26c327aa94952bcb1153c4ceb33e6dfc0b5e9f20c858549251317fa7e9aaa129

Analysis

max time kernel
146s
max time network
131s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
21/07/2024, 20:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll
Size

122KB
MD5

61410f495ead5c4a58bec825039fdb84
SHA1

db654bc9a25f9a697d824f19f2792b790dc8b38d
SHA256

26c327aa94952bcb1153c4ceb33e6dfc0b5e9f20c858549251317fa7e9aaa129
SHA512

a520d4b7e3469587886a6d2591fc1e13db9bef565e9c336ace6b8596ef50587e5ee2a843e4bae8b90be8a476fa41c9157f8ae28ed8d8ced0ab30c2ab1275a739
SSDEEP

1536:AZwFVIqtQbFWSjOgz0Je+Y3biV2GMpT0elwjGfgoy:ONqtQbbRzWkiVts0eAGLy

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 5036 wrote to memory of 1508	5036	rundll32.exe	84
PID 5036 wrote to memory of 1508	5036	rundll32.exe	84
PID 5036 wrote to memory of 1508	5036	rundll32.exe	84
PID 1508 wrote to memory of 1648	1508	rundll32.exe	85
PID 1508 wrote to memory of 1648	1508	rundll32.exe	85
PID 1508 wrote to memory of 1648	1508	rundll32.exe	85
PID 1648 wrote to memory of 1460	1648	rundll32.exe	86
PID 1648 wrote to memory of 1460	1648	rundll32.exe	86
PID 1648 wrote to memory of 1460	1648	rundll32.exe	86
PID 1460 wrote to memory of 3816	1460	rundll32.exe	87
PID 1460 wrote to memory of 3816	1460	rundll32.exe	87
PID 1460 wrote to memory of 3816	1460	rundll32.exe	87
PID 3816 wrote to memory of 4480	3816	rundll32.exe	88
PID 3816 wrote to memory of 4480	3816	rundll32.exe	88
PID 3816 wrote to memory of 4480	3816	rundll32.exe	88
PID 4480 wrote to memory of 1616	4480	rundll32.exe	89
PID 4480 wrote to memory of 1616	4480	rundll32.exe	89
PID 4480 wrote to memory of 1616	4480	rundll32.exe	89
PID 1616 wrote to memory of 2324	1616	rundll32.exe	90
PID 1616 wrote to memory of 2324	1616	rundll32.exe	90
PID 1616 wrote to memory of 2324	1616	rundll32.exe	90
PID 2324 wrote to memory of 4224	2324	rundll32.exe	91
PID 2324 wrote to memory of 4224	2324	rundll32.exe	91
PID 2324 wrote to memory of 4224	2324	rundll32.exe	91
PID 4224 wrote to memory of 3764	4224	rundll32.exe	92
PID 4224 wrote to memory of 3764	4224	rundll32.exe	92
PID 4224 wrote to memory of 3764	4224	rundll32.exe	92
PID 3764 wrote to memory of 2240	3764	rundll32.exe	93
PID 3764 wrote to memory of 2240	3764	rundll32.exe	93
PID 3764 wrote to memory of 2240	3764	rundll32.exe	93
PID 2240 wrote to memory of 4020	2240	rundll32.exe	94
PID 2240 wrote to memory of 4020	2240	rundll32.exe	94
PID 2240 wrote to memory of 4020	2240	rundll32.exe	94
PID 4020 wrote to memory of 4820	4020	rundll32.exe	95
PID 4020 wrote to memory of 4820	4020	rundll32.exe	95
PID 4020 wrote to memory of 4820	4020	rundll32.exe	95
PID 4820 wrote to memory of 2144	4820	rundll32.exe	97
PID 4820 wrote to memory of 2144	4820	rundll32.exe	97
PID 4820 wrote to memory of 2144	4820	rundll32.exe	97
PID 2144 wrote to memory of 2684	2144	rundll32.exe	98
PID 2144 wrote to memory of 2684	2144	rundll32.exe	98
PID 2144 wrote to memory of 2684	2144	rundll32.exe	98
PID 2684 wrote to memory of 4448	2684	rundll32.exe	99
PID 2684 wrote to memory of 4448	2684	rundll32.exe	99
PID 2684 wrote to memory of 4448	2684	rundll32.exe	99
PID 4448 wrote to memory of 2352	4448	rundll32.exe	100
PID 4448 wrote to memory of 2352	4448	rundll32.exe	100
PID 4448 wrote to memory of 2352	4448	rundll32.exe	100
PID 2352 wrote to memory of 3428	2352	rundll32.exe	101
PID 2352 wrote to memory of 3428	2352	rundll32.exe	101
PID 2352 wrote to memory of 3428	2352	rundll32.exe	101
PID 3428 wrote to memory of 900	3428	rundll32.exe	102
PID 3428 wrote to memory of 900	3428	rundll32.exe	102
PID 3428 wrote to memory of 900	3428	rundll32.exe	102
PID 900 wrote to memory of 3496	900	rundll32.exe	103
PID 900 wrote to memory of 3496	900	rundll32.exe	103
PID 900 wrote to memory of 3496	900	rundll32.exe	103
PID 3496 wrote to memory of 2408	3496	rundll32.exe	104
PID 3496 wrote to memory of 2408	3496	rundll32.exe	104
PID 3496 wrote to memory of 2408	3496	rundll32.exe	104
PID 2408 wrote to memory of 2432	2408	rundll32.exe	106
PID 2408 wrote to memory of 2432	2408	rundll32.exe	106
PID 2408 wrote to memory of 2432	2408	rundll32.exe	106
PID 2432 wrote to memory of 2308	2432	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:5036
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1508
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1648
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:1460
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3816
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:4480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:1616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:2324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:4224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:2240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:2684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:4448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:2352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:3428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:3496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:2408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        23⤵
        
        PID:2308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        24⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        25⤵
        
        PID:112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        26⤵
        
        PID:412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        27⤵
        
        PID:4948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        28⤵
        
        PID:1972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        29⤵
        
        PID:896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        30⤵
        
        PID:3788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        31⤵
        
        PID:2152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        32⤵
        
        PID:732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        33⤵
        
        PID:2812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        34⤵
        
        PID:1208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        35⤵
        
        PID:312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        36⤵
        
        PID:2332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        37⤵
        
        PID:4144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        38⤵
        
        PID:3396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        39⤵
        
        PID:2804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        40⤵
        
        PID:4196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        41⤵
        
        PID:1356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        42⤵
        
        PID:3956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        43⤵
        
        PID:3488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        44⤵
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        45⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        46⤵
        
        PID:3820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        47⤵
        
        PID:996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        48⤵
        
        PID:2004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        49⤵
        
        PID:2916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        50⤵
        
        PID:1928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        51⤵
        
        PID:3952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        52⤵
        
        PID:4904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        53⤵
        
        PID:3288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        54⤵
        
        PID:1700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        55⤵
        
        PID:1316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        56⤵
        
        PID:4272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        57⤵
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        58⤵
        
        PID:4960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        59⤵
        
        PID:2016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        60⤵
        
        PID:3024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        61⤵
        
        PID:2532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        62⤵
        
        PID:4732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        63⤵
        
        PID:1768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        64⤵
        
        PID:740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        65⤵
        
        PID:2984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        66⤵
        
        PID:3868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        67⤵
        
        PID:2200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        68⤵
        
        PID:4760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        69⤵
        
        PID:532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        70⤵
        
        PID:2556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        71⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        72⤵
        
        PID:2888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        73⤵
        
        PID:1968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        74⤵
        
        PID:800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        75⤵
        
        PID:5064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        76⤵
        
        PID:4908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        77⤵
        
        PID:1384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        78⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        79⤵
        
        PID:664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        80⤵
        
        PID:2076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        81⤵
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        82⤵
        
        PID:3984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        83⤵
        
        PID:4060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        84⤵
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        85⤵
        
        PID:4768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        86⤵
        
        PID:2740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        87⤵
        
        PID:4080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        88⤵
        
        PID:4980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        89⤵
        
        PID:4208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        90⤵
        
        PID:2988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        91⤵
        
        PID:5052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        92⤵
        
        PID:1528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        93⤵
        
        PID:3808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        94⤵
        
        PID:2384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        95⤵
        
        PID:684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        96⤵
        
        PID:2528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        97⤵
        
        PID:2052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        98⤵
        
        PID:4248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        99⤵
        
        PID:4296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        100⤵
        
        PID:4388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        101⤵
        
        PID:508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        102⤵
        
        PID:3056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        103⤵
        
        PID:3664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        104⤵
        
        PID:3612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        105⤵
        
        PID:1076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        106⤵
        
        PID:5040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        107⤵
        
        PID:4416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        108⤵
        
        PID:4192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        109⤵
        
        PID:5124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        110⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        111⤵
        
        PID:5152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        112⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        113⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        114⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        115⤵
        
        PID:5212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        116⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        117⤵
        
        PID:5244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        118⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        119⤵
        
        PID:5272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        120⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        121⤵
        
        PID:5300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        122⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        123⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        124⤵
        
        PID:5348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        125⤵
        
        PID:5372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        126⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        127⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        128⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        129⤵
        
        PID:5436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        130⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        131⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        132⤵
        
        PID:5488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        133⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        134⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        135⤵
        
        PID:5568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        136⤵
        
        PID:5596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        137⤵
        
        PID:5612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        138⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        139⤵
        
        PID:5640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        140⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        141⤵
        
        PID:5676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        142⤵
        
        PID:5692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        143⤵
        
        PID:5708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        144⤵
        
        PID:5720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        145⤵
        
        PID:5736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        146⤵
        
        PID:5752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        147⤵
        
        PID:5768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        148⤵
        
        PID:5788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        149⤵
        
        PID:5800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        150⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        151⤵
        
        PID:5840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        152⤵
        
        PID:5856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        153⤵
        
        PID:5872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        154⤵
        
        PID:5892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        155⤵
        
        PID:5908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        156⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        157⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        158⤵
        
        PID:5956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        159⤵
        
        PID:5972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        160⤵
        
        PID:5988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        161⤵
        
        PID:6004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        162⤵
        
        PID:6020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        163⤵
        
        PID:6036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        164⤵
        
        PID:6064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        165⤵
        
        PID:6080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        166⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        167⤵
        
        PID:6132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        168⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        169⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        170⤵
        
        PID:6216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        171⤵
        
        PID:6232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        172⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        173⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        174⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        175⤵
        
        PID:6372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        176⤵
        
        PID:6388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        177⤵
        
        PID:6404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        178⤵
        
        PID:6428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        179⤵
        
        PID:6444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        180⤵
        
        PID:6464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        181⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        182⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        183⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        184⤵
        
        PID:6548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        185⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        186⤵
        
        PID:6580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        187⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        188⤵
        
        PID:6616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        189⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        190⤵
        
        PID:6644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        191⤵
        
        PID:6660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        192⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        193⤵
        
        PID:6692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        194⤵
        
        PID:6708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        195⤵
        
        PID:6724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        196⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        197⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        198⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        199⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        200⤵
        
        PID:6804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        201⤵
        
        PID:6820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        202⤵
        
        PID:6836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        203⤵
        
        PID:6852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        204⤵
        
        PID:6868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        205⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        206⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        207⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        208⤵
        
        PID:6932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        209⤵
        
        PID:6948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        210⤵
        
        PID:6964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        211⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        212⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        213⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        214⤵
        
        PID:7028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        215⤵
        
        PID:7044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        216⤵
        
        PID:7056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        217⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        218⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        219⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        220⤵
        
        PID:7108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        221⤵
        
        PID:7124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        222⤵
        
        PID:7136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        223⤵
        
        PID:7152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        224⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        225⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        226⤵
        
        PID:7192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        227⤵
        
        PID:7208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        228⤵
        
        PID:7224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        229⤵
        
        PID:7240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        230⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        231⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        232⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        233⤵
        
        PID:7344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        234⤵
        
        PID:7360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        235⤵
        
        PID:7376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        236⤵
        
        PID:7392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        237⤵
        
        PID:7404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        238⤵
        
        PID:7424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        239⤵
        
        PID:7436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        240⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        241⤵
        
        PID:7472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        242⤵
        
        PID:7488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        243⤵
        
        PID:7504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        244⤵
        
        PID:7520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        245⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        246⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        247⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        248⤵
        
        PID:7580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        249⤵
        
        PID:7600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        250⤵
        
        PID:7616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        251⤵
        
        PID:7632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        252⤵
        
        PID:7648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        253⤵
        
        PID:7660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        254⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        255⤵
        
        PID:7692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        256⤵
        
        PID:7708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        257⤵
        
        PID:7720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        258⤵
        
        PID:7736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        259⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        260⤵
        
        PID:7772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        261⤵
        
        PID:7792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        262⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        263⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        264⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        265⤵
        
        PID:7856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        266⤵
        
        PID:7868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        267⤵
        
        PID:7884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        268⤵
        
        PID:7900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        269⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        270⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        271⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        272⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        273⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        274⤵
        
        PID:7996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        275⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        276⤵
        
        PID:8024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        277⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        278⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        279⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        280⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        281⤵
        
        PID:8112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        282⤵
        
        PID:8128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        283⤵
        
        PID:8140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        284⤵
        
        PID:8156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        285⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        286⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        287⤵
        
        PID:4936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        288⤵
        
        PID:4092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        289⤵
        
        PID:1716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        290⤵
        
        PID:3336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        291⤵
        
        PID:5880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        292⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        293⤵
        
        PID:8212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        294⤵
        
        PID:8228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        295⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        296⤵
        
        PID:8260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        297⤵
        
        PID:8276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        298⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        299⤵
        
        PID:8308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        300⤵
        
        PID:8324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        301⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        302⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        303⤵
        
        PID:8412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        304⤵
        
        PID:8444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        305⤵
        
        PID:8456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        306⤵
        
        PID:8472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        307⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        308⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        309⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        310⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        311⤵
        
        PID:8540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        312⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        313⤵
        
        PID:8572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        314⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        315⤵
        
        PID:8604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        316⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        317⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        318⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        319⤵
        
        PID:8664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        320⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        321⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        322⤵
        
        PID:8712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        323⤵
        
        PID:8724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        324⤵
        
        PID:8740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        325⤵
        
        PID:8756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        326⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        327⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        328⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        329⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        330⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        331⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        332⤵
        
        PID:8860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        333⤵
        
        PID:8876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        334⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        335⤵
        
        PID:8904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        336⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        337⤵
        
        PID:8928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        338⤵
        
        PID:8940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        339⤵
        
        PID:8956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        340⤵
        
        PID:8972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        341⤵
        
        PID:8988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        342⤵
        
        PID:9004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        343⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        344⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        345⤵
        
        PID:9052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        346⤵
        
        PID:9068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        347⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        348⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        349⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        350⤵
        
        PID:9124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        351⤵
        
        PID:9140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        352⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        353⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        354⤵
        
        PID:9192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        355⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        356⤵
        
        PID:8672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        357⤵
        
        PID:9232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        358⤵
        
        PID:9248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        359⤵
        
        PID:9264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        360⤵
        
        PID:9280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        361⤵
        
        PID:9296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        362⤵
        
        PID:9312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        363⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        364⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        365⤵
        
        PID:9360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        366⤵
        
        PID:9376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        367⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        368⤵
        
        PID:9408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        369⤵
        
        PID:9420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        370⤵
        
        PID:9440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        371⤵
        
        PID:9456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        372⤵
        
        PID:9472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        373⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        374⤵
        
        PID:9504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        375⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        376⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        377⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        378⤵
        
        PID:9568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        379⤵
        
        PID:9584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        380⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        381⤵
        
        PID:9644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        382⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        383⤵
        
        PID:9704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        384⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        385⤵
        
        PID:9736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        386⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        387⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        388⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        389⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        390⤵
        
        PID:9828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        391⤵
        
        PID:9844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        392⤵
        
        PID:9860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        393⤵
        
        PID:9876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        394⤵
        
        PID:9888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        395⤵
        
        PID:9908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        396⤵
        
        PID:9924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        397⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        398⤵
        
        PID:9956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        399⤵
        
        PID:9972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        400⤵
        
        PID:9988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        401⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        402⤵
        
        PID:10020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        403⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        404⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        405⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        406⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        407⤵
        
        PID:10092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        408⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        409⤵
        
        PID:10124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        410⤵
        
        PID:10140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        411⤵
        
        PID:10156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        412⤵
        
        PID:10172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        413⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        414⤵
        
        PID:10204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        415⤵
        
        PID:10220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        416⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        417⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        418⤵
        
        PID:10256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        419⤵
        
        PID:10272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        420⤵
        
        PID:10288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        421⤵
        
        PID:10304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        422⤵
        
        PID:10320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        423⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        424⤵
        
        PID:10344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        425⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        426⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        427⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        428⤵
        
        PID:10408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        429⤵
        
        PID:10420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        430⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        431⤵
        
        PID:10448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        432⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        433⤵
        
        PID:10484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        434⤵
        
        PID:10496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        435⤵
        
        PID:10508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        436⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        437⤵
        
        PID:10536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        438⤵
        
        PID:10548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        439⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        440⤵
        
        PID:10584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        441⤵
        
        PID:10604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        442⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        443⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        444⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        445⤵
        
        PID:10660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        446⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        447⤵
        
        PID:10692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        448⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        449⤵
        
        PID:10728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        450⤵
        
        PID:10744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        451⤵
        
        PID:10760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        452⤵
        
        PID:10776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        453⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        454⤵
        
        PID:10800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        455⤵
        
        PID:10812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        456⤵
        
        PID:10828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        457⤵
        
        PID:10844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        458⤵
        
        PID:10860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        459⤵
        
        PID:10872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        460⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        461⤵
        
        PID:10896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        462⤵
        
        PID:10912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        463⤵
        
        PID:10928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        464⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        465⤵
        
        PID:10960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        466⤵
        
        PID:10972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        467⤵
        
        PID:10984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        468⤵
        
        PID:11004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        469⤵
        
        PID:11020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        470⤵
        
        PID:11036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        471⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        472⤵
        
        PID:11064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        473⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        474⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        475⤵
        
        PID:11112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        476⤵
        
        PID:11128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        477⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        478⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        479⤵
        
        PID:11188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        480⤵
        
        PID:11204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        481⤵
        
        PID:11220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        482⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        483⤵
        
        PID:11252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        484⤵
        
        PID:5584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        485⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        486⤵
        
        PID:5576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        487⤵
        
        PID:5548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        488⤵
        
        PID:4548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        489⤵
        
        PID:2248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        490⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        491⤵
        
        PID:4292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        492⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        493⤵
        
        PID:11288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        494⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        495⤵
        
        PID:11316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        496⤵
        
        PID:11328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        497⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        498⤵
        
        PID:11352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        499⤵
        
        PID:11368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        500⤵
        
        PID:11380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        501⤵
        
        PID:11396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        502⤵
        
        PID:11408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        503⤵
        
        PID:11428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        504⤵
        
        PID:11444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        505⤵
        
        PID:11460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        506⤵
        
        PID:11472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        507⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        508⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        509⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        510⤵
        
        PID:11528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        511⤵
        
        PID:11540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        512⤵
        
        PID:11560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        513⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        514⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        515⤵
        
        PID:11608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        516⤵
        
        PID:11628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        517⤵
        
        PID:11644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        518⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        519⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        520⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        521⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        522⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        523⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        524⤵
        
        PID:11752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        525⤵
        
        PID:11768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        526⤵
        
        PID:11784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        527⤵
        
        PID:11800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        528⤵
        
        PID:11816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        529⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        530⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        531⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        532⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        533⤵
        
        PID:11896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        534⤵
        
        PID:11912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        535⤵
        
        PID:11928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        536⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        537⤵
        
        PID:11960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        538⤵
        
        PID:11976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        539⤵
        
        PID:11992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        540⤵
        
        PID:12008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        541⤵
        
        PID:12024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        542⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        543⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        544⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        545⤵
        
        PID:12088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        546⤵
        
        PID:12104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        547⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        548⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        549⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        550⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        551⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        552⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        553⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        554⤵
        
        PID:12240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        555⤵
        
        PID:12256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        556⤵
        
        PID:11212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        557⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        558⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        559⤵
        
        PID:12332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        560⤵
        
        PID:12348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        561⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        562⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        563⤵
        
        PID:12392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        564⤵
        
        PID:12408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        565⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        566⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        567⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        568⤵
        
        PID:12476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        569⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        570⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        571⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        572⤵
        
        PID:12548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        573⤵
        
        PID:12564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        574⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        575⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        576⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        577⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        578⤵
        
        PID:12636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        579⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        580⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        581⤵
        
        PID:12688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        582⤵
        
        PID:12704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        583⤵
        
        PID:12720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        584⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        585⤵
        
        PID:12752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        586⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        587⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        588⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        589⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        590⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        591⤵
        
        PID:12848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        592⤵
        
        PID:12864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        593⤵
        
        PID:12880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        594⤵
        
        PID:12896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        595⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        596⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        597⤵
        
        PID:12944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        598⤵
        
        PID:12956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        599⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        600⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        601⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        602⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        603⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        604⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        605⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        606⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        607⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        608⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        609⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        610⤵
        
        PID:13140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        611⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        612⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        613⤵
        
        PID:13184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        614⤵
        
        PID:13196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        615⤵
        
        PID:13208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        616⤵
        
        PID:13224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        617⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        618⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        619⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        620⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        621⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        622⤵
        
        PID:9676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        623⤵
        
        PID:13316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        624⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        625⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        626⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        627⤵
        
        PID:13380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        628⤵
        
        PID:13396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        629⤵
        
        PID:13408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        630⤵
        
        PID:13424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        631⤵
        
        PID:13440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        632⤵
        
        PID:13456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        633⤵
        
        PID:13472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        634⤵
        
        PID:13488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        635⤵
        
        PID:13504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        636⤵
        
        PID:13520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        637⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        638⤵
        
        PID:13552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        639⤵
        
        PID:13572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        640⤵
        
        PID:13588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        641⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        642⤵
        
        PID:13616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        643⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        644⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        645⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        646⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        647⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        648⤵
        
        PID:13712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        649⤵
        
        PID:13724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        650⤵
        
        PID:13740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        651⤵
        
        PID:13756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        652⤵
        
        PID:13772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        653⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        654⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        655⤵
        
        PID:13820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        656⤵
        
        PID:13836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        657⤵
        
        PID:13848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        658⤵
        
        PID:13864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        659⤵
        
        PID:13880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        660⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        661⤵
        
        PID:13912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        662⤵
        
        PID:13928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        663⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        664⤵
        
        PID:13956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        665⤵
        
        PID:13972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        666⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        667⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        668⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        669⤵
        
        PID:14040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        670⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        671⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        672⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        673⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        674⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        675⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        676⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        677⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        678⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        679⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        680⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        681⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        682⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        683⤵
        
        PID:14244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        684⤵
        
        PID:14260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        685⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        686⤵
        
        PID:14288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        687⤵
        
        PID:14300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        688⤵
        
        PID:14316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        689⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        690⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        691⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        692⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        693⤵
        
        PID:14384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        694⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        695⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        696⤵
        
        PID:14428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        697⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        698⤵
        
        PID:14456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        699⤵
        
        PID:14468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        700⤵
        
        PID:14480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        701⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        702⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        703⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        704⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        705⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        706⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        707⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        708⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        709⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        710⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        711⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        712⤵
        
        PID:14664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        713⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        714⤵
        
        PID:14692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        715⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        716⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        717⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        718⤵
        
        PID:14748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        719⤵
        
        PID:14764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        720⤵
        
        PID:14780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        721⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        722⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        723⤵
        
        PID:14828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        724⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        725⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        726⤵
        
        PID:14868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        727⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        728⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        729⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        730⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        731⤵
        
        PID:14940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        732⤵
        
        PID:14952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        733⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        734⤵
        
        PID:14984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        735⤵
        
        PID:14996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        736⤵
        
        PID:15012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        737⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        738⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        739⤵
        
        PID:15052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        740⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        741⤵
        
        PID:15088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        742⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        743⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        744⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        745⤵
        
        PID:15196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        746⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        747⤵
        
        PID:15228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        748⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        749⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        750⤵
        
        PID:15272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        751⤵
        
        PID:15288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        752⤵
        
        PID:15304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        753⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        754⤵
        
        PID:15332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        755⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        756⤵
        
        PID:4800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        757⤵
        
        PID:2672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        758⤵
        
        PID:856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        759⤵
        
        PID:4508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        760⤵
        
        PID:3560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        761⤵
        
        PID:2040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        762⤵
        
        PID:792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        763⤵
        
        PID:2820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        764⤵
        
        PID:4752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        765⤵
        
        PID:4108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        766⤵
        
        PID:3692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        767⤵
        
        PID:1196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        768⤵
        
        PID:1020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        769⤵
        
        PID:1164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        770⤵
        
        PID:636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        771⤵
        
        PID:15372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        772⤵
        
        PID:15392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        773⤵
        
        PID:15404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        774⤵
        
        PID:15420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        775⤵
        
        PID:15436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        776⤵
        
        PID:15452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        777⤵
        
        PID:15468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        778⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        779⤵
        
        PID:15500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        780⤵
        
        PID:15516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        781⤵
        
        PID:15528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        782⤵
        
        PID:15544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        783⤵
        
        PID:15560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        784⤵
        
        PID:15576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        785⤵
        
        PID:15592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        786⤵
        
        PID:15608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        787⤵
        
        PID:15624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        788⤵
        
        PID:15636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        789⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        790⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        791⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        792⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        793⤵
        
        PID:15724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        794⤵
        
        PID:15740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        795⤵
        
        PID:15756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        796⤵
        
        PID:15772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        797⤵
        
        PID:15792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        798⤵
        
        PID:15804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        799⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        800⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        801⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        802⤵
        
        PID:15864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        803⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        804⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        805⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        806⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        807⤵
        
        PID:15944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        808⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        809⤵
        
        PID:15972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        810⤵
        
        PID:15988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        811⤵
        
        PID:16004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        812⤵
        
        PID:16016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        813⤵
        
        PID:16028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        814⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        815⤵
        
        PID:16060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        816⤵
        
        PID:16076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        817⤵
        
        PID:16092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        818⤵
        
        PID:16108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        819⤵
        
        PID:16124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        820⤵
        
        PID:16136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        821⤵
        
        PID:16152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        822⤵
        
        PID:16172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        823⤵
        
        PID:16188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        824⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        825⤵
        
        PID:16220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        826⤵
        
        PID:16232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        827⤵
        
        PID:16248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        828⤵
        
        PID:16264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        829⤵
        
        PID:16280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        830⤵
        
        PID:16292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        831⤵
        
        PID:16308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        832⤵
        
        PID:16324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        833⤵
        
        PID:16340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        834⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        835⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        836⤵
        
        PID:4200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        837⤵
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        838⤵
        
        PID:4368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        839⤵
        
        PID:368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        840⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        841⤵
        
        PID:1156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        842⤵
        
        PID:4784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        843⤵
        
        PID:1232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        844⤵
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        845⤵
        
        PID:2884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        846⤵
        
        PID:1896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        847⤵
        
        PID:624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        848⤵
        
        PID:4552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        849⤵
        
        PID:1556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        850⤵
        
        PID:428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        851⤵
        
        PID:4724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        852⤵
        
        PID:3172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        853⤵
        
        PID:3300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        854⤵
        
        PID:2420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        855⤵
        
        PID:3276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        856⤵
        
        PID:1304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        857⤵
        
        PID:5032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        858⤵
        
        PID:2292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        859⤵
        
        PID:2904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        860⤵
        
        PID:1532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        861⤵
        
        PID:2748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        862⤵
        
        PID:1312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        863⤵
        
        PID:2444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        864⤵
        
        PID:2508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        865⤵
        
        PID:5104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        866⤵
        
        PID:1604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        867⤵
        
        PID:4564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        868⤵
        
        PID:5056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        869⤵
        
        PID:5012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        870⤵
        
        PID:4920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        871⤵
        
        PID:3264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        872⤵
        
        PID:1836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        873⤵
        
        PID:64
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        874⤵
        
        PID:3892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        875⤵
        
        PID:3824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        876⤵
        
        PID:2996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        877⤵
        
        PID:2368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        878⤵
        
        PID:1324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        879⤵
        
        PID:632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        880⤵
        
        PID:3624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\61410f495ead5c4a58bec825039fdb84_JaffaCakes118.dll,#1
        881⤵
        
        PID:5144

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads