377a6ffd69d7cc259ddb780d9619ab2b880990e81fab793cf875a0f004558650

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
13-07-2024 11:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll
Size

52KB
MD5

41686d5385a84e3b3d8c46bbcfc8970e
SHA1

fecb02370d8371ad1db3e28380b45430410ba985
SHA256

377a6ffd69d7cc259ddb780d9619ab2b880990e81fab793cf875a0f004558650
SHA512

ac3d303633ba8bd464f3caf9674c3bd235fd240747904668b0cb531e4073fca11ba37b689e203c82bfeda0b52c1183c7e75ed9028dc6c3d38348893b5e701cd6
SSDEEP

768:hvdCxTv3L1FyNjwbG5a4+f0qs4fiiGB/y6wJScDwtvb9MRWv/PbWv:rwKq8q9fvGBgjwtjKmbWv

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 1908 wrote to memory of 5100	1908	rundll32.exe	83
PID 1908 wrote to memory of 5100	1908	rundll32.exe	83
PID 1908 wrote to memory of 5100	1908	rundll32.exe	83
PID 5100 wrote to memory of 4952	5100	rundll32.exe	84
PID 5100 wrote to memory of 4952	5100	rundll32.exe	84
PID 5100 wrote to memory of 4952	5100	rundll32.exe	84
PID 4952 wrote to memory of 3552	4952	rundll32.exe	85
PID 4952 wrote to memory of 3552	4952	rundll32.exe	85
PID 4952 wrote to memory of 3552	4952	rundll32.exe	85
PID 3552 wrote to memory of 2816	3552	rundll32.exe	86
PID 3552 wrote to memory of 2816	3552	rundll32.exe	86
PID 3552 wrote to memory of 2816	3552	rundll32.exe	86
PID 2816 wrote to memory of 2792	2816	rundll32.exe	87
PID 2816 wrote to memory of 2792	2816	rundll32.exe	87
PID 2816 wrote to memory of 2792	2816	rundll32.exe	87
PID 2792 wrote to memory of 4072	2792	rundll32.exe	88
PID 2792 wrote to memory of 4072	2792	rundll32.exe	88
PID 2792 wrote to memory of 4072	2792	rundll32.exe	88
PID 4072 wrote to memory of 3996	4072	rundll32.exe	89
PID 4072 wrote to memory of 3996	4072	rundll32.exe	89
PID 4072 wrote to memory of 3996	4072	rundll32.exe	89
PID 3996 wrote to memory of 1884	3996	rundll32.exe	90
PID 3996 wrote to memory of 1884	3996	rundll32.exe	90
PID 3996 wrote to memory of 1884	3996	rundll32.exe	90
PID 1884 wrote to memory of 1392	1884	rundll32.exe	91
PID 1884 wrote to memory of 1392	1884	rundll32.exe	91
PID 1884 wrote to memory of 1392	1884	rundll32.exe	91
PID 1392 wrote to memory of 1960	1392	rundll32.exe	92
PID 1392 wrote to memory of 1960	1392	rundll32.exe	92
PID 1392 wrote to memory of 1960	1392	rundll32.exe	92
PID 1960 wrote to memory of 3144	1960	rundll32.exe	93
PID 1960 wrote to memory of 3144	1960	rundll32.exe	93
PID 1960 wrote to memory of 3144	1960	rundll32.exe	93
PID 3144 wrote to memory of 2868	3144	rundll32.exe	94
PID 3144 wrote to memory of 2868	3144	rundll32.exe	94
PID 3144 wrote to memory of 2868	3144	rundll32.exe	94
PID 2868 wrote to memory of 1364	2868	rundll32.exe	95
PID 2868 wrote to memory of 1364	2868	rundll32.exe	95
PID 2868 wrote to memory of 1364	2868	rundll32.exe	95
PID 1364 wrote to memory of 3332	1364	rundll32.exe	96
PID 1364 wrote to memory of 3332	1364	rundll32.exe	96
PID 1364 wrote to memory of 3332	1364	rundll32.exe	96
PID 3332 wrote to memory of 3080	3332	rundll32.exe	98
PID 3332 wrote to memory of 3080	3332	rundll32.exe	98
PID 3332 wrote to memory of 3080	3332	rundll32.exe	98
PID 3080 wrote to memory of 1648	3080	rundll32.exe	99
PID 3080 wrote to memory of 1648	3080	rundll32.exe	99
PID 3080 wrote to memory of 1648	3080	rundll32.exe	99
PID 1648 wrote to memory of 1632	1648	rundll32.exe	100
PID 1648 wrote to memory of 1632	1648	rundll32.exe	100
PID 1648 wrote to memory of 1632	1648	rundll32.exe	100
PID 1632 wrote to memory of 3932	1632	rundll32.exe	101
PID 1632 wrote to memory of 3932	1632	rundll32.exe	101
PID 1632 wrote to memory of 3932	1632	rundll32.exe	101
PID 3932 wrote to memory of 2320	3932	rundll32.exe	102
PID 3932 wrote to memory of 2320	3932	rundll32.exe	102
PID 3932 wrote to memory of 2320	3932	rundll32.exe	102
PID 2320 wrote to memory of 2836	2320	rundll32.exe	103
PID 2320 wrote to memory of 2836	2320	rundll32.exe	103
PID 2320 wrote to memory of 2836	2320	rundll32.exe	103
PID 2836 wrote to memory of 2360	2836	rundll32.exe	104
PID 2836 wrote to memory of 2360	2836	rundll32.exe	104
PID 2836 wrote to memory of 2360	2836	rundll32.exe	104
PID 2360 wrote to memory of 2724	2360	rundll32.exe	106

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:1908
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:5100
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4952
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3552
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2816
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:3996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:1884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:1392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:1960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:3144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:2868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:1364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:3332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:3080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        23⤵
        
        PID:2724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        24⤵
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        25⤵
        
        PID:1216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        26⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        27⤵
        
        PID:2016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        28⤵
        
        PID:216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        29⤵
        
        PID:5096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        30⤵
        
        PID:2968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        31⤵
        
        PID:116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        32⤵
        
        PID:1496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        33⤵
        
        PID:4936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        34⤵
        
        PID:2328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        35⤵
        
        PID:5044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        36⤵
        
        PID:5108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        37⤵
        
        PID:4520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        38⤵
        
        PID:1060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        39⤵
        
        PID:1596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        40⤵
        
        PID:3036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        41⤵
        
        PID:4512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        42⤵
        
        PID:812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        43⤵
        
        PID:3716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        44⤵
        
        PID:548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        45⤵
        
        PID:2604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        46⤵
        
        PID:4964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        47⤵
        
        PID:1956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        48⤵
        
        PID:2576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        49⤵
        
        PID:2372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        50⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        51⤵
        
        PID:1336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        52⤵
        
        PID:2676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        53⤵
        
        PID:2720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        54⤵
        
        PID:756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        55⤵
        
        PID:2132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        56⤵
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        57⤵
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        58⤵
        
        PID:3104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        59⤵
        
        PID:2288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        60⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        61⤵
        
        PID:4332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        62⤵
        
        PID:2072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        63⤵
        
        PID:1800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        64⤵
        
        PID:1416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        65⤵
        
        PID:404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        66⤵
        
        PID:1144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        67⤵
        
        PID:4872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        68⤵
        
        PID:656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        69⤵
        
        PID:3584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        70⤵
        
        PID:2340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        71⤵
        
        PID:3540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        72⤵
        
        PID:440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        73⤵
        
        PID:1096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        74⤵
        
        PID:2412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        75⤵
        
        PID:3616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        76⤵
        
        PID:1640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        77⤵
        
        PID:3268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        78⤵
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        79⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        80⤵
        
        PID:2892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        81⤵
        
        PID:4972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        82⤵
        
        PID:2780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        83⤵
        
        PID:5068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        84⤵
        
        PID:3492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        85⤵
        
        PID:1976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        86⤵
        
        PID:4572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        87⤵
        
        PID:4460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        88⤵
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        89⤵
        
        PID:868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        90⤵
        
        PID:3216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        91⤵
        
        PID:3240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        92⤵
        
        PID:3804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        93⤵
        
        PID:624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        94⤵
        
        PID:4884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        95⤵
        
        PID:5112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        96⤵
        
        PID:4744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        97⤵
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        98⤵
        
        PID:4004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        99⤵
        
        PID:4888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        100⤵
        
        PID:3352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        101⤵
        
        PID:1400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        102⤵
        
        PID:4344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        103⤵
        
        PID:4456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        104⤵
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        105⤵
        
        PID:1052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        106⤵
        
        PID:1028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        107⤵
        
        PID:4368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        108⤵
        
        PID:1828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        109⤵
        
        PID:5080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        110⤵
        
        PID:264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        111⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        112⤵
        
        PID:4772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        113⤵
        
        PID:1688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        114⤵
        
        PID:3652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        115⤵
        
        PID:5132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        116⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        117⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        118⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        119⤵
        
        PID:5200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        120⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        121⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        122⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        123⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        124⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        125⤵
        
        PID:5296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        126⤵
        
        PID:5312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        127⤵
        
        PID:5328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        128⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        129⤵
        
        PID:5360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        130⤵
        
        PID:5376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        131⤵
        
        PID:5392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        132⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        133⤵
        
        PID:5420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        134⤵
        
        PID:5440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        135⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        136⤵
        
        PID:5472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        137⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        138⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        139⤵
        
        PID:5520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        140⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        141⤵
        
        PID:5552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        142⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        143⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        144⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        145⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        146⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        147⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        148⤵
        
        PID:5660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        149⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        150⤵
        
        PID:5684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        151⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        152⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        153⤵
        
        PID:5732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        154⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        155⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        156⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        157⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        158⤵
        
        PID:5808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        159⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        160⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        161⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        162⤵
        
        PID:5872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        163⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        164⤵
        
        PID:5900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        165⤵
        
        PID:5916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        166⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        167⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        168⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        169⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        170⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        171⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        172⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        173⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        174⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        175⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        176⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        177⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        178⤵
        
        PID:6116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        179⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        180⤵
        
        PID:1264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        181⤵
        
        PID:2528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        182⤵
        
        PID:5064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        183⤵
        
        PID:4328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        184⤵
        
        PID:840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        185⤵
        
        PID:5032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        186⤵
        
        PID:2124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        187⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        188⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        189⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        190⤵
        
        PID:6200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        191⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        192⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        193⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        194⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        195⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        196⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        197⤵
        
        PID:6304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        198⤵
        
        PID:6320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        199⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        200⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        201⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        202⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        203⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        204⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        205⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        206⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        207⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        208⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        209⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        210⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        211⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        212⤵
        
        PID:6524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        213⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        214⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        215⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        216⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        217⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        218⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        219⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        220⤵
        
        PID:6636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        221⤵
        
        PID:6656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        222⤵
        
        PID:6672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        223⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        224⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        225⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        226⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        227⤵
        
        PID:6752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        228⤵
        
        PID:6768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        229⤵
        
        PID:6784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        230⤵
        
        PID:6796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        231⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        232⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        233⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        234⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        235⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        236⤵
        
        PID:6880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        237⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        238⤵
        
        PID:6912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        239⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        240⤵
        
        PID:6940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        241⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        242⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        243⤵
        
        PID:6980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        244⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        245⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        246⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        247⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        248⤵
        
        PID:7052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        249⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        250⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        251⤵
        
        PID:7088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        252⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        253⤵
        
        PID:7120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        254⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        255⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        256⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        257⤵
        
        PID:7172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        258⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        259⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        260⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        261⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        262⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        263⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        264⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        265⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        266⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        267⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        268⤵
        
        PID:7332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        269⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        270⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        271⤵
        
        PID:7380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        272⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        273⤵
        
        PID:7408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        274⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        275⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        276⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        277⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        278⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        279⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        280⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        281⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        282⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        283⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        284⤵
        
        PID:7572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        285⤵
        
        PID:7588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        286⤵
        
        PID:7604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        287⤵
        
        PID:7620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        288⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        289⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        290⤵
        
        PID:7664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        291⤵
        
        PID:7676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        292⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        293⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        294⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        295⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        296⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        297⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        298⤵
        
        PID:7780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        299⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        300⤵
        
        PID:7804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        301⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        302⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        303⤵
        
        PID:7852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        304⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        305⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        306⤵
        
        PID:7896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        307⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        308⤵
        
        PID:7928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        309⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        310⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        311⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        312⤵
        
        PID:7984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        313⤵
        
        PID:8000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        314⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        315⤵
        
        PID:8032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        316⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        317⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        318⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        319⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        320⤵
        
        PID:8108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        321⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        322⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        323⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        324⤵
        
        PID:8168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        325⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        326⤵
        
        PID:7432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        327⤵
        
        PID:8208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        328⤵
        
        PID:8224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        329⤵
        
        PID:8240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        330⤵
        
        PID:8252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        331⤵
        
        PID:8268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        332⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        333⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        334⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        335⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        336⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        337⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        338⤵
        
        PID:8384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        339⤵
        
        PID:8400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        340⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        341⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        342⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        343⤵
        
        PID:8460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        344⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        345⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        346⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        347⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        348⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        349⤵
        
        PID:8560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        350⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        351⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        352⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        353⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        354⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        355⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        356⤵
        
        PID:8664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        357⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        358⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        359⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        360⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        361⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        362⤵
        
        PID:8752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        363⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        364⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        365⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        366⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        367⤵
        
        PID:8824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        368⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        369⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        370⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        371⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        372⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        373⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        374⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        375⤵
        
        PID:8944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        376⤵
        
        PID:8960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        377⤵
        
        PID:8976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        378⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        379⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        380⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        381⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        382⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        383⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        384⤵
        
        PID:9076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        385⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        386⤵
        
        PID:9108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        387⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        388⤵
        
        PID:9136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        389⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        390⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        391⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        392⤵
        
        PID:9188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        393⤵
        
        PID:9200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        394⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        395⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        396⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        397⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        398⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        399⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        400⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        401⤵
        
        PID:9316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        402⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        403⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        404⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        405⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        406⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        407⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        408⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        409⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        410⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        411⤵
        
        PID:9456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        412⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        413⤵
        
        PID:9484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        414⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        415⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        416⤵
        
        PID:9528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        417⤵
        
        PID:9540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        418⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        419⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        420⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        421⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        422⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        423⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        424⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        425⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        426⤵
        
        PID:9672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        427⤵
        
        PID:9688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        428⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        429⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        430⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        431⤵
        
        PID:9740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        432⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        433⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        434⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        435⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        436⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        437⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        438⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        439⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        440⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        441⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        442⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        443⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        444⤵
        
        PID:9916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        445⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        446⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        447⤵
        
        PID:9960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        448⤵
        
        PID:9976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        449⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        450⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        451⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        452⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        453⤵
        
        PID:10056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        454⤵
        
        PID:10068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        455⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        456⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        457⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        458⤵
        
        PID:10132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        459⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        460⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        461⤵
        
        PID:10172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        462⤵
        
        PID:10184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        463⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        464⤵
        
        PID:10220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        465⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        466⤵
        
        PID:10248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        467⤵
        
        PID:10264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        468⤵
        
        PID:10276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        469⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        470⤵
        
        PID:10308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        471⤵
        
        PID:10324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        472⤵
        
        PID:10340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        473⤵
        
        PID:10356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        474⤵
        
        PID:10368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        475⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        476⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        477⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        478⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        479⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        480⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        481⤵
        
        PID:10456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        482⤵
        
        PID:10472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        483⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        484⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        485⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        486⤵
        
        PID:10532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        487⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        488⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        489⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        490⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        491⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        492⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        493⤵
        
        PID:10636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        494⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        495⤵
        
        PID:10668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        496⤵
        
        PID:10684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        497⤵
        
        PID:10700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        498⤵
        
        PID:10716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        499⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        500⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        501⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        502⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        503⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        504⤵
        
        PID:10796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        505⤵
        
        PID:10808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        506⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        507⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        508⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        509⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        510⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        511⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        512⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        513⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        514⤵
        
        PID:10940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        515⤵
        
        PID:10956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        516⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        517⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        518⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        519⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        520⤵
        
        PID:11028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        521⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        522⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        523⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        524⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        525⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        526⤵
        
        PID:11120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        527⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        528⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        529⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        530⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        531⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        532⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        533⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        534⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        535⤵
        
        PID:11260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        536⤵
        
        PID:1092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        537⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        538⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        539⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        540⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        541⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        542⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        543⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        544⤵
        
        PID:11384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        545⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        546⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        547⤵
        
        PID:11428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        548⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        549⤵
        
        PID:11456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        550⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        551⤵
        
        PID:11488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        552⤵
        
        PID:11508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        553⤵
        
        PID:11520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        554⤵
        
        PID:11536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        555⤵
        
        PID:11552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        556⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        557⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        558⤵
        
        PID:11612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        559⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        560⤵
        
        PID:11640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        561⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        562⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        563⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        564⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        565⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        566⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        567⤵
        
        PID:11740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        568⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        569⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        570⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        571⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        572⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        573⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        574⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        575⤵
        
        PID:11848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        576⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        577⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        578⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        579⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        580⤵
        
        PID:11924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        581⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        582⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        583⤵
        
        PID:11964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        584⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        585⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        586⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        587⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        588⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        589⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        590⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        591⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        592⤵
        
        PID:12096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        593⤵
        
        PID:12116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        594⤵
        
        PID:12132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        595⤵
        
        PID:12148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        596⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        597⤵
        
        PID:12176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        598⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        599⤵
        
        PID:12212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        600⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        601⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        602⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        603⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        604⤵
        
        PID:12284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        605⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        606⤵
        
        PID:12304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        607⤵
        
        PID:12320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        608⤵
        
        PID:12336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        609⤵
        
        PID:12348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        610⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        611⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        612⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        613⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        614⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        615⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        616⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        617⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        618⤵
        
        PID:12488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        619⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        620⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        621⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        622⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        623⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        624⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        625⤵
        
        PID:12588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        626⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        627⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        628⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        629⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        630⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        631⤵
        
        PID:12676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        632⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        633⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        634⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        635⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        636⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        637⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        638⤵
        
        PID:12780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        639⤵
        
        PID:12796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        640⤵
        
        PID:12808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        641⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        642⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        643⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        644⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        645⤵
        
        PID:12888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        646⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        647⤵
        
        PID:12916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        648⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        649⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        650⤵
        
        PID:12960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        651⤵
        
        PID:12980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        652⤵
        
        PID:12996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        653⤵
        
        PID:13008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        654⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        655⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        656⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        657⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        658⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        659⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        660⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        661⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        662⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        663⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        664⤵
        
        PID:13172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        665⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        666⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        667⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        668⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        669⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        670⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        671⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        672⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        673⤵
        
        PID:12060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        674⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        675⤵
        
        PID:13336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        676⤵
        
        PID:13352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        677⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        678⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        679⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        680⤵
        
        PID:13412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        681⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        682⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        683⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        684⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        685⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        686⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        687⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        688⤵
        
        PID:13524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        689⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        690⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        691⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        692⤵
        
        PID:13584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        693⤵
        
        PID:13600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        694⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        695⤵
        
        PID:13628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        696⤵
        
        PID:13644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        697⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        698⤵
        
        PID:13676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        699⤵
        
        PID:13688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        700⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        701⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        702⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        703⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        704⤵
        
        PID:13752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        705⤵
        
        PID:13772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        706⤵
        
        PID:13784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        707⤵
        
        PID:13796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        708⤵
        
        PID:13812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        709⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        710⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        711⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        712⤵
        
        PID:13872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        713⤵
        
        PID:13888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        714⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        715⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        716⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        717⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        718⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        719⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        720⤵
        
        PID:13984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        721⤵
        
        PID:14000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        722⤵
        
        PID:14016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        723⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        724⤵
        
        PID:14048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        725⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        726⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        727⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        728⤵
        
        PID:14104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        729⤵
        
        PID:14120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        730⤵
        
        PID:14136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        731⤵
        
        PID:14152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        732⤵
        
        PID:14164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        733⤵
        
        PID:14180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        734⤵
        
        PID:14196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        735⤵
        
        PID:14212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        736⤵
        
        PID:14228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        737⤵
        
        PID:14240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        738⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        739⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        740⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        741⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        742⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        743⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        744⤵
        
        PID:13664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        745⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        746⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        747⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        748⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        749⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        750⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        751⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        752⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        753⤵
        
        PID:14472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        754⤵
        
        PID:14484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        755⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        756⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        757⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        758⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        759⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        760⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        761⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        762⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        763⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        764⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        765⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        766⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        767⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        768⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        769⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        770⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        771⤵
        
        PID:14732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        772⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        773⤵
        
        PID:14760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        774⤵
        
        PID:14772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        775⤵
        
        PID:14788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        776⤵
        
        PID:14804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        777⤵
        
        PID:14820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        778⤵
        
        PID:14836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        779⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        780⤵
        
        PID:14860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        781⤵
        
        PID:14872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        782⤵
        
        PID:14888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        783⤵
        
        PID:14904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        784⤵
        
        PID:14916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        785⤵
        
        PID:14928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        786⤵
        
        PID:14948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        787⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        788⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        789⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        790⤵
        
        PID:15008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        791⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        792⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        793⤵
        
        PID:15052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        794⤵
        
        PID:15068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        795⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        796⤵
        
        PID:15092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        797⤵
        
        PID:15108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        798⤵
        
        PID:15124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        799⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        800⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        801⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        802⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        803⤵
        
        PID:15204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        804⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        805⤵
        
        PID:15228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        806⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        807⤵
        
        PID:15256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        808⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        809⤵
        
        PID:15288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        810⤵
        
        PID:15304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        811⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        812⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        813⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        814⤵
        
        PID:14684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        815⤵
        
        PID:1440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        816⤵
        
        PID:1284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        817⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        818⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        819⤵
        
        PID:15396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        820⤵
        
        PID:15408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        821⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        822⤵
        
        PID:15440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        823⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        824⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        825⤵
        
        PID:15480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        826⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        827⤵
        
        PID:15512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        828⤵
        
        PID:15524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        829⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        830⤵
        
        PID:15552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        831⤵
        
        PID:15568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        832⤵
        
        PID:15580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        833⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        834⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        835⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        836⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        837⤵
        
        PID:15652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        838⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        839⤵
        
        PID:15684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        840⤵
        
        PID:15700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        841⤵
        
        PID:15716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        842⤵
        
        PID:15732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        843⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        844⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        845⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        846⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        847⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        848⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        849⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        850⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        851⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        852⤵
        
        PID:16000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        853⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        854⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        855⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        856⤵
        
        PID:16088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        857⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        858⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        859⤵
        
        PID:16140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        860⤵
        
        PID:16156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        861⤵
        
        PID:16172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        862⤵
        
        PID:16188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        863⤵
        
        PID:16200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        864⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        865⤵
        
        PID:16232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        866⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        867⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        868⤵
        
        PID:16284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        869⤵
        
        PID:16300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        870⤵
        
        PID:16312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        871⤵
        
        PID:16332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        872⤵
        
        PID:16344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        873⤵
        
        PID:16360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        874⤵
        
        PID:16376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        875⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        876⤵
        
        PID:920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        877⤵
        
        PID:3916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        878⤵
        
        PID:3580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        879⤵
        
        PID:2824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        880⤵
        
        PID:872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        881⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        882⤵
        
        PID:3336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        883⤵
        
        PID:3724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        884⤵
        
        PID:3132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        885⤵
        
        PID:1128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        886⤵
        
        PID:3648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        887⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        888⤵
        
        PID:880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        889⤵
        
        PID:2252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        890⤵
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        891⤵
        
        PID:396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        892⤵
        
        PID:3760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        893⤵
        
        PID:4036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        894⤵
        
        PID:512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        895⤵
        
        PID:2788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        896⤵
        
        PID:4568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        897⤵
        
        PID:4448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        898⤵
        
        PID:2024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\41686d5385a84e3b3d8c46bbcfc8970e_JaffaCakes118.dll,#1
        899⤵
        
        PID:4300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2024-0-0x0000000074D20000-0x0000000074FA4000-memory.dmp

Filesize
2.5MB

Download
memory/2788-3-0x0000000074D20000-0x0000000074FA4000-memory.dmp

Filesize
2.5MB

Download
memory/4448-1-0x0000000074D20000-0x0000000074FA4000-memory.dmp

Filesize
2.5MB

Download
memory/4568-2-0x0000000074D20000-0x0000000074FA4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads