2d54fff927e61071866458abda1c887b7007b5208ad10767ea814b45f5364d85

Analysis

max time kernel
94s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
11/07/2024, 19:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll
Size

19KB
MD5

3a6749d378e53fd505b060c1501e12cc
SHA1

c1d4ba15edb88855d88d2e991d0b47cc54ebd9e4
SHA256

2d54fff927e61071866458abda1c887b7007b5208ad10767ea814b45f5364d85
SHA512

5be2ca06e047e4583097e149faefddfd797ac7134d0de8f4a30c48e6fae171ef7b0dcf2ee80167273dd6957f4fdc75f62ac69249cb33bd5572bd0b2d67f962f5
SSDEEP

384:D1lREHt4rgAbgzCMVrx00nH3ZUX0V+FA1EocPK2iJ8uPg7wQF:DKHtRZCcpyX0coEoc5uSF

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 3264 wrote to memory of 1096	3264	rundll32.exe	84
PID 3264 wrote to memory of 1096	3264	rundll32.exe	84
PID 3264 wrote to memory of 1096	3264	rundll32.exe	84
PID 1096 wrote to memory of 924	1096	rundll32.exe	87
PID 1096 wrote to memory of 924	1096	rundll32.exe	87
PID 1096 wrote to memory of 924	1096	rundll32.exe	87
PID 924 wrote to memory of 2812	924	rundll32.exe	88
PID 924 wrote to memory of 2812	924	rundll32.exe	88
PID 924 wrote to memory of 2812	924	rundll32.exe	88
PID 2812 wrote to memory of 4416	2812	rundll32.exe	89
PID 2812 wrote to memory of 4416	2812	rundll32.exe	89
PID 2812 wrote to memory of 4416	2812	rundll32.exe	89
PID 4416 wrote to memory of 1272	4416	rundll32.exe	90
PID 4416 wrote to memory of 1272	4416	rundll32.exe	90
PID 4416 wrote to memory of 1272	4416	rundll32.exe	90
PID 1272 wrote to memory of 3672	1272	rundll32.exe	91
PID 1272 wrote to memory of 3672	1272	rundll32.exe	91
PID 1272 wrote to memory of 3672	1272	rundll32.exe	91
PID 3672 wrote to memory of 1200	3672	rundll32.exe	92
PID 3672 wrote to memory of 1200	3672	rundll32.exe	92
PID 3672 wrote to memory of 1200	3672	rundll32.exe	92
PID 1200 wrote to memory of 1064	1200	rundll32.exe	93
PID 1200 wrote to memory of 1064	1200	rundll32.exe	93
PID 1200 wrote to memory of 1064	1200	rundll32.exe	93
PID 1064 wrote to memory of 2860	1064	rundll32.exe	94
PID 1064 wrote to memory of 2860	1064	rundll32.exe	94
PID 1064 wrote to memory of 2860	1064	rundll32.exe	94
PID 2860 wrote to memory of 4100	2860	rundll32.exe	95
PID 2860 wrote to memory of 4100	2860	rundll32.exe	95
PID 2860 wrote to memory of 4100	2860	rundll32.exe	95
PID 4100 wrote to memory of 1476	4100	rundll32.exe	96
PID 4100 wrote to memory of 1476	4100	rundll32.exe	96
PID 4100 wrote to memory of 1476	4100	rundll32.exe	96
PID 1476 wrote to memory of 768	1476	rundll32.exe	97
PID 1476 wrote to memory of 768	1476	rundll32.exe	97
PID 1476 wrote to memory of 768	1476	rundll32.exe	97
PID 768 wrote to memory of 3516	768	rundll32.exe	98
PID 768 wrote to memory of 3516	768	rundll32.exe	98
PID 768 wrote to memory of 3516	768	rundll32.exe	98
PID 3516 wrote to memory of 744	3516	rundll32.exe	99
PID 3516 wrote to memory of 744	3516	rundll32.exe	99
PID 3516 wrote to memory of 744	3516	rundll32.exe	99
PID 744 wrote to memory of 3176	744	rundll32.exe	100
PID 744 wrote to memory of 3176	744	rundll32.exe	100
PID 744 wrote to memory of 3176	744	rundll32.exe	100
PID 3176 wrote to memory of 3496	3176	rundll32.exe	101
PID 3176 wrote to memory of 3496	3176	rundll32.exe	101
PID 3176 wrote to memory of 3496	3176	rundll32.exe	101
PID 3496 wrote to memory of 3840	3496	rundll32.exe	102
PID 3496 wrote to memory of 3840	3496	rundll32.exe	102
PID 3496 wrote to memory of 3840	3496	rundll32.exe	102
PID 3840 wrote to memory of 1776	3840	rundll32.exe	103
PID 3840 wrote to memory of 1776	3840	rundll32.exe	103
PID 3840 wrote to memory of 1776	3840	rundll32.exe	103
PID 1776 wrote to memory of 3044	1776	rundll32.exe	104
PID 1776 wrote to memory of 3044	1776	rundll32.exe	104
PID 1776 wrote to memory of 3044	1776	rundll32.exe	104
PID 3044 wrote to memory of 4548	3044	rundll32.exe	105
PID 3044 wrote to memory of 4548	3044	rundll32.exe	105
PID 3044 wrote to memory of 4548	3044	rundll32.exe	105
PID 4548 wrote to memory of 4472	4548	rundll32.exe	106
PID 4548 wrote to memory of 4472	4548	rundll32.exe	106
PID 4548 wrote to memory of 4472	4548	rundll32.exe	106
PID 4472 wrote to memory of 1468	4472	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:3264
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1096
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:924
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:2812
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:4416
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:3672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:1200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:2860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:1476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:3516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:3496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:3840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:1776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:4472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        23⤵
        
        PID:1468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        24⤵
        
        PID:1684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        25⤵
        
        PID:1440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        26⤵
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        27⤵
        
        PID:3540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        28⤵
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        29⤵
        
        PID:2364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        30⤵
        
        PID:1620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        31⤵
        
        PID:3556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        32⤵
        
        PID:2152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        33⤵
        
        PID:908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        34⤵
        
        PID:4888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        35⤵
        
        PID:2280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        36⤵
        
        PID:672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        37⤵
        
        PID:4044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        38⤵
        
        PID:1624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        39⤵
        
        PID:1072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        40⤵
        
        PID:3636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        41⤵
        
        PID:1092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        42⤵
        
        PID:3836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        43⤵
        
        PID:1812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        44⤵
        
        PID:3920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        45⤵
        
        PID:4848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        46⤵
        
        PID:1696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        47⤵
        
        PID:932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        48⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        49⤵
        
        PID:1636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        50⤵
        
        PID:3188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        51⤵
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        52⤵
        
        PID:2992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        53⤵
        
        PID:3456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        54⤵
        
        PID:692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        55⤵
        
        PID:4604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        56⤵
        
        PID:3412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        57⤵
        
        PID:2204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        58⤵
        
        PID:656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        59⤵
        
        PID:4876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        60⤵
        
        PID:2744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        61⤵
        
        PID:4176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        62⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        63⤵
        
        PID:4252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        64⤵
        
        PID:3492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        65⤵
        
        PID:3828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        66⤵
        
        PID:3444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        67⤵
        
        PID:3640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        68⤵
        
        PID:2756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        69⤵
        
        PID:1404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        70⤵
        
        PID:4420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        71⤵
        
        PID:3900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        72⤵
        
        PID:3424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        73⤵
        
        PID:4456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        74⤵
        
        PID:4460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        75⤵
        
        PID:4368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        76⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        77⤵
        
        PID:1484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        78⤵
        
        PID:2544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        79⤵
        
        PID:848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        80⤵
        
        PID:2520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        81⤵
        
        PID:972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        82⤵
        
        PID:4448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        83⤵
        
        PID:1112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        84⤵
        
        PID:1612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        85⤵
        
        PID:2368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        86⤵
        
        PID:4308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        87⤵
        
        PID:2656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        88⤵
        
        PID:2660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        89⤵
        
        PID:844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        90⤵
        
        PID:4484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        91⤵
        
        PID:2908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        92⤵
        
        PID:1540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        93⤵
        
        PID:1184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        94⤵
        
        PID:1856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        95⤵
        
        PID:4480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        96⤵
        
        PID:660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        97⤵
        
        PID:1352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        98⤵
        
        PID:3696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        99⤵
        
        PID:4764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        100⤵
        
        PID:1396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        101⤵
        
        PID:5060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        102⤵
        
        PID:540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        103⤵
        
        PID:4076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        104⤵
        
        PID:1920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        105⤵
        
        PID:1708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        106⤵
        
        PID:4084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        107⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        108⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        109⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        110⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        111⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        112⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        113⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        114⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        115⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        116⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        117⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        118⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        119⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        120⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        121⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        122⤵
        
        PID:5388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        123⤵
        
        PID:5412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        124⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        125⤵
        
        PID:5448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        126⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        127⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        128⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        129⤵
        
        PID:5512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        130⤵
        
        PID:5528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        131⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        132⤵
        
        PID:5560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        133⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        134⤵
        
        PID:5592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        135⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        136⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        137⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        138⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        139⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        140⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        141⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        142⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        143⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        144⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        145⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        146⤵
        
        PID:5788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        147⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        148⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        149⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        150⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        151⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        152⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        153⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        154⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        155⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        156⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        157⤵
        
        PID:5964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        158⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        159⤵
        
        PID:6000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        160⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        161⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        162⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        163⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        164⤵
        
        PID:6084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        165⤵
        
        PID:6100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        166⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        167⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        168⤵
        
        PID:5188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        169⤵
        
        PID:5252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        170⤵
        
        PID:4432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        171⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        172⤵
        
        PID:2176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        173⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        174⤵
        
        PID:3004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        175⤵
        
        PID:4584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        176⤵
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        177⤵
        
        PID:2244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        178⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        179⤵
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        180⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        181⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        182⤵
        
        PID:6204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        183⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        184⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        185⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        186⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        187⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        188⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        189⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        190⤵
        
        PID:6328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        191⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        192⤵
        
        PID:6356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        193⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        194⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        195⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        196⤵
        
        PID:6420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        197⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        198⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        199⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        200⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        201⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        202⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        203⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        204⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        205⤵
        
        PID:6560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        206⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        207⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        208⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        209⤵
        
        PID:6632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        210⤵
        
        PID:6648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        211⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        212⤵
        
        PID:6684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        213⤵
        
        PID:6700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        214⤵
        
        PID:6716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        215⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        216⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        217⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        218⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        219⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        220⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        221⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        222⤵
        
        PID:6848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        223⤵
        
        PID:6864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        224⤵
        
        PID:6884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        225⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        226⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        227⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        228⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        229⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        230⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        231⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        232⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        233⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        234⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        235⤵
        
        PID:7080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        236⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        237⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        238⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        239⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        240⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        241⤵
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        242⤵
        
        PID:1400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        243⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        244⤵
        
        PID:2228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        245⤵
        
        PID:2852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        246⤵
        
        PID:6172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        247⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        248⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        249⤵
        
        PID:6604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        250⤵
        
        PID:1816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        251⤵
        
        PID:6932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        252⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        253⤵
        
        PID:3796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        254⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        255⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        256⤵
        
        PID:7196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        257⤵
        
        PID:7212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        258⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        259⤵
        
        PID:7252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        260⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        261⤵
        
        PID:7280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        262⤵
        
        PID:7296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        263⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        264⤵
        
        PID:7328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        265⤵
        
        PID:7340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        266⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        267⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        268⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        269⤵
        
        PID:7420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        270⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        271⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        272⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        273⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        274⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        275⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        276⤵
        
        PID:7548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        277⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        278⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        279⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        280⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        281⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        282⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        283⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        284⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        285⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        286⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        287⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        288⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        289⤵
        
        PID:7780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        290⤵
        
        PID:7796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        291⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        292⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        293⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        294⤵
        
        PID:7852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        295⤵
        
        PID:7868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        296⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        297⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        298⤵
        
        PID:7920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        299⤵
        
        PID:7936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        300⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        301⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        302⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        303⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        304⤵
        
        PID:8008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        305⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        306⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        307⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        308⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        309⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        310⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        311⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        312⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        313⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        314⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        315⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        316⤵
        
        PID:7372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        317⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        318⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        319⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        320⤵
        
        PID:8032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        321⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        322⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        323⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        324⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        325⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        326⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        327⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        328⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        329⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        330⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        331⤵
        
        PID:8340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        332⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        333⤵
        
        PID:8372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        334⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        335⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        336⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        337⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        338⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        339⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        340⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        341⤵
        
        PID:8504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        342⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        343⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        344⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        345⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        346⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        347⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        348⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        349⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        350⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        351⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        352⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        353⤵
        
        PID:8704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        354⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        355⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        356⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        357⤵
        
        PID:8776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        358⤵
        
        PID:8792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        359⤵
        
        PID:8808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        360⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        361⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        362⤵
        
        PID:8852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        363⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        364⤵
        
        PID:8880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        365⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        366⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        367⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        368⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        369⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        370⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        371⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        372⤵
        
        PID:9012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        373⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        374⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        375⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        376⤵
        
        PID:9084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        377⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        378⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        379⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        380⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        381⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        382⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        383⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        384⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        385⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        386⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        387⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        388⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        389⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        390⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        391⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        392⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        393⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        394⤵
        
        PID:9276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        395⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        396⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        397⤵
        
        PID:9332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        398⤵
        
        PID:9348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        399⤵
        
        PID:9364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        400⤵
        
        PID:9380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        401⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        402⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        403⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        404⤵
        
        PID:9436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        405⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        406⤵
        
        PID:9468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        407⤵
        
        PID:9480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        408⤵
        
        PID:9492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        409⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        410⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        411⤵
        
        PID:9556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        412⤵
        
        PID:9568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        413⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        414⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        415⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        416⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        417⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        418⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        419⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        420⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        421⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        422⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        423⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        424⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        425⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        426⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        427⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        428⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        429⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        430⤵
        
        PID:9848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        431⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        432⤵
        
        PID:9880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        433⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        434⤵
        
        PID:9912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        435⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        436⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        437⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        438⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        439⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        440⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        441⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        442⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        443⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        444⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        445⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        446⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        447⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        448⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        449⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        450⤵
        
        PID:10160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        451⤵
        
        PID:10176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        452⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        453⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        454⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        455⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        456⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        457⤵
        
        PID:9544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        458⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        459⤵
        
        PID:10264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        460⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        461⤵
        
        PID:10296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        462⤵
        
        PID:10312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        463⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        464⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        465⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        466⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        467⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        468⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        469⤵
        
        PID:10424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        470⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        471⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        472⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        473⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        474⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        475⤵
        
        PID:10516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        476⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        477⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        478⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        479⤵
        
        PID:10584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        480⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        481⤵
        
        PID:10612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        482⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        483⤵
        
        PID:10640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        484⤵
        
        PID:10652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        485⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        486⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        487⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        488⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        489⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        490⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        491⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        492⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        493⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        494⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        495⤵
        
        PID:10816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        496⤵
        
        PID:10832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        497⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        498⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        499⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        500⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        501⤵
        
        PID:10908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        502⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        503⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        504⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        505⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        506⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        507⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        508⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        509⤵
        
        PID:11028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        510⤵
        
        PID:11040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        511⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        512⤵
        
        PID:11072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        513⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        514⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        515⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        516⤵
        
        PID:11140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        517⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        518⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        519⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        520⤵
        
        PID:11192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        521⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        522⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        523⤵
        
        PID:11240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        524⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        525⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        526⤵
        
        PID:11272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        527⤵
        
        PID:11284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        528⤵
        
        PID:11296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        529⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        530⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        531⤵
        
        PID:11348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        532⤵
        
        PID:11364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        533⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        534⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        535⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        536⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        537⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        538⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        539⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        540⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        541⤵
        
        PID:11500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        542⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        543⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        544⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        545⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        546⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        547⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        548⤵
        
        PID:11604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        549⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        550⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        551⤵
        
        PID:11648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        552⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        553⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        554⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        555⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        556⤵
        
        PID:11728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        557⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        558⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        559⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        560⤵
        
        PID:11792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        561⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        562⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        563⤵
        
        PID:11836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        564⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        565⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        566⤵
        
        PID:11884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        567⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        568⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        569⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        570⤵
        
        PID:11940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        571⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        572⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        573⤵
        
        PID:11984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        574⤵
        
        PID:12000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        575⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        576⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        577⤵
        
        PID:12044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        578⤵
        
        PID:12056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        579⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        580⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        581⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        582⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        583⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        584⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        585⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        586⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        587⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        588⤵
        
        PID:12208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        589⤵
        
        PID:12224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        590⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        591⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        592⤵
        
        PID:12272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        593⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        594⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        595⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        596⤵
        
        PID:12332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        597⤵
        
        PID:12348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        598⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        599⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        600⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        601⤵
        
        PID:12416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        602⤵
        
        PID:12432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        603⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        604⤵
        
        PID:12464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        605⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        606⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        607⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        608⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        609⤵
        
        PID:12536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        610⤵
        
        PID:12552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        611⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        612⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        613⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        614⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        615⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        616⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        617⤵
        
        PID:12652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        618⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        619⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        620⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        621⤵
        
        PID:12716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        622⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        623⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        624⤵
        
        PID:12760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        625⤵
        
        PID:12772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        626⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        627⤵
        
        PID:12804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        628⤵
        
        PID:12820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        629⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        630⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        631⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        632⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        633⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        634⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        635⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        636⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        637⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        638⤵
        
        PID:12972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        639⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        640⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        641⤵
        
        PID:13020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        642⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        643⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        644⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        645⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        646⤵
        
        PID:13096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        647⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        648⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        649⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        650⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        651⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        652⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        653⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        654⤵
        
        PID:13212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        655⤵
        
        PID:13228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        656⤵
        
        PID:13244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        657⤵
        
        PID:13260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        658⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        659⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        660⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        661⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        662⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        663⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        664⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        665⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        666⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        667⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        668⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        669⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        670⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        671⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        672⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        673⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        674⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        675⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        676⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        677⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        678⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        679⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        680⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        681⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        682⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        683⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        684⤵
        
        PID:13648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        685⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        686⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        687⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        688⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        689⤵
        
        PID:13728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        690⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        691⤵
        
        PID:13772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        692⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        693⤵
        
        PID:13800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        694⤵
        
        PID:13816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        695⤵
        
        PID:13832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        696⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        697⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        698⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        699⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        700⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        701⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        702⤵
        
        PID:13936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        703⤵
        
        PID:13948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        704⤵
        
        PID:13960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        705⤵
        
        PID:13976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        706⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        707⤵
        
        PID:14000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        708⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        709⤵
        
        PID:14028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        710⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        711⤵
        
        PID:14056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        712⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        713⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        714⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        715⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        716⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        717⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        718⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        719⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        720⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        721⤵
        
        PID:14204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        722⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        723⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        724⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        725⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        726⤵
        
        PID:14280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        727⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        728⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        729⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        730⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        731⤵
        
        PID:14348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        732⤵
        
        PID:14364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        733⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        734⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        735⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        736⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        737⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        738⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        739⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        740⤵
        
        PID:14488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        741⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        742⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        743⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        744⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        745⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        746⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        747⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        748⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        749⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        750⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        751⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        752⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        753⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        754⤵
        
        PID:14708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        755⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        756⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        757⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        758⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        759⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        760⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        761⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        762⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        763⤵
        
        PID:14844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        764⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        765⤵
        
        PID:14876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        766⤵
        
        PID:14892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        767⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        768⤵
        
        PID:14928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        769⤵
        
        PID:14944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        770⤵
        
        PID:14960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        771⤵
        
        PID:14976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        772⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        773⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        774⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        775⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        776⤵
        
        PID:15052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        777⤵
        
        PID:15068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        778⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        779⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        780⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        781⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        782⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        783⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        784⤵
        
        PID:15176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        785⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        786⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        787⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        788⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        789⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        790⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        791⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        792⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        793⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        794⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        795⤵
        
        PID:15340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        796⤵
        
        PID:15356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        797⤵
        
        PID:15368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        798⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        799⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        800⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        801⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        802⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        803⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        804⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        805⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        806⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        807⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        808⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        809⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        810⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        811⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        812⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        813⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        814⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        815⤵
        
        PID:15640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        816⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        817⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        818⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        819⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        820⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        821⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        822⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        823⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        824⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        825⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        826⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        827⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        828⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        829⤵
        
        PID:15848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        830⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        831⤵
        
        PID:15880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        832⤵
        
        PID:15896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        833⤵
        
        PID:15912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        834⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        835⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        836⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        837⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        838⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        839⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        840⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        841⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        842⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        843⤵
        
        PID:16072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        844⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        845⤵
        
        PID:16104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        846⤵
        
        PID:16120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        847⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        848⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        849⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        850⤵
        
        PID:16184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        851⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        852⤵
        
        PID:16216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        853⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        854⤵
        
        PID:16248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        855⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        856⤵
        
        PID:16276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        857⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        858⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        859⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        860⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        861⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        862⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        863⤵
        
        PID:14916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        864⤵
        
        PID:3568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        865⤵
        
        PID:2224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        866⤵
        
        PID:16392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        867⤵
        
        PID:16408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        868⤵
        
        PID:16420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        869⤵
        
        PID:16436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        870⤵
        
        PID:16448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        871⤵
        
        PID:16464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        872⤵
        
        PID:16480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        873⤵
        
        PID:16496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        874⤵
        
        PID:16512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        875⤵
        
        PID:16528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        876⤵
        
        PID:16540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        877⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        878⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        879⤵
        
        PID:16580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        880⤵
        
        PID:16596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        881⤵
        
        PID:16612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        882⤵
        
        PID:16624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        883⤵
        
        PID:16640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        884⤵
        
        PID:16656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        885⤵
        
        PID:16668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        886⤵
        
        PID:16684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        887⤵
        
        PID:16696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        888⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        889⤵
        
        PID:16728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        890⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        891⤵
        
        PID:16760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        892⤵
        
        PID:16776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        893⤵
        
        PID:16792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        894⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\3a6749d378e53fd505b060c1501e12cc_JaffaCakes118.dll,#1
        895⤵
        
        PID:16828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/672-42-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/672-54-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/744-17-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/908-51-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/908-37-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/924-12-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/924-2-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1064-7-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1064-21-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1072-47-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1072-57-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1092-49-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1096-1-0x00000000004A0000-0x00000000004B0000-memory.dmp

Filesize
64KB

Download
memory/1096-11-0x00000000004A0000-0x00000000004B0000-memory.dmp

Filesize
64KB

Download
memory/1096-10-0x00000000004A0000-0x00000000004B0000-memory.dmp

Filesize
64KB

Download
memory/1096-0-0x00000000004A0000-0x00000000004B0000-memory.dmp

Filesize
64KB

Download
memory/1096-189-0x0000000075040000-0x00000000752C4000-memory.dmp

Filesize
2.5MB

Download
memory/1108-41-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1200-19-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1200-6-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1200-195-0x0000000075040000-0x00000000752C4000-memory.dmp

Filesize
2.5MB

Download
memory/1272-5-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1272-18-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1404-66-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1440-39-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1476-27-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1484-69-0x00000000001F0000-0x0000000000200000-memory.dmp

Filesize
64KB

Download
memory/1540-78-0x0000000002140000-0x0000000002150000-memory.dmp

Filesize
64KB

Download
memory/1624-56-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1624-45-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1684-28-0x0000000000740000-0x0000000000750000-memory.dmp

Filesize
64KB

Download
memory/1684-29-0x0000000000740000-0x0000000000750000-memory.dmp

Filesize
64KB

Download
memory/1684-38-0x0000000000740000-0x0000000000750000-memory.dmp

Filesize
64KB

Download
memory/1776-206-0x0000000075040000-0x00000000752C4000-memory.dmp

Filesize
2.5MB

Download
memory/1776-33-0x00000000006E0000-0x00000000006F0000-memory.dmp

Filesize
64KB

Download
memory/1776-22-0x00000000006E0000-0x00000000006F0000-memory.dmp

Filesize
64KB

Download
memory/2152-50-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2204-61-0x0000000000590000-0x00000000005A0000-memory.dmp

Filesize
64KB

Download
memory/2204-59-0x0000000000590000-0x00000000005A0000-memory.dmp

Filesize
64KB

Download
memory/2280-53-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2280-40-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2364-46-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2364-34-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2656-68-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2656-73-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2756-65-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2812-3-0x0000000000BC0000-0x0000000000BD0000-memory.dmp

Filesize
64KB

Download
memory/2812-4-0x0000000000BC0000-0x0000000000BD0000-memory.dmp

Filesize
64KB

Download
memory/2812-14-0x0000000000BC0000-0x0000000000BD0000-memory.dmp

Filesize
64KB

Download
memory/2812-13-0x0000000000BC0000-0x0000000000BD0000-memory.dmp

Filesize
64KB

Download
memory/2860-23-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/2908-77-0x0000000000630000-0x0000000000640000-memory.dmp

Filesize
64KB

Download
memory/2908-70-0x0000000000630000-0x0000000000640000-memory.dmp

Filesize
64KB

Download
memory/2992-60-0x00000000007F0000-0x0000000000800000-memory.dmp

Filesize
64KB

Download
memory/3444-63-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3496-30-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3516-15-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3540-43-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3556-48-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3556-36-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3640-64-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/3840-20-0x0000000000650000-0x0000000000660000-memory.dmp

Filesize
64KB

Download
memory/3840-31-0x0000000000650000-0x0000000000660000-memory.dmp

Filesize
64KB

Download
memory/3920-58-0x0000000000670000-0x0000000000680000-memory.dmp

Filesize
64KB

Download
memory/4032-32-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4032-44-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4044-55-0x0000000000920000-0x0000000000930000-memory.dmp

Filesize
64KB

Download
memory/4100-24-0x0000000000B20000-0x0000000000B30000-memory.dmp

Filesize
64KB

Download
memory/4100-8-0x0000000000B20000-0x0000000000B30000-memory.dmp

Filesize
64KB

Download
memory/4100-9-0x0000000000B20000-0x0000000000B30000-memory.dmp

Filesize
64KB

Download
memory/4100-25-0x0000000000B20000-0x0000000000B30000-memory.dmp

Filesize
64KB

Download
memory/4308-67-0x0000000000550000-0x0000000000560000-memory.dmp

Filesize
64KB

Download
memory/4308-72-0x0000000000550000-0x0000000000560000-memory.dmp

Filesize
64KB

Download
memory/4416-16-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4460-62-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4480-79-0x0000000000910000-0x0000000000920000-memory.dmp

Filesize
64KB

Download
memory/4480-71-0x0000000000910000-0x0000000000920000-memory.dmp

Filesize
64KB

Download
memory/4484-76-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4548-35-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4548-26-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/4764-80-0x0000000000800000-0x0000000000810000-memory.dmp

Filesize
64KB

Download
memory/4764-74-0x0000000000800000-0x0000000000810000-memory.dmp

Filesize
64KB

Download
memory/4764-75-0x0000000000800000-0x0000000000810000-memory.dmp

Filesize
64KB

Download
memory/4888-52-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/5160-81-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/5160-85-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/5228-82-0x00000000008D0000-0x00000000008E0000-memory.dmp

Filesize
64KB

Download
memory/5228-87-0x00000000008D0000-0x00000000008E0000-memory.dmp

Filesize
64KB

Download
memory/5244-83-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/5264-84-0x00000000006A0000-0x00000000006B0000-memory.dmp

Filesize
64KB

Download
memory/5280-88-0x0000000000AA0000-0x0000000000AB0000-memory.dmp

Filesize
64KB

Download
memory/5372-89-0x00000000004D0000-0x00000000004E0000-memory.dmp

Filesize
64KB

Download
memory/5372-86-0x00000000004D0000-0x00000000004E0000-memory.dmp

Filesize
64KB

Download
memory/5448-90-0x00000000006A0000-0x00000000006B0000-memory.dmp

Filesize
64KB

Download
memory/5496-91-0x0000000000780000-0x0000000000790000-memory.dmp

Filesize
64KB

Download
memory/5580-92-0x00000000001E0000-0x00000000001F0000-memory.dmp

Filesize
64KB

Download
memory/5820-93-0x00000000001B0000-0x00000000001C0000-memory.dmp

Filesize
64KB

Download
memory/5836-94-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/5964-95-0x00000000006D0000-0x00000000006E0000-memory.dmp

Filesize
64KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads