43a1fe8c883543e0ccd9dd76650a7b32f53f8411bf4331c297a7c00cb7342e38

Analysis

max time kernel
94s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 06:06

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll
Size

157KB
MD5

488ab69bc012f10b1bf70e52d933d9c5
SHA1

383add3b879e067e32b0e8bb1f3ed6a889465be4
SHA256

43a1fe8c883543e0ccd9dd76650a7b32f53f8411bf4331c297a7c00cb7342e38
SHA512

75051ff2083a0c198c2e0116275128df53d7781194cac04c9b52e4e846ec83b11a66d96d90da83a566c4ae2eeb425745d95d9134733e6a534e68649eeec78481
SSDEEP

3072:JX/VvZy8cwFhnAEzp/KFN/uX8FqxmW5F8U927fwbB2dSgypMZg5tmuE:JXNhy87nAU/K2XKqAW5Fy1SagA

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 4080 wrote to memory of 4716	4080	rundll32.exe	83
PID 4080 wrote to memory of 4716	4080	rundll32.exe	83
PID 4080 wrote to memory of 4716	4080	rundll32.exe	83
PID 4716 wrote to memory of 4880	4716	rundll32.exe	85
PID 4716 wrote to memory of 4880	4716	rundll32.exe	85
PID 4716 wrote to memory of 4880	4716	rundll32.exe	85
PID 4880 wrote to memory of 1468	4880	rundll32.exe	86
PID 4880 wrote to memory of 1468	4880	rundll32.exe	86
PID 4880 wrote to memory of 1468	4880	rundll32.exe	86
PID 1468 wrote to memory of 2556	1468	rundll32.exe	87
PID 1468 wrote to memory of 2556	1468	rundll32.exe	87
PID 1468 wrote to memory of 2556	1468	rundll32.exe	87
PID 2556 wrote to memory of 3552	2556	rundll32.exe	88
PID 2556 wrote to memory of 3552	2556	rundll32.exe	88
PID 2556 wrote to memory of 3552	2556	rundll32.exe	88
PID 3552 wrote to memory of 2552	3552	rundll32.exe	90
PID 3552 wrote to memory of 2552	3552	rundll32.exe	90
PID 3552 wrote to memory of 2552	3552	rundll32.exe	90
PID 2552 wrote to memory of 4816	2552	rundll32.exe	91
PID 2552 wrote to memory of 4816	2552	rundll32.exe	91
PID 2552 wrote to memory of 4816	2552	rundll32.exe	91
PID 4816 wrote to memory of 4560	4816	rundll32.exe	92
PID 4816 wrote to memory of 4560	4816	rundll32.exe	92
PID 4816 wrote to memory of 4560	4816	rundll32.exe	92
PID 4560 wrote to memory of 5072	4560	rundll32.exe	93
PID 4560 wrote to memory of 5072	4560	rundll32.exe	93
PID 4560 wrote to memory of 5072	4560	rundll32.exe	93
PID 5072 wrote to memory of 2388	5072	rundll32.exe	94
PID 5072 wrote to memory of 2388	5072	rundll32.exe	94
PID 5072 wrote to memory of 2388	5072	rundll32.exe	94
PID 2388 wrote to memory of 4672	2388	rundll32.exe	96
PID 2388 wrote to memory of 4672	2388	rundll32.exe	96
PID 2388 wrote to memory of 4672	2388	rundll32.exe	96
PID 4672 wrote to memory of 2420	4672	rundll32.exe	97
PID 4672 wrote to memory of 2420	4672	rundll32.exe	97
PID 4672 wrote to memory of 2420	4672	rundll32.exe	97
PID 2420 wrote to memory of 516	2420	rundll32.exe	98
PID 2420 wrote to memory of 516	2420	rundll32.exe	98
PID 2420 wrote to memory of 516	2420	rundll32.exe	98
PID 516 wrote to memory of 4244	516	rundll32.exe	99
PID 516 wrote to memory of 4244	516	rundll32.exe	99
PID 516 wrote to memory of 4244	516	rundll32.exe	99
PID 4244 wrote to memory of 4552	4244	rundll32.exe	100
PID 4244 wrote to memory of 4552	4244	rundll32.exe	100
PID 4244 wrote to memory of 4552	4244	rundll32.exe	100
PID 4552 wrote to memory of 4868	4552	rundll32.exe	101
PID 4552 wrote to memory of 4868	4552	rundll32.exe	101
PID 4552 wrote to memory of 4868	4552	rundll32.exe	101
PID 4868 wrote to memory of 1948	4868	rundll32.exe	102
PID 4868 wrote to memory of 1948	4868	rundll32.exe	102
PID 4868 wrote to memory of 1948	4868	rundll32.exe	102
PID 1948 wrote to memory of 4416	1948	rundll32.exe	103
PID 1948 wrote to memory of 4416	1948	rundll32.exe	103
PID 1948 wrote to memory of 4416	1948	rundll32.exe	103
PID 4416 wrote to memory of 3600	4416	rundll32.exe	104
PID 4416 wrote to memory of 3600	4416	rundll32.exe	104
PID 4416 wrote to memory of 3600	4416	rundll32.exe	104
PID 3600 wrote to memory of 4904	3600	rundll32.exe	105
PID 3600 wrote to memory of 4904	3600	rundll32.exe	105
PID 3600 wrote to memory of 4904	3600	rundll32.exe	105
PID 4904 wrote to memory of 2084	4904	rundll32.exe	106
PID 4904 wrote to memory of 2084	4904	rundll32.exe	106
PID 4904 wrote to memory of 2084	4904	rundll32.exe	106
PID 2084 wrote to memory of 808	2084	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:4080
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:4716
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:4880
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1468
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:2556
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:3552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:2552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:5072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:4244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:4868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:1948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        23⤵
        
        PID:808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        24⤵
        
        PID:472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        25⤵
        
        PID:3984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        26⤵
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        27⤵
        
        PID:2796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        28⤵
        
        PID:1472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        29⤵
        
        PID:4668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        30⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        31⤵
        
        PID:1064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        32⤵
        
        PID:2412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        33⤵
        
        PID:2092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        34⤵
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        35⤵
        
        PID:2296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        36⤵
        
        PID:2452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        37⤵
        
        PID:4360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        38⤵
        
        PID:4168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        39⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        40⤵
        
        PID:3200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        41⤵
        
        PID:2768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        42⤵
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        43⤵
        
        PID:1724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        44⤵
        
        PID:2564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        45⤵
        
        PID:4120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        46⤵
        
        PID:2744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        47⤵
        
        PID:1528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        48⤵
        
        PID:688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        49⤵
        
        PID:4720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        50⤵
        
        PID:3608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        51⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        52⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        53⤵
        
        PID:2212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        54⤵
        
        PID:3424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        55⤵
        
        PID:3912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        56⤵
        
        PID:3160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        57⤵
        
        PID:876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        58⤵
        
        PID:3704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        59⤵
        
        PID:3240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        60⤵
        
        PID:4788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        61⤵
        
        PID:4912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        62⤵
        
        PID:3684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        63⤵
        
        PID:1616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        64⤵
        
        PID:3300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        65⤵
        
        PID:1476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        66⤵
        
        PID:4532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        67⤵
        
        PID:4652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        68⤵
        
        PID:3184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        69⤵
        
        PID:3204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        70⤵
        
        PID:2636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        71⤵
        
        PID:1892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        72⤵
        
        PID:1628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        73⤵
        
        PID:3980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        74⤵
        
        PID:1220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        75⤵
        
        PID:536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        76⤵
        
        PID:1192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        77⤵
        
        PID:412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        78⤵
        
        PID:2376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        79⤵
        
        PID:3652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        80⤵
        
        PID:1376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        81⤵
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        82⤵
        
        PID:4924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        83⤵
        
        PID:4356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        84⤵
        
        PID:3100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        85⤵
        
        PID:1464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        86⤵
        
        PID:1608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        87⤵
        
        PID:4540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        88⤵
        
        PID:4252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        89⤵
        
        PID:2316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        90⤵
        
        PID:3368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        91⤵
        
        PID:2008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        92⤵
        
        PID:3760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        93⤵
        
        PID:2956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        94⤵
        
        PID:3700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        95⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        96⤵
        
        PID:4288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        97⤵
        
        PID:2496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        98⤵
        
        PID:2068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        99⤵
        
        PID:4124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        100⤵
        
        PID:4804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        101⤵
        
        PID:1564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        102⤵
        
        PID:1600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        103⤵
        
        PID:3412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        104⤵
        
        PID:1028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        105⤵
        
        PID:3580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        106⤵
        
        PID:456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        107⤵
        
        PID:1648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        108⤵
        
        PID:2208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        109⤵
        
        PID:3612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        110⤵
        
        PID:3228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        111⤵
        
        PID:4300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        112⤵
        
        PID:4404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        113⤵
        
        PID:4284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        114⤵
        
        PID:3032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        115⤵
        
        PID:4688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        116⤵
        
        PID:2308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        117⤵
        
        PID:1732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        118⤵
        
        PID:312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        119⤵
        
        PID:3548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        120⤵
        
        PID:4508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        121⤵
        
        PID:5124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        122⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        123⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        124⤵
        
        PID:5164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        125⤵
        
        PID:5176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        126⤵
        
        PID:5192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        127⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        128⤵
        
        PID:5220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        129⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        130⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        131⤵
        
        PID:5256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        132⤵
        
        PID:5268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        133⤵
        
        PID:5280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        134⤵
        
        PID:5292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        135⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        136⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        137⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        138⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        139⤵
        
        PID:5364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        140⤵
        
        PID:5380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        141⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        142⤵
        
        PID:5408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        143⤵
        
        PID:5424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        144⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        145⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        146⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        147⤵
        
        PID:5480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        148⤵
        
        PID:5496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        149⤵
        
        PID:5508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        150⤵
        
        PID:5520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        151⤵
        
        PID:5532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        152⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        153⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        154⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        155⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        156⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        157⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        158⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        159⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        160⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        161⤵
        
        PID:5668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        162⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        163⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        164⤵
        
        PID:5704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        165⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        166⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        167⤵
        
        PID:5740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        168⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        169⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        170⤵
        
        PID:5784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        171⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        172⤵
        
        PID:5812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        173⤵
        
        PID:5824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        174⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        175⤵
        
        PID:5848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        176⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        177⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        178⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        179⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        180⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        181⤵
        
        PID:5932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        182⤵
        
        PID:5948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        183⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        184⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        185⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        186⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        187⤵
        
        PID:6016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        188⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        189⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        190⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        191⤵
        
        PID:6068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        192⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        193⤵
        
        PID:6096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        194⤵
        
        PID:6112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        195⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        196⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        197⤵
        
        PID:6156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        198⤵
        
        PID:6168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        199⤵
        
        PID:6184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        200⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        201⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        202⤵
        
        PID:6224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        203⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        204⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        205⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        206⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        207⤵
        
        PID:6296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        208⤵
        
        PID:6312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        209⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        210⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        211⤵
        
        PID:6348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        212⤵
        
        PID:6360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        213⤵
        
        PID:6376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        214⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        215⤵
        
        PID:6400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        216⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        217⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        218⤵
        
        PID:6440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        219⤵
        
        PID:6456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        220⤵
        
        PID:6472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        221⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        222⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        223⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        224⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        225⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        226⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        227⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        228⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        229⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        230⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        231⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        232⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        233⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        234⤵
        
        PID:6668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        235⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        236⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        237⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        238⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        239⤵
        
        PID:6732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        240⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        241⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        242⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        243⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        244⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        245⤵
        
        PID:6816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        246⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        247⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        248⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        249⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        250⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        251⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        252⤵
        
        PID:6924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        253⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        254⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        255⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        256⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        257⤵
        
        PID:6996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        258⤵
        
        PID:7012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        259⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        260⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        261⤵
        
        PID:7060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        262⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        263⤵
        
        PID:7092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        264⤵
        
        PID:7104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        265⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        266⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        267⤵
        
        PID:7148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        268⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        269⤵
        
        PID:4792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        270⤵
        
        PID:3296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        271⤵
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        272⤵
        
        PID:468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        273⤵
        
        PID:1104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        274⤵
        
        PID:4852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        275⤵
        
        PID:3928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        276⤵
        
        PID:5060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        277⤵
        
        PID:4072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        278⤵
        
        PID:7180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        279⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        280⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        281⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        282⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        283⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        284⤵
        
        PID:7256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        285⤵
        
        PID:7272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        286⤵
        
        PID:7288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        287⤵
        
        PID:7300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        288⤵
        
        PID:7312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        289⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        290⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        291⤵
        
        PID:7348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        292⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        293⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        294⤵
        
        PID:7388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        295⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        296⤵
        
        PID:7416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        297⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        298⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        299⤵
        
        PID:7452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        300⤵
        
        PID:7464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        301⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        302⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        303⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        304⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        305⤵
        
        PID:7528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        306⤵
        
        PID:7540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        307⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        308⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        309⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        310⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        311⤵
        
        PID:7612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        312⤵
        
        PID:7628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        313⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        314⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        315⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        316⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        317⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        318⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        319⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        320⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        321⤵
        
        PID:7752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        322⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        323⤵
        
        PID:7776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        324⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        325⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        326⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        327⤵
        
        PID:7836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        328⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        329⤵
        
        PID:7864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        330⤵
        
        PID:7880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        331⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        332⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        333⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        334⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        335⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        336⤵
        
        PID:7968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        337⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        338⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        339⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        340⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        341⤵
        
        PID:8032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        342⤵
        
        PID:8048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        343⤵
        
        PID:8064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        344⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        345⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        346⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        347⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        348⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        349⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        350⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        351⤵
        
        PID:8180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        352⤵
        
        PID:2592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        353⤵
        
        PID:8204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        354⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        355⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        356⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        357⤵
        
        PID:8256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        358⤵
        
        PID:8272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        359⤵
        
        PID:8284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        360⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        361⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        362⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        363⤵
        
        PID:8332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        364⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        365⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        366⤵
        
        PID:8368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        367⤵
        
        PID:8380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        368⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        369⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        370⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        371⤵
        
        PID:8428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        372⤵
        
        PID:8440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        373⤵
        
        PID:8452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        374⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        375⤵
        
        PID:8476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        376⤵
        
        PID:8488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        377⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        378⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        379⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        380⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        381⤵
        
        PID:8552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        382⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        383⤵
        
        PID:8580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        384⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        385⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        386⤵
        
        PID:8624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        387⤵
        
        PID:8640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        388⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        389⤵
        
        PID:8664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        390⤵
        
        PID:8680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        391⤵
        
        PID:8696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        392⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        393⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        394⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        395⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        396⤵
        
        PID:8772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        397⤵
        
        PID:8788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        398⤵
        
        PID:8804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        399⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        400⤵
        
        PID:8832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        401⤵
        
        PID:8848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        402⤵
        
        PID:8864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        403⤵
        
        PID:8880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        404⤵
        
        PID:8896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        405⤵
        
        PID:8912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        406⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        407⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        408⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        409⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        410⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        411⤵
        
        PID:8996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        412⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        413⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        414⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        415⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        416⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        417⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        418⤵
        
        PID:9088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        419⤵
        
        PID:9104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        420⤵
        
        PID:9116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        421⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        422⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        423⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        424⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        425⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        426⤵
        
        PID:9204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        427⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        428⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        429⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        430⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        431⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        432⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        433⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        434⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        435⤵
        
        PID:9336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        436⤵
        
        PID:9348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        437⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        438⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        439⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        440⤵
        
        PID:9400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        441⤵
        
        PID:9412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        442⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        443⤵
        
        PID:9440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        444⤵
        
        PID:9452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        445⤵
        
        PID:9464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        446⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        447⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        448⤵
        
        PID:9500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        449⤵
        
        PID:9512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        450⤵
        
        PID:9524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        451⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        452⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        453⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        454⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        455⤵
        
        PID:9592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        456⤵
        
        PID:9604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        457⤵
        
        PID:9620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        458⤵
        
        PID:9632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        459⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        460⤵
        
        PID:9656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        461⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        462⤵
        
        PID:9680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        463⤵
        
        PID:9692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        464⤵
        
        PID:9708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        465⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        466⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        467⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        468⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        469⤵
        
        PID:9772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        470⤵
        
        PID:9784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        471⤵
        
        PID:9796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        472⤵
        
        PID:9808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        473⤵
        
        PID:9820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        474⤵
        
        PID:9832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        475⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        476⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        477⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        478⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        479⤵
        
        PID:9896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        480⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        481⤵
        
        PID:9920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        482⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        483⤵
        
        PID:9944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        484⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        485⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        486⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        487⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        488⤵
        
        PID:10008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        489⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        490⤵
        
        PID:10036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        491⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        492⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        493⤵
        
        PID:10072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        494⤵
        
        PID:10088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        495⤵
        
        PID:10100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        496⤵
        
        PID:10112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        497⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        498⤵
        
        PID:10140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        499⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        500⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        501⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        502⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        503⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        504⤵
        
        PID:10216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        505⤵
        
        PID:10232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        506⤵
        
        PID:10244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        507⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        508⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        509⤵
        
        PID:10280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        510⤵
        
        PID:10292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        511⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        512⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        513⤵
        
        PID:10328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        514⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        515⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        516⤵
        
        PID:10376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        517⤵
        
        PID:10388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        518⤵
        
        PID:10404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        519⤵
        
        PID:10416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        520⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        521⤵
        
        PID:10440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        522⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        523⤵
        
        PID:10464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        524⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        525⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        526⤵
        
        PID:10500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        527⤵
        
        PID:10512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        528⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        529⤵
        
        PID:10544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        530⤵
        
        PID:10560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        531⤵
        
        PID:10572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        532⤵
        
        PID:10588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        533⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        534⤵
        
        PID:10612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        535⤵
        
        PID:10624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        536⤵
        
        PID:10636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        537⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        538⤵
        
        PID:10660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        539⤵
        
        PID:10672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        540⤵
        
        PID:10684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        541⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        542⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        543⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        544⤵
        
        PID:10732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        545⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        546⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        547⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        548⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        549⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        550⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        551⤵
        
        PID:10824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        552⤵
        
        PID:10840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        553⤵
        
        PID:10856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        554⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        555⤵
        
        PID:10888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        556⤵
        
        PID:10900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        557⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        558⤵
        
        PID:10924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        559⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        560⤵
        
        PID:10948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        561⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        562⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        563⤵
        
        PID:10992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        564⤵
        
        PID:11008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        565⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        566⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        567⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        568⤵
        
        PID:11056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        569⤵
        
        PID:11068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        570⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        571⤵
        
        PID:11092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        572⤵
        
        PID:11104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        573⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        574⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        575⤵
        
        PID:11140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        576⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        577⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        578⤵
        
        PID:11180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        579⤵
        
        PID:11196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        580⤵
        
        PID:11208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        581⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        582⤵
        
        PID:11232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        583⤵
        
        PID:11244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        584⤵
        
        PID:11256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        585⤵
        
        PID:11268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        586⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        587⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        588⤵
        
        PID:11304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        589⤵
        
        PID:11320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        590⤵
        
        PID:11332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        591⤵
        
        PID:11344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        592⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        593⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        594⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        595⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        596⤵
        
        PID:11416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        597⤵
        
        PID:11428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        598⤵
        
        PID:11440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        599⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        600⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        601⤵
        
        PID:11476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        602⤵
        
        PID:11492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        603⤵
        
        PID:11508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        604⤵
        
        PID:11520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        605⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        606⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        607⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        608⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        609⤵
        
        PID:11584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        610⤵
        
        PID:11596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        611⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        612⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        613⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        614⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        615⤵
        
        PID:11664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        616⤵
        
        PID:11680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        617⤵
        
        PID:11696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        618⤵
        
        PID:11712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        619⤵
        
        PID:11724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        620⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        621⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        622⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        623⤵
        
        PID:11776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        624⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        625⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        626⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        627⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        628⤵
        
        PID:11840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        629⤵
        
        PID:11852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        630⤵
        
        PID:11864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        631⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        632⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        633⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        634⤵
        
        PID:11916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        635⤵
        
        PID:11932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        636⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        637⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        638⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        639⤵
        
        PID:11980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        640⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        641⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        642⤵
        
        PID:12016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        643⤵
        
        PID:12028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        644⤵
        
        PID:12040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        645⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        646⤵
        
        PID:12064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        647⤵
        
        PID:12076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        648⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        649⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        650⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        651⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        652⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        653⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        654⤵
        
        PID:12168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        655⤵
        
        PID:12180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        656⤵
        
        PID:12192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        657⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        658⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        659⤵
        
        PID:12228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        660⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        661⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        662⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        663⤵
        
        PID:12280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        664⤵
        
        PID:12292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        665⤵
        
        PID:12304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        666⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        667⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        668⤵
        
        PID:12340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        669⤵
        
        PID:12352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        670⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        671⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        672⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        673⤵
        
        PID:12400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        674⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        675⤵
        
        PID:12424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        676⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        677⤵
        
        PID:12448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        678⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        679⤵
        
        PID:12472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        680⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        681⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        682⤵
        
        PID:12508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        683⤵
        
        PID:12520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        684⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        685⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        686⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        687⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        688⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        689⤵
        
        PID:12596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        690⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        691⤵
        
        PID:12620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        692⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        693⤵
        
        PID:12644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        694⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        695⤵
        
        PID:12668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        696⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        697⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        698⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        699⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        700⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        701⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        702⤵
        
        PID:12764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        703⤵
        
        PID:12776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        704⤵
        
        PID:12788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        705⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        706⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        707⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        708⤵
        
        PID:12836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        709⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        710⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        711⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        712⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        713⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        714⤵
        
        PID:12908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        715⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        716⤵
        
        PID:12932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        717⤵
        
        PID:12948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        718⤵
        
        PID:12964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        719⤵
        
        PID:12976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        720⤵
        
        PID:12988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        721⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        722⤵
        
        PID:13012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        723⤵
        
        PID:13024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        724⤵
        
        PID:13040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        725⤵
        
        PID:13052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        726⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        727⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        728⤵
        
        PID:13088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        729⤵
        
        PID:13100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        730⤵
        
        PID:13112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        731⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        732⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        733⤵
        
        PID:13148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        734⤵
        
        PID:13164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        735⤵
        
        PID:13180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        736⤵
        
        PID:13192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        737⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        738⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        739⤵
        
        PID:13240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        740⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        741⤵
        
        PID:13264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        742⤵
        
        PID:13276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        743⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        744⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        745⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        746⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        747⤵
        
        PID:13344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        748⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        749⤵
        
        PID:13368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        750⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        751⤵
        
        PID:13392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        752⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        753⤵
        
        PID:13416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        754⤵
        
        PID:13428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        755⤵
        
        PID:13444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        756⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        757⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        758⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        759⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        760⤵
        
        PID:13508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        761⤵
        
        PID:13520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        762⤵
        
        PID:13532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        763⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        764⤵
        
        PID:13556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        765⤵
        
        PID:13568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        766⤵
        
        PID:13580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        767⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        768⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        769⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        770⤵
        
        PID:13632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        771⤵
        
        PID:13644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        772⤵
        
        PID:13656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        773⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        774⤵
        
        PID:13680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        775⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        776⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        777⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        778⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        779⤵
        
        PID:13744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        780⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        781⤵
        
        PID:13768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        782⤵
        
        PID:13780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        783⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        784⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        785⤵
        
        PID:13816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        786⤵
        
        PID:13828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        787⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        788⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        789⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        790⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        791⤵
        
        PID:13892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        792⤵
        
        PID:13904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        793⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        794⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        795⤵
        
        PID:13940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        796⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        797⤵
        
        PID:13964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        798⤵
        
        PID:13980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        799⤵
        
        PID:13992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        800⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        801⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        802⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        803⤵
        
        PID:14044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        804⤵
        
        PID:14060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        805⤵
        
        PID:14072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        806⤵
        
        PID:14088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        807⤵
        
        PID:14100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        808⤵
        
        PID:14116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        809⤵
        
        PID:14132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        810⤵
        
        PID:14144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        811⤵
        
        PID:14160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        812⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        813⤵
        
        PID:14192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        814⤵
        
        PID:14208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        815⤵
        
        PID:14220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        816⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        817⤵
        
        PID:14244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        818⤵
        
        PID:14256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        819⤵
        
        PID:14268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        820⤵
        
        PID:14284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        821⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        822⤵
        
        PID:14308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        823⤵
        
        PID:14324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        824⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        825⤵
        
        PID:4572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        826⤵
        
        PID:444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        827⤵
        
        PID:14344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        828⤵
        
        PID:14356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        829⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        830⤵
        
        PID:14380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        831⤵
        
        PID:14396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        832⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        833⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        834⤵
        
        PID:14444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        835⤵
        
        PID:14460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        836⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        837⤵
        
        PID:14492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        838⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        839⤵
        
        PID:14520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        840⤵
        
        PID:14536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        841⤵
        
        PID:14548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        842⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        843⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        844⤵
        
        PID:14584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        845⤵
        
        PID:14596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        846⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        847⤵
        
        PID:14624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        848⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        849⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        850⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        851⤵
        
        PID:14672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        852⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        853⤵
        
        PID:14700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        854⤵
        
        PID:14712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        855⤵
        
        PID:14724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        856⤵
        
        PID:14740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        857⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        858⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        859⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        860⤵
        
        PID:14800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        861⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        862⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        863⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        864⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        865⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        866⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        867⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        868⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        869⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        870⤵
        
        PID:14932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        871⤵
        
        PID:14944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        872⤵
        
        PID:14956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        873⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        874⤵
        
        PID:14988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        875⤵
        
        PID:15000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        876⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        877⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        878⤵
        
        PID:15036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        879⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        880⤵
        
        PID:15060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        881⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        882⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        883⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        884⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        885⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        886⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        887⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        888⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        889⤵
        
        PID:15180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        890⤵
        
        PID:15192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        891⤵
        
        PID:15208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        892⤵
        
        PID:15224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        893⤵
        
        PID:15236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        894⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        895⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        896⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        897⤵
        
        PID:15284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        898⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        899⤵
        
        PID:15308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        900⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        901⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        902⤵
        
        PID:15348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\488ab69bc012f10b1bf70e52d933d9c5_JaffaCakes118.dll,#1
        903⤵
        
        PID:15364

C:\Windows\system32\BackgroundTaskHost.exe
"C:\Windows\system32\BackgroundTaskHost.exe" -ServerName:BackgroundTaskHost.WebAccountProvider
1⤵
PID:2308

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/15308-2-0x00000000753A0000-0x0000000075624000-memory.dmp

Filesize
2.5MB

Download
memory/15324-1-0x00000000753A0000-0x0000000075624000-memory.dmp

Filesize
2.5MB

Download
memory/15336-0-0x00000000753A0000-0x0000000075624000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads