        754⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        755⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        756⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        757⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        758⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        759⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        760⤵
        
        PID:14624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        761⤵
        
        PID:14640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        762⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        763⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        764⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        765⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        766⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        767⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        768⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        769⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        770⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        771⤵
        
        PID:14804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        772⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        773⤵
        
        PID:14836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        774⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        775⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        776⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        777⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        778⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        779⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        780⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        781⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        782⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        783⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        784⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        785⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        786⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        787⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        788⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        789⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        790⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        791⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        792⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        793⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        794⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        795⤵
        
        PID:15172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        796⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        797⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        798⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        799⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        800⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        801⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        802⤵
        
        PID:15276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        803⤵
        
        PID:15288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        804⤵
        
        PID:15304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        805⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        806⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        807⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        808⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        809⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        810⤵
        
        PID:15388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        811⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        812⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        813⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        814⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        815⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        816⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        817⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        818⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        819⤵
        
        PID:15532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        820⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        821⤵
        
        PID:15564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        822⤵
        
        PID:15580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        823⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        824⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        825⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        826⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        827⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        828⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        829⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        830⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        831⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        832⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        833⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        834⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        835⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        836⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        837⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        838⤵
        
        PID:15816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        839⤵
        
        PID:15832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        840⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        841⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        842⤵
        
        PID:15880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        843⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        844⤵
        
        PID:15912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        845⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        846⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        847⤵
        
        PID:15956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        848⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        849⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        850⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        851⤵
        
        PID:16080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        852⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        853⤵
        
        PID:16176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        854⤵
        
        PID:16188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        855⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        856⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        857⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        858⤵
        
        PID:16240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        859⤵
        
        PID:16252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        860⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        861⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        862⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        863⤵
        
        PID:16300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        864⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        865⤵
        
        PID:16328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        866⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        867⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        868⤵
        
        PID:16364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        869⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        870⤵
        
        PID:15968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        871⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        872⤵
        
        PID:16048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        873⤵
        
        PID:16064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        874⤵
        
        PID:16100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        875⤵
        
        PID:16116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        876⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        877⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        878⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        879⤵
        
        PID:16400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        880⤵
        
        PID:16416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        881⤵
        
        PID:16428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        882⤵
        
        PID:16440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        883⤵
        
        PID:16452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        884⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        885⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        886⤵
        
        PID:16488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        887⤵
        
        PID:16500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        888⤵
        
        PID:16512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        889⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        890⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        891⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        892⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        893⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        894⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        895⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\253e936675c2856e13b613d6ce2e9248_JaffaCakes118.dll,#1
        896⤵
        
        PID:16632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/376-56-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/376-22-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/512-24-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/512-58-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/656-25-0x00000000008C0000-0x000000000098E000-memory.dmp

Filesize
824KB

Download
memory/656-67-0x00000000008C0000-0x000000000098E000-memory.dmp

Filesize
824KB

Download
memory/848-88-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1080-27-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1080-69-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1092-29-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1092-71-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1176-60-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1176-31-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1224-0-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1224-149-0x00000000750B0000-0x0000000075334000-memory.dmp

Filesize
2.5MB

Download
memory/1224-10-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1372-75-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1372-35-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1384-16-0x00000000021C0000-0x000000000228E000-memory.dmp

Filesize
824KB

Download
memory/1384-4-0x00000000021C0000-0x000000000228E000-memory.dmp

Filesize
824KB

Download
memory/1384-3-0x00000000021C0000-0x000000000228E000-memory.dmp

Filesize
824KB

Download
memory/1384-18-0x00000000021C0000-0x000000000228E000-memory.dmp

Filesize
824KB

Download
memory/1520-82-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1520-45-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1564-34-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1564-74-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1636-5-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1636-43-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1652-86-0x0000000000A90000-0x0000000000B5E000-memory.dmp

Filesize
824KB

Download
memory/1652-87-0x0000000000A90000-0x0000000000B5E000-memory.dmp

Filesize
824KB

Download
memory/1820-41-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1840-50-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1840-11-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/1992-92-0x0000000000850000-0x000000000091E000-memory.dmp

Filesize
824KB

Download
memory/1992-91-0x0000000000850000-0x000000000091E000-memory.dmp

Filesize
824KB

Download
memory/2036-83-0x0000000000690000-0x000000000075E000-memory.dmp

Filesize
824KB

Download
memory/2036-84-0x0000000000690000-0x000000000075E000-memory.dmp

Filesize
824KB

Download
memory/2052-44-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2116-90-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2132-59-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2132-30-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2180-55-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2180-17-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2444-64-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2448-1-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2448-13-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2448-150-0x00000000750B0000-0x0000000075334000-memory.dmp

Filesize
2.5MB

Download
memory/2564-77-0x0000000001F80000-0x000000000204E000-memory.dmp

Filesize
824KB

Download
memory/2564-37-0x0000000001F80000-0x000000000204E000-memory.dmp

Filesize
824KB

Download
memory/2564-62-0x0000000001F80000-0x000000000204E000-memory.dmp

Filesize
824KB

Download
memory/2808-72-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2860-80-0x0000000001FD0000-0x000000000209E000-memory.dmp

Filesize
824KB

Download
memory/2860-79-0x0000000001FD0000-0x000000000209E000-memory.dmp

Filesize
824KB

Download
memory/2860-39-0x0000000001FD0000-0x000000000209E000-memory.dmp

Filesize
824KB

Download
memory/2860-40-0x0000000001FD0000-0x000000000209E000-memory.dmp

Filesize
824KB

Download
memory/2948-36-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/2948-76-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3060-63-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3060-38-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3264-95-0x0000000002140000-0x000000000220E000-memory.dmp

Filesize
824KB

Download
memory/3284-47-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3284-7-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3516-46-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3516-6-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3544-52-0x0000000001F00000-0x0000000001FCE000-memory.dmp

Filesize
824KB

Download
memory/3572-89-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3648-28-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3648-70-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3680-33-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3680-61-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3776-51-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3884-8-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3884-48-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3912-2-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3912-14-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/3936-32-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4024-78-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4028-85-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4168-26-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4168-68-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4268-49-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4268-9-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4276-23-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4276-57-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4444-19-0x0000000000690000-0x000000000075E000-memory.dmp

Filesize
824KB

Download
memory/4444-65-0x0000000000690000-0x000000000075E000-memory.dmp

Filesize
824KB

Download
memory/4532-21-0x00000000005A0000-0x000000000066E000-memory.dmp

Filesize
824KB

Download
memory/4532-20-0x00000000005A0000-0x000000000066E000-memory.dmp

Filesize
824KB

Download
memory/4532-66-0x00000000005A0000-0x000000000066E000-memory.dmp

Filesize
824KB

Download
memory/4540-15-0x0000000002170000-0x000000000223E000-memory.dmp

Filesize
824KB

Download
memory/4540-12-0x0000000002170000-0x000000000223E000-memory.dmp

Filesize
824KB

Download
memory/4540-53-0x0000000002170000-0x000000000223E000-memory.dmp

Filesize
824KB

Download
memory/4540-54-0x0000000002170000-0x000000000223E000-memory.dmp

Filesize
824KB

Download
memory/4612-94-0x0000000001F60000-0x000000000202E000-memory.dmp

Filesize
824KB

Download
memory/4612-93-0x0000000001F60000-0x000000000202E000-memory.dmp

Filesize
824KB

Download
memory/4624-73-0x00000000022B0000-0x000000000237E000-memory.dmp

Filesize
824KB

Download
memory/4980-81-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download
memory/4980-42-0x0000000000400000-0x00000000004CE000-memory.dmp

Filesize
824KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads