d4149b8870800531f598a30a097e1c922236277f7c315ba758d886796a08455f

Analysis

max time kernel
121s
max time network
123s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
11/07/2024, 04:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll
Size

98KB
MD5

37a52ec622d32ea91d0cf0db4088da8c
SHA1

1dbdd403809d6eb5cfe299d6ee810b46948693b1
SHA256

d4149b8870800531f598a30a097e1c922236277f7c315ba758d886796a08455f
SHA512

c98e0e71299fd50fb8235f1ddb3d3fded9557fd7d91f509c4b359cdfaffcf9f77e3532d23f7c675e376ae8d77cfd1a6de04a4f96162cdb73a26c0ef1508366e2
SSDEEP

3072:nC+llOcwmiya/eSm/Igq+UDTVs74lcTisclV73e/:CkpwiamMltw4SFuVze/

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3648 wrote to memory of 3480	3648	rundll32.exe	83
PID 3648 wrote to memory of 3480	3648	rundll32.exe	83
PID 3648 wrote to memory of 3480	3648	rundll32.exe	83
PID 3480 wrote to memory of 3740	3480	rundll32.exe	84
PID 3480 wrote to memory of 3740	3480	rundll32.exe	84
PID 3480 wrote to memory of 3740	3480	rundll32.exe	84
PID 3740 wrote to memory of 4428	3740	rundll32.exe	85
PID 3740 wrote to memory of 4428	3740	rundll32.exe	85
PID 3740 wrote to memory of 4428	3740	rundll32.exe	85
PID 4428 wrote to memory of 3932	4428	rundll32.exe	86
PID 4428 wrote to memory of 3932	4428	rundll32.exe	86
PID 4428 wrote to memory of 3932	4428	rundll32.exe	86
PID 3932 wrote to memory of 1348	3932	rundll32.exe	87
PID 3932 wrote to memory of 1348	3932	rundll32.exe	87
PID 3932 wrote to memory of 1348	3932	rundll32.exe	87
PID 1348 wrote to memory of 3716	1348	rundll32.exe	88
PID 1348 wrote to memory of 3716	1348	rundll32.exe	88
PID 1348 wrote to memory of 3716	1348	rundll32.exe	88
PID 3716 wrote to memory of 4680	3716	rundll32.exe	89
PID 3716 wrote to memory of 4680	3716	rundll32.exe	89
PID 3716 wrote to memory of 4680	3716	rundll32.exe	89
PID 4680 wrote to memory of 3696	4680	rundll32.exe	90
PID 4680 wrote to memory of 3696	4680	rundll32.exe	90
PID 4680 wrote to memory of 3696	4680	rundll32.exe	90
PID 3696 wrote to memory of 4944	3696	rundll32.exe	91
PID 3696 wrote to memory of 4944	3696	rundll32.exe	91
PID 3696 wrote to memory of 4944	3696	rundll32.exe	91
PID 4944 wrote to memory of 2672	4944	rundll32.exe	92
PID 4944 wrote to memory of 2672	4944	rundll32.exe	92
PID 4944 wrote to memory of 2672	4944	rundll32.exe	92
PID 2672 wrote to memory of 1328	2672	rundll32.exe	93
PID 2672 wrote to memory of 1328	2672	rundll32.exe	93
PID 2672 wrote to memory of 1328	2672	rundll32.exe	93
PID 1328 wrote to memory of 976	1328	rundll32.exe	95
PID 1328 wrote to memory of 976	1328	rundll32.exe	95
PID 1328 wrote to memory of 976	1328	rundll32.exe	95
PID 976 wrote to memory of 3252	976	rundll32.exe	96
PID 976 wrote to memory of 3252	976	rundll32.exe	96
PID 976 wrote to memory of 3252	976	rundll32.exe	96
PID 3252 wrote to memory of 4696	3252	rundll32.exe	97
PID 3252 wrote to memory of 4696	3252	rundll32.exe	97
PID 3252 wrote to memory of 4696	3252	rundll32.exe	97
PID 4696 wrote to memory of 420	4696	rundll32.exe	98
PID 4696 wrote to memory of 420	4696	rundll32.exe	98
PID 4696 wrote to memory of 420	4696	rundll32.exe	98
PID 420 wrote to memory of 4328	420	rundll32.exe	99
PID 420 wrote to memory of 4328	420	rundll32.exe	99
PID 420 wrote to memory of 4328	420	rundll32.exe	99
PID 4328 wrote to memory of 1520	4328	rundll32.exe	100
PID 4328 wrote to memory of 1520	4328	rundll32.exe	100
PID 4328 wrote to memory of 1520	4328	rundll32.exe	100
PID 1520 wrote to memory of 4660	1520	rundll32.exe	101
PID 1520 wrote to memory of 4660	1520	rundll32.exe	101
PID 1520 wrote to memory of 4660	1520	rundll32.exe	101
PID 4660 wrote to memory of 2088	4660	rundll32.exe	102
PID 4660 wrote to memory of 2088	4660	rundll32.exe	102
PID 4660 wrote to memory of 2088	4660	rundll32.exe	102
PID 2088 wrote to memory of 3244	2088	rundll32.exe	103
PID 2088 wrote to memory of 3244	2088	rundll32.exe	103
PID 2088 wrote to memory of 3244	2088	rundll32.exe	103
PID 3244 wrote to memory of 412	3244	rundll32.exe	104
PID 3244 wrote to memory of 412	3244	rundll32.exe	104
PID 3244 wrote to memory of 412	3244	rundll32.exe	104
PID 412 wrote to memory of 1716	412	rundll32.exe	106

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3648
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:3480
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:3740
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4428
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3932
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:3252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        23⤵
        
        PID:1716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        24⤵
        
        PID:2040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        25⤵
        
        PID:2452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        26⤵
        
        PID:1600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        27⤵
        
        PID:4584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        28⤵
        
        PID:1700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        29⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        30⤵
        
        PID:4888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        31⤵
        
        PID:2232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        32⤵
        
        PID:1576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        33⤵
        
        PID:4560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        34⤵
        
        PID:1772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        35⤵
        
        PID:2052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        36⤵
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        37⤵
        
        PID:1340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        38⤵
        
        PID:4024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        39⤵
        
        PID:1696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        40⤵
        
        PID:2440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        41⤵
        
        PID:2560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        42⤵
        
        PID:60
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        43⤵
        
        PID:2280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        44⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        45⤵
        
        PID:3420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        46⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        47⤵
        
        PID:3044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        48⤵
        
        PID:1572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        49⤵
        
        PID:2272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        50⤵
        
        PID:4996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        51⤵
        
        PID:1068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        52⤵
        
        PID:520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        53⤵
        
        PID:908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        54⤵
        
        PID:408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        55⤵
        
        PID:1104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        56⤵
        
        PID:2304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        57⤵
        
        PID:816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        58⤵
        
        PID:4724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        59⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        60⤵
        
        PID:1900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        61⤵
        
        PID:4556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        62⤵
        
        PID:2428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        63⤵
        
        PID:620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        64⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        65⤵
        
        PID:4248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        66⤵
        
        PID:2356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        67⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        68⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        69⤵
        
        PID:1264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        70⤵
        
        PID:4016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        71⤵
        
        PID:5024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        72⤵
        
        PID:3756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        73⤵
        
        PID:4908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        74⤵
        
        PID:2580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        75⤵
        
        PID:2680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        76⤵
        
        PID:2472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        77⤵
        
        PID:3404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        78⤵
        
        PID:652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        79⤵
        
        PID:1680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        80⤵
        
        PID:864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        81⤵
        
        PID:316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        82⤵
        
        PID:4656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        83⤵
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        84⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        85⤵
        
        PID:3192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        86⤵
        
        PID:4708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        87⤵
        
        PID:4384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        88⤵
        
        PID:2632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        89⤵
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        90⤵
        
        PID:1148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        91⤵
        
        PID:2228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        92⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        93⤵
        
        PID:3060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        94⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        95⤵
        
        PID:744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        96⤵
        
        PID:1704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        97⤵
        
        PID:2848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        98⤵
        
        PID:884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        99⤵
        
        PID:3924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        100⤵
        
        PID:3392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        101⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        102⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        103⤵
        
        PID:5156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        104⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        105⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        106⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        107⤵
        
        PID:5224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        108⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        109⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        110⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        111⤵
        
        PID:5284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        112⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        113⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        114⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        115⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        116⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        117⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        118⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        119⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        120⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        121⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        122⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        123⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        124⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        125⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        126⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        127⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        128⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        129⤵
        
        PID:5560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        130⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        131⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        132⤵
        
        PID:5608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        133⤵
        
        PID:5624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        134⤵
        
        PID:5640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        135⤵
        
        PID:5652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        136⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        137⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        138⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        139⤵
        
        PID:5708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        140⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        141⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        142⤵
        
        PID:5748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        143⤵
        
        PID:5764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        144⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        145⤵
        
        PID:5796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        146⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        147⤵
        
        PID:5828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        148⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        149⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        150⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        151⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        152⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        153⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        154⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        155⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        156⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        157⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        158⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        159⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        160⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        161⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        162⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        163⤵
        
        PID:6060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        164⤵
        
        PID:6076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        165⤵
        
        PID:6092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        166⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        167⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        168⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        169⤵
        
        PID:4848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        170⤵
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        171⤵
        
        PID:3880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        172⤵
        
        PID:3524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        173⤵
        
        PID:3340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        174⤵
        
        PID:4936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        175⤵
        
        PID:5020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        176⤵
        
        PID:844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        177⤵
        
        PID:3896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        178⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        179⤵
        
        PID:6160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        180⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        181⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        182⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        183⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        184⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        185⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        186⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        187⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        188⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        189⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        190⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        191⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        192⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        193⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        194⤵
        
        PID:6384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        195⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        196⤵
        
        PID:6416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        197⤵
        
        PID:6432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        198⤵
        
        PID:6448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        199⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        200⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        201⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        202⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        203⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        204⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        205⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        206⤵
        
        PID:6576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        207⤵
        
        PID:6588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        208⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        209⤵
        
        PID:6620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        210⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        211⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        212⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        213⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        214⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        215⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        216⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        217⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        218⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        219⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        220⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        221⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        222⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        223⤵
        
        PID:6832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        224⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        225⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        226⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        227⤵
        
        PID:6900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        228⤵
        
        PID:6916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        229⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        230⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        231⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        232⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        233⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        234⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        235⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        236⤵
        
        PID:7040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        237⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        238⤵
        
        PID:7072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        239⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        240⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        241⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        242⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        243⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        244⤵
        
        PID:7160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        245⤵
        
        PID:6284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        246⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        247⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        248⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        249⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        250⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        251⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        252⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        253⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        254⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        255⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        256⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        257⤵
        
        PID:7356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        258⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        259⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        260⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        261⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        262⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        263⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        264⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        265⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        266⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        267⤵
        
        PID:7512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        268⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        269⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        270⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        271⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        272⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        273⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        274⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        275⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        276⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        277⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        278⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        279⤵
        
        PID:7704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        280⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        281⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        282⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        283⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        284⤵
        
        PID:7784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        285⤵
        
        PID:7800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        286⤵
        
        PID:7816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        287⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        288⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        289⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        290⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        291⤵
        
        PID:7884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        292⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        293⤵
        
        PID:7912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        294⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        295⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        296⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        297⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        298⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        299⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        300⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        301⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        302⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        303⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        304⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        305⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        306⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        307⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        308⤵
        
        PID:8132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        309⤵
        
        PID:8144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        310⤵
        
        PID:8160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        311⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        312⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        313⤵
        
        PID:8204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        314⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        315⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        316⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        317⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        318⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        319⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        320⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        321⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        322⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        323⤵
        
        PID:8348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        324⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        325⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        326⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        327⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        328⤵
        
        PID:8424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        329⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        330⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        331⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        332⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        333⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        334⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        335⤵
        
        PID:8524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        336⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        337⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        338⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        339⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        340⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        341⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        342⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        343⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        344⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        345⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        346⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        347⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        348⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        349⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        350⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        351⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        352⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        353⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        354⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        355⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        356⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        357⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        358⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        359⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        360⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        361⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        362⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        363⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        364⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        365⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        366⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        367⤵
        
        PID:9012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        368⤵
        
        PID:9028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        369⤵
        
        PID:9044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        370⤵
        
        PID:9056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        371⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        372⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        373⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        374⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        375⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        376⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        377⤵
        
        PID:9168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        378⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        379⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        380⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        381⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        382⤵
        
        PID:9244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        383⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        384⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        385⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        386⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        387⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        388⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        389⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        390⤵
        
        PID:9368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        391⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        392⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        393⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        394⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        395⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        396⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        397⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        398⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        399⤵
        
        PID:9504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        400⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        401⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        402⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        403⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        404⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        405⤵
        
        PID:9592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        406⤵
        
        PID:9608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        407⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        408⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        409⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        410⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        411⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        412⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        413⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        414⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        415⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        416⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        417⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        418⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        419⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        420⤵
        
        PID:9808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        421⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        422⤵
        
        PID:9840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        423⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        424⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        425⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        426⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        427⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        428⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        429⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        430⤵
        
        PID:9964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        431⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        432⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        433⤵
        
        PID:10012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        434⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        435⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        436⤵
        
        PID:10056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        437⤵
        
        PID:10072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        438⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        439⤵
        
        PID:10104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        440⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        441⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        442⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        443⤵
        
        PID:10168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        444⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        445⤵
        
        PID:10200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        446⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        447⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        448⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        449⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        450⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        451⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        452⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        453⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        454⤵
        
        PID:10336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        455⤵
        
        PID:10352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        456⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        457⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        458⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        459⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        460⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        461⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        462⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        463⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        464⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        465⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        466⤵
        
        PID:10520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        467⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        468⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        469⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        470⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        471⤵
        
        PID:10592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        472⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        473⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        474⤵
        
        PID:10636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        475⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        476⤵
        
        PID:10660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        477⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        478⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        479⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        480⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        481⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        482⤵
        
        PID:10752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        483⤵
        
        PID:10768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        484⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        485⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        486⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        487⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        488⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        489⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        490⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        491⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        492⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        493⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        494⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        495⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        496⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        497⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        498⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        499⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        500⤵
        
        PID:11024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        501⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        502⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        503⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        504⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        505⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        506⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        507⤵
        
        PID:11140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        508⤵
        
        PID:11156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        509⤵
        
        PID:11172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        510⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        511⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        512⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        513⤵
        
        PID:11232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        514⤵
        
        PID:11248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        515⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        516⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        517⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        518⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        519⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        520⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        521⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        522⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        523⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        524⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        525⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        526⤵
        
        PID:11428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        527⤵
        
        PID:11444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        528⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        529⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        530⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        531⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        532⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        533⤵
        
        PID:11536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        534⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        535⤵
        
        PID:11568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        536⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        537⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        538⤵
        
        PID:11616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        539⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        540⤵
        
        PID:11648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        541⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        542⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        543⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        544⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        545⤵
        
        PID:11728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        546⤵
        
        PID:11744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        547⤵
        
        PID:11756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        548⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        549⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        550⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        551⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        552⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        553⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        554⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        555⤵
        
        PID:11872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        556⤵
        
        PID:11884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        557⤵
        
        PID:11900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        558⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        559⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        560⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        561⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        562⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        563⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        564⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        565⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        566⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        567⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        568⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        569⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        570⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        571⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        572⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        573⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        574⤵
        
        PID:12164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        575⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        576⤵
        
        PID:12196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        577⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        578⤵
        
        PID:12224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        579⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        580⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        581⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        582⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        583⤵
        
        PID:12296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        584⤵
        
        PID:12312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        585⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        586⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        587⤵
        
        PID:12356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        588⤵
        
        PID:12372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        589⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        590⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        591⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        592⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        593⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        594⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        595⤵
        
        PID:12476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        596⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        597⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        598⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        599⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        600⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        601⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        602⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        603⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        604⤵
        
        PID:12604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        605⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        606⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        607⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        608⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        609⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        610⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        611⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        612⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        613⤵
        
        PID:12740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        614⤵
        
        PID:12756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        615⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        616⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        617⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        618⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        619⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        620⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        621⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        622⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        623⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        624⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        625⤵
        
        PID:12924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        626⤵
        
        PID:12936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        627⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        628⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        629⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        630⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        631⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        632⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        633⤵
        
        PID:13060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        634⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        635⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        636⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        637⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        638⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        639⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        640⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        641⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        642⤵
        
        PID:13200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        643⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        644⤵
        
        PID:13232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        645⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        646⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        647⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        648⤵
        
        PID:13292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        649⤵
        
        PID:13308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        650⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        651⤵
        
        PID:13324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        652⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        653⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        654⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        655⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        656⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        657⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        658⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        659⤵
        
        PID:13448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        660⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        661⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        662⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        663⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        664⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        665⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        666⤵
        
        PID:13564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        667⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        668⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        669⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        670⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        671⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        672⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        673⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        674⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        675⤵
        
        PID:13704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        676⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        677⤵
        
        PID:13736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        678⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        679⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        680⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        681⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        682⤵
        
        PID:13816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        683⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        684⤵
        
        PID:13844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        685⤵
        
        PID:13860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        686⤵
        
        PID:13876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        687⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        688⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        689⤵
        
        PID:13920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        690⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        691⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        692⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        693⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        694⤵
        
        PID:14000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        695⤵
        
        PID:14012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        696⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        697⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        698⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        699⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        700⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        701⤵
        
        PID:14108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        702⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        703⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        704⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        705⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        706⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        707⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        708⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        709⤵
        
        PID:14236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        710⤵
        
        PID:14252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        711⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        712⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        713⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        714⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        715⤵
        
        PID:14332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        716⤵
        
        PID:5080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        717⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        718⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        719⤵
        
        PID:14376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        720⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        721⤵
        
        PID:14408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        722⤵
        
        PID:14424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        723⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        724⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        725⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        726⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        727⤵
        
        PID:14504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        728⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        729⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        730⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        731⤵
        
        PID:14564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        732⤵
        
        PID:14580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        733⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        734⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        735⤵
        
        PID:14616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        736⤵
        
        PID:14632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        737⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        738⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        739⤵
        
        PID:14684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        740⤵
        
        PID:14700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        741⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        742⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        743⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        744⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        745⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        746⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        747⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        748⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        749⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        750⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        751⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        752⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        753⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        754⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        755⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        756⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        757⤵
        
        PID:14968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        758⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        759⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        760⤵
        
        PID:15016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        761⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        762⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        763⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        764⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        765⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        766⤵
        
        PID:15104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        767⤵
        
        PID:15120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        768⤵
        
        PID:15136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        769⤵
        
        PID:15152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        770⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        771⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        772⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        773⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        774⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        775⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        776⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        777⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        778⤵
        
        PID:15300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        779⤵
        
        PID:15316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        780⤵
        
        PID:15332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        781⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        782⤵
        
        PID:14680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        783⤵
        
        PID:15376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        784⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        785⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        786⤵
        
        PID:15424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        787⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        788⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        789⤵
        
        PID:15472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        790⤵
        
        PID:15488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        791⤵
        
        PID:15504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        792⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        793⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        794⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        795⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        796⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        797⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        798⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        799⤵
        
        PID:15620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        800⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        801⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        802⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        803⤵
        
        PID:15680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        804⤵
        
        PID:15692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        805⤵
        
        PID:15708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        806⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        807⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        808⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        809⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        810⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        811⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        812⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        813⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        814⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        815⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        816⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        817⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        818⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        819⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        820⤵
        
        PID:15948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        821⤵
        
        PID:15964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        822⤵
        
        PID:15980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        823⤵
        
        PID:15996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        824⤵
        
        PID:16012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        825⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        826⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        827⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        828⤵
        
        PID:16072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        829⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        830⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        831⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        832⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        833⤵
        
        PID:16148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        834⤵
        
        PID:16164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        835⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        836⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        837⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        838⤵
        
        PID:16224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        839⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        840⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        841⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        842⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        843⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        844⤵
        
        PID:16324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        845⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        846⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        847⤵
        
        PID:16364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        848⤵
        
        PID:1640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        849⤵
        
        PID:3364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        850⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        851⤵
        
        PID:16392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        852⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        853⤵
        
        PID:16424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        854⤵
        
        PID:16444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        855⤵
        
        PID:16460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        856⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        857⤵
        
        PID:16488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        858⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        859⤵
        
        PID:16520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        860⤵
        
        PID:16532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        861⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        862⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        863⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        864⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        865⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        866⤵
        
        PID:16628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        867⤵
        
        PID:16640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        868⤵
        
        PID:16652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        869⤵
        
        PID:16668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        870⤵
        
        PID:16684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        871⤵
        
        PID:16700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        872⤵
        
        PID:16716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        873⤵
        
        PID:16732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        874⤵
        
        PID:16748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        875⤵
        
        PID:16764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        876⤵
        
        PID:16780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        877⤵
        
        PID:16796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        878⤵
        
        PID:16812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        879⤵
        
        PID:16828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\37a52ec622d32ea91d0cf0db4088da8c_JaffaCakes118.dll,#1
        880⤵
        
        PID:16844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/976-11-0x0000000074DC0000-0x0000000075044000-memory.dmp

Filesize
2.5MB

Download
memory/3480-0-0x0000000074DC0000-0x0000000075044000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads