06de8665df0346a0f5dc8d20c1c4a5d182420d2b3ceb1f9dc8e0f247e53de8d7

Analysis

max time kernel
141s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
22/07/2024, 23:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll
Size

16KB
MD5

65305c54851fcc6b87c05c8a0ae1f585
SHA1

1f5e77dd7de3cafc80e0df5e6241780706ecfdb5
SHA256

06de8665df0346a0f5dc8d20c1c4a5d182420d2b3ceb1f9dc8e0f247e53de8d7
SHA512

66665a7f817fc240d6a2844b97b6cba3774fe584ba18e8ea510ed1d84d4c564ab4a0d24df59a206568b103715c6107f28510c45bdff0541e5c429e9a29539e97
SSDEEP

384:pO+IirYOgmA9x2ojy0+kjzjhUlmbuDJihqSHuJWN7uCiCfOze:pKiOtxAGfhUlvDJuJHue

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 620 wrote to memory of 1344	620	rundll32.exe	84
PID 620 wrote to memory of 1344	620	rundll32.exe	84
PID 620 wrote to memory of 1344	620	rundll32.exe	84
PID 1344 wrote to memory of 2164	1344	rundll32.exe	85
PID 1344 wrote to memory of 2164	1344	rundll32.exe	85
PID 1344 wrote to memory of 2164	1344	rundll32.exe	85
PID 2164 wrote to memory of 3524	2164	rundll32.exe	86
PID 2164 wrote to memory of 3524	2164	rundll32.exe	86
PID 2164 wrote to memory of 3524	2164	rundll32.exe	86
PID 3524 wrote to memory of 3900	3524	rundll32.exe	87
PID 3524 wrote to memory of 3900	3524	rundll32.exe	87
PID 3524 wrote to memory of 3900	3524	rundll32.exe	87
PID 3900 wrote to memory of 1520	3900	rundll32.exe	88
PID 3900 wrote to memory of 1520	3900	rundll32.exe	88
PID 3900 wrote to memory of 1520	3900	rundll32.exe	88
PID 1520 wrote to memory of 1496	1520	rundll32.exe	89
PID 1520 wrote to memory of 1496	1520	rundll32.exe	89
PID 1520 wrote to memory of 1496	1520	rundll32.exe	89
PID 1496 wrote to memory of 1412	1496	rundll32.exe	90
PID 1496 wrote to memory of 1412	1496	rundll32.exe	90
PID 1496 wrote to memory of 1412	1496	rundll32.exe	90
PID 1412 wrote to memory of 3808	1412	rundll32.exe	91
PID 1412 wrote to memory of 3808	1412	rundll32.exe	91
PID 1412 wrote to memory of 3808	1412	rundll32.exe	91
PID 3808 wrote to memory of 3932	3808	rundll32.exe	92
PID 3808 wrote to memory of 3932	3808	rundll32.exe	92
PID 3808 wrote to memory of 3932	3808	rundll32.exe	92
PID 3932 wrote to memory of 4560	3932	rundll32.exe	93
PID 3932 wrote to memory of 4560	3932	rundll32.exe	93
PID 3932 wrote to memory of 4560	3932	rundll32.exe	93
PID 4560 wrote to memory of 4900	4560	rundll32.exe	94
PID 4560 wrote to memory of 4900	4560	rundll32.exe	94
PID 4560 wrote to memory of 4900	4560	rundll32.exe	94
PID 4900 wrote to memory of 4332	4900	rundll32.exe	95
PID 4900 wrote to memory of 4332	4900	rundll32.exe	95
PID 4900 wrote to memory of 4332	4900	rundll32.exe	95
PID 4332 wrote to memory of 3456	4332	rundll32.exe	96
PID 4332 wrote to memory of 3456	4332	rundll32.exe	96
PID 4332 wrote to memory of 3456	4332	rundll32.exe	96
PID 3456 wrote to memory of 1008	3456	rundll32.exe	97
PID 3456 wrote to memory of 1008	3456	rundll32.exe	97
PID 3456 wrote to memory of 1008	3456	rundll32.exe	97
PID 1008 wrote to memory of 228	1008	rundll32.exe	99
PID 1008 wrote to memory of 228	1008	rundll32.exe	99
PID 1008 wrote to memory of 228	1008	rundll32.exe	99
PID 228 wrote to memory of 1108	228	rundll32.exe	100
PID 228 wrote to memory of 1108	228	rundll32.exe	100
PID 228 wrote to memory of 1108	228	rundll32.exe	100
PID 1108 wrote to memory of 3204	1108	rundll32.exe	101
PID 1108 wrote to memory of 3204	1108	rundll32.exe	101
PID 1108 wrote to memory of 3204	1108	rundll32.exe	101
PID 3204 wrote to memory of 4944	3204	rundll32.exe	102
PID 3204 wrote to memory of 4944	3204	rundll32.exe	102
PID 3204 wrote to memory of 4944	3204	rundll32.exe	102
PID 4944 wrote to memory of 948	4944	rundll32.exe	103
PID 4944 wrote to memory of 948	4944	rundll32.exe	103
PID 4944 wrote to memory of 948	4944	rundll32.exe	103
PID 948 wrote to memory of 3944	948	rundll32.exe	104
PID 948 wrote to memory of 3944	948	rundll32.exe	104
PID 948 wrote to memory of 3944	948	rundll32.exe	104
PID 3944 wrote to memory of 3680	3944	rundll32.exe	105
PID 3944 wrote to memory of 3680	3944	rundll32.exe	105
PID 3944 wrote to memory of 3680	3944	rundll32.exe	105
PID 3680 wrote to memory of 2416	3680	rundll32.exe	107

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:620
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:1344
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:2164
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:3524
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:3900
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:1520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:1496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:1412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:3808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:4900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:3456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:1008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:3204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:4944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:3944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:3680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        23⤵
        
        PID:2416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        24⤵
        
        PID:3228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        25⤵
        
        PID:2360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        26⤵
        
        PID:2472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        27⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        28⤵
        
        PID:2964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        29⤵
        
        PID:4328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        30⤵
        
        PID:2436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        31⤵
        
        PID:1536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        32⤵
        
        PID:2592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        33⤵
        
        PID:2088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        34⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        35⤵
        
        PID:2988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        36⤵
        
        PID:4112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        37⤵
        
        PID:4024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        38⤵
        
        PID:4128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        39⤵
        
        PID:1244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        40⤵
        
        PID:1628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        41⤵
        
        PID:1424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        42⤵
        
        PID:2944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        43⤵
        
        PID:2052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        44⤵
        
        PID:2344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        45⤵
        
        PID:4060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        46⤵
        
        PID:1832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        47⤵
        
        PID:2032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        48⤵
        
        PID:2464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        49⤵
        
        PID:2320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        50⤵
        
        PID:4340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        51⤵
        
        PID:4652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        52⤵
        
        PID:3848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        53⤵
        
        PID:3720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        54⤵
        
        PID:3208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        55⤵
        
        PID:2368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        56⤵
        
        PID:2372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        57⤵
        
        PID:1232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        58⤵
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        59⤵
        
        PID:2816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        60⤵
        
        PID:2840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        61⤵
        
        PID:1920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        62⤵
        
        PID:4132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        63⤵
        
        PID:2612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        64⤵
        
        PID:1632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        65⤵
        
        PID:2808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        66⤵
        
        PID:2636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        67⤵
        
        PID:2888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        68⤵
        
        PID:5092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        69⤵
        
        PID:3608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        70⤵
        
        PID:3032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        71⤵
        
        PID:1136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        72⤵
        
        PID:3748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        73⤵
        
        PID:2196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        74⤵
        
        PID:3904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        75⤵
        
        PID:4600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        76⤵
        
        PID:4008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        77⤵
        
        PID:2960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        78⤵
        
        PID:2136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        79⤵
        
        PID:2040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        80⤵
        
        PID:4320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        81⤵
        
        PID:3556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        82⤵
        
        PID:3500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        83⤵
        
        PID:4004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        84⤵
        
        PID:3416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        85⤵
        
        PID:3316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        86⤵
        
        PID:4304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        87⤵
        
        PID:3404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        88⤵
        
        PID:4052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        89⤵
        
        PID:2096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        90⤵
        
        PID:3700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        91⤵
        
        PID:604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        92⤵
        
        PID:1592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        93⤵
        
        PID:2480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        94⤵
        
        PID:4868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        95⤵
        
        PID:4640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        96⤵
        
        PID:3468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        97⤵
        
        PID:4508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        98⤵
        
        PID:3336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        99⤵
        
        PID:3192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        100⤵
        
        PID:216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        101⤵
        
        PID:1564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        102⤵
        
        PID:2280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        103⤵
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        104⤵
        
        PID:2624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        105⤵
        
        PID:4516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        106⤵
        
        PID:3436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        107⤵
        
        PID:2692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        108⤵
        
        PID:4644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        109⤵
        
        PID:3960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        110⤵
        
        PID:2116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        111⤵
        
        PID:2924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        112⤵
        
        PID:904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        113⤵
        
        PID:2140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        114⤵
        
        PID:5128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        115⤵
        
        PID:5144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        116⤵
        
        PID:5160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        117⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        118⤵
        
        PID:5216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        119⤵
        
        PID:5232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        120⤵
        
        PID:5248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        121⤵
        
        PID:5264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        122⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        123⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        124⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        125⤵
        
        PID:5316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        126⤵
        
        PID:5332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        127⤵
        
        PID:5344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        128⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        129⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        130⤵
        
        PID:5396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        131⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        132⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        133⤵
        
        PID:5444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        134⤵
        
        PID:5456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        135⤵
        
        PID:5468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        136⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        137⤵
        
        PID:5504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        138⤵
        
        PID:5516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        139⤵
        
        PID:5540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        140⤵
        
        PID:5560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        141⤵
        
        PID:5580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        142⤵
        
        PID:5600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        143⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        144⤵
        
        PID:5628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        145⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        146⤵
        
        PID:5664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        147⤵
        
        PID:5680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        148⤵
        
        PID:5696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        149⤵
        
        PID:5712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        150⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        151⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        152⤵
        
        PID:5756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        153⤵
        
        PID:5780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        154⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        155⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        156⤵
        
        PID:5816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        157⤵
        
        PID:5832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        158⤵
        
        PID:5844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        159⤵
        
        PID:5860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        160⤵
        
        PID:5876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        161⤵
        
        PID:5888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        162⤵
        
        PID:5904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        163⤵
        
        PID:5920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        164⤵
        
        PID:5936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        165⤵
        
        PID:5952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        166⤵
        
        PID:5968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        167⤵
        
        PID:5980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        168⤵
        
        PID:5996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        169⤵
        
        PID:6012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        170⤵
        
        PID:6028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        171⤵
        
        PID:6044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        172⤵
        
        PID:6056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        173⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        174⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        175⤵
        
        PID:6108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        176⤵
        
        PID:6124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        177⤵
        
        PID:6140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        178⤵
        
        PID:5536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        179⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        180⤵
        
        PID:6176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        181⤵
        
        PID:6192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        182⤵
        
        PID:6208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        183⤵
        
        PID:6220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        184⤵
        
        PID:6236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        185⤵
        
        PID:6248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        186⤵
        
        PID:6264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        187⤵
        
        PID:6280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        188⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        189⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        190⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        191⤵
        
        PID:6336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        192⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        193⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        194⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        195⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        196⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        197⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        198⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        199⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        200⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        201⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        202⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        203⤵
        
        PID:6512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        204⤵
        
        PID:6528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        205⤵
        
        PID:6544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        206⤵
        
        PID:6564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        207⤵
        
        PID:6576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        208⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        209⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        210⤵
        
        PID:6624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        211⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        212⤵
        
        PID:6656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        213⤵
        
        PID:6676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        214⤵
        
        PID:6688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        215⤵
        
        PID:6704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        216⤵
        
        PID:6720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        217⤵
        
        PID:6740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        218⤵
        
        PID:6756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        219⤵
        
        PID:6772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        220⤵
        
        PID:6788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        221⤵
        
        PID:6812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        222⤵
        
        PID:6828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        223⤵
        
        PID:6844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        224⤵
        
        PID:6860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        225⤵
        
        PID:6876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        226⤵
        
        PID:6892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        227⤵
        
        PID:6908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        228⤵
        
        PID:6928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        229⤵
        
        PID:6944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        230⤵
        
        PID:6960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        231⤵
        
        PID:6976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        232⤵
        
        PID:6992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        233⤵
        
        PID:7008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        234⤵
        
        PID:7020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        235⤵
        
        PID:7036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        236⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        237⤵
        
        PID:7068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        238⤵
        
        PID:7084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        239⤵
        
        PID:7100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        240⤵
        
        PID:7116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        241⤵
        
        PID:7132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        242⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        243⤵
        
        PID:7164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        244⤵
        
        PID:7184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        245⤵
        
        PID:7200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        246⤵
        
        PID:7216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        247⤵
        
        PID:7228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        248⤵
        
        PID:7244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        249⤵
        
        PID:7260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        250⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        251⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        252⤵
        
        PID:7304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        253⤵
        
        PID:7320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        254⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        255⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        256⤵
        
        PID:7368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        257⤵
        
        PID:7384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        258⤵
        
        PID:7400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        259⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        260⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        261⤵
        
        PID:7444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        262⤵
        
        PID:7460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        263⤵
        
        PID:7476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        264⤵
        
        PID:7492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        265⤵
        
        PID:7508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        266⤵
        
        PID:7524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        267⤵
        
        PID:7536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        268⤵
        
        PID:7552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        269⤵
        
        PID:7568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        270⤵
        
        PID:7584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        271⤵
        
        PID:7596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        272⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        273⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        274⤵
        
        PID:7640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        275⤵
        
        PID:7656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        276⤵
        
        PID:7672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        277⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        278⤵
        
        PID:7700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        279⤵
        
        PID:7716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        280⤵
        
        PID:7732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        281⤵
        
        PID:7748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        282⤵
        
        PID:7764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        283⤵
        
        PID:7780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        284⤵
        
        PID:7796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        285⤵
        
        PID:7808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        286⤵
        
        PID:7824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        287⤵
        
        PID:7840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        288⤵
        
        PID:7852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        289⤵
        
        PID:7872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        290⤵
        
        PID:7888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        291⤵
        
        PID:7904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        292⤵
        
        PID:7916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        293⤵
        
        PID:7932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        294⤵
        
        PID:7948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        295⤵
        
        PID:7964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        296⤵
        
        PID:7980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        297⤵
        
        PID:7992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        298⤵
        
        PID:8012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        299⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        300⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        301⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        302⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        303⤵
        
        PID:8088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        304⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        305⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        306⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        307⤵
        
        PID:8148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        308⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        309⤵
        
        PID:8176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        310⤵
        
        PID:8188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        311⤵
        
        PID:552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        312⤵
        
        PID:460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        313⤵
        
        PID:5180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        314⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        315⤵
        
        PID:5204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        316⤵
        
        PID:3664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        317⤵
        
        PID:8196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        318⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        319⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        320⤵
        
        PID:8244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        321⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        322⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        323⤵
        
        PID:8292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        324⤵
        
        PID:8304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        325⤵
        
        PID:8320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        326⤵
        
        PID:8336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        327⤵
        
        PID:8352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        328⤵
        
        PID:8364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        329⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        330⤵
        
        PID:8392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        331⤵
        
        PID:8404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        332⤵
        
        PID:8420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        333⤵
        
        PID:8436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        334⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        335⤵
        
        PID:8464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        336⤵
        
        PID:8480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        337⤵
        
        PID:8496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        338⤵
        
        PID:8512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        339⤵
        
        PID:8528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        340⤵
        
        PID:8544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        341⤵
        
        PID:8556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        342⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        343⤵
        
        PID:8592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        344⤵
        
        PID:8608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        345⤵
        
        PID:8620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        346⤵
        
        PID:8636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        347⤵
        
        PID:8652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        348⤵
        
        PID:8668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        349⤵
        
        PID:8684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        350⤵
        
        PID:8700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        351⤵
        
        PID:8716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        352⤵
        
        PID:8732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        353⤵
        
        PID:8744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        354⤵
        
        PID:8764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        355⤵
        
        PID:8780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        356⤵
        
        PID:8796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        357⤵
        
        PID:8812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        358⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        359⤵
        
        PID:8840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        360⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        361⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        362⤵
        
        PID:8888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        363⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        364⤵
        
        PID:8920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        365⤵
        
        PID:8936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        366⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        367⤵
        
        PID:8968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        368⤵
        
        PID:8984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        369⤵
        
        PID:9000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        370⤵
        
        PID:9016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        371⤵
        
        PID:9032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        372⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        373⤵
        
        PID:9064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        374⤵
        
        PID:9080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        375⤵
        
        PID:9096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        376⤵
        
        PID:9108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        377⤵
        
        PID:9120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        378⤵
        
        PID:9132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        379⤵
        
        PID:9148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        380⤵
        
        PID:9160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        381⤵
        
        PID:9176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        382⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        383⤵
        
        PID:9208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        384⤵
        
        PID:2704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        385⤵
        
        PID:9224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        386⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        387⤵
        
        PID:9256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        388⤵
        
        PID:9272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        389⤵
        
        PID:9288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        390⤵
        
        PID:9300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        391⤵
        
        PID:9324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        392⤵
        
        PID:9340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        393⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        394⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        395⤵
        
        PID:9384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        396⤵
        
        PID:9396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        397⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        398⤵
        
        PID:9428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        399⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        400⤵
        
        PID:9464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        401⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        402⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        403⤵
        
        PID:9508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        404⤵
        
        PID:9520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        405⤵
        
        PID:9536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        406⤵
        
        PID:9552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        407⤵
        
        PID:9564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        408⤵
        
        PID:9580
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        409⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        410⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        411⤵
        
        PID:9628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        412⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        413⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        414⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        415⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        416⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        417⤵
        
        PID:9720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        418⤵
        
        PID:9732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        419⤵
        
        PID:9752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        420⤵
        
        PID:9768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        421⤵
        
        PID:9780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        422⤵
        
        PID:9792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        423⤵
        
        PID:9804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        424⤵
        
        PID:9816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        425⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        426⤵
        
        PID:9852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        427⤵
        
        PID:9868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        428⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        429⤵
        
        PID:9900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        430⤵
        
        PID:9916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        431⤵
        
        PID:9932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        432⤵
        
        PID:9948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        433⤵
        
        PID:9964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        434⤵
        
        PID:9980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        435⤵
        
        PID:9992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        436⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        437⤵
        
        PID:10016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        438⤵
        
        PID:10032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        439⤵
        
        PID:10048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        440⤵
        
        PID:10064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        441⤵
        
        PID:10080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        442⤵
        
        PID:10096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        443⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        444⤵
        
        PID:10128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        445⤵
        
        PID:10144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        446⤵
        
        PID:10160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        447⤵
        
        PID:10176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        448⤵
        
        PID:10192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        449⤵
        
        PID:10208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        450⤵
        
        PID:10224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        451⤵
        
        PID:10236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        452⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        453⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        454⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        455⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        456⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        457⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        458⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        459⤵
        
        PID:10364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        460⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        461⤵
        
        PID:10396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        462⤵
        
        PID:10412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        463⤵
        
        PID:10428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        464⤵
        
        PID:10444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        465⤵
        
        PID:10460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        466⤵
        
        PID:10476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        467⤵
        
        PID:10492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        468⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        469⤵
        
        PID:10524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        470⤵
        
        PID:10540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        471⤵
        
        PID:10552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        472⤵
        
        PID:10568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        473⤵
        
        PID:10584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        474⤵
        
        PID:10600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        475⤵
        
        PID:10616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        476⤵
        
        PID:10628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        477⤵
        
        PID:10644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        478⤵
        
        PID:10660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        479⤵
        
        PID:10676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        480⤵
        
        PID:10688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        481⤵
        
        PID:10708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        482⤵
        
        PID:10720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        483⤵
        
        PID:10736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        484⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        485⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        486⤵
        
        PID:10788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        487⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        488⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        489⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        490⤵
        
        PID:10848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        491⤵
        
        PID:10864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        492⤵
        
        PID:10880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        493⤵
        
        PID:10892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        494⤵
        
        PID:10904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        495⤵
        
        PID:10920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        496⤵
        
        PID:10936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        497⤵
        
        PID:10952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        498⤵
        
        PID:10968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        499⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        500⤵
        
        PID:11000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        501⤵
        
        PID:11016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        502⤵
        
        PID:11032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        503⤵
        
        PID:11048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        504⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        505⤵
        
        PID:11080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        506⤵
        
        PID:11096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        507⤵
        
        PID:11108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        508⤵
        
        PID:11124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        509⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        510⤵
        
        PID:11152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        511⤵
        
        PID:11168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        512⤵
        
        PID:11184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        513⤵
        
        PID:11200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        514⤵
        
        PID:11216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        515⤵
        
        PID:11236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        516⤵
        
        PID:11248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        517⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        518⤵
        
        PID:11276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        519⤵
        
        PID:11292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        520⤵
        
        PID:11308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        521⤵
        
        PID:11324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        522⤵
        
        PID:11336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        523⤵
        
        PID:11356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        524⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        525⤵
        
        PID:11388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        526⤵
        
        PID:11404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        527⤵
        
        PID:11420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        528⤵
        
        PID:11436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        529⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        530⤵
        
        PID:11464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        531⤵
        
        PID:11480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        532⤵
        
        PID:11496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        533⤵
        
        PID:11512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        534⤵
        
        PID:11524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        535⤵
        
        PID:11544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        536⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        537⤵
        
        PID:11572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        538⤵
        
        PID:11588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        539⤵
        
        PID:11604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        540⤵
        
        PID:11620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        541⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        542⤵
        
        PID:11652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        543⤵
        
        PID:11668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        544⤵
        
        PID:11684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        545⤵
        
        PID:11700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        546⤵
        
        PID:11716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        547⤵
        
        PID:11732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        548⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        549⤵
        
        PID:11764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        550⤵
        
        PID:11780
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        551⤵
        
        PID:11796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        552⤵
        
        PID:11812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        553⤵
        
        PID:11828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        554⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        555⤵
        
        PID:11860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        556⤵
        
        PID:11876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        557⤵
        
        PID:11888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        558⤵
        
        PID:11904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        559⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        560⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        561⤵
        
        PID:11952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        562⤵
        
        PID:11968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        563⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        564⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        565⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        566⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        567⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        568⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        569⤵
        
        PID:12084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        570⤵
        
        PID:12100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        571⤵
        
        PID:12112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        572⤵
        
        PID:12128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        573⤵
        
        PID:12144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        574⤵
        
        PID:12160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        575⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        576⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        577⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        578⤵
        
        PID:12216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        579⤵
        
        PID:12232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        580⤵
        
        PID:12244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        581⤵
        
        PID:12260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        582⤵
        
        PID:12276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        583⤵
        
        PID:11224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        584⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        585⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        586⤵
        
        PID:12328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        587⤵
        
        PID:12344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        588⤵
        
        PID:12360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        589⤵
        
        PID:12376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        590⤵
        
        PID:12388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        591⤵
        
        PID:12404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        592⤵
        
        PID:12420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        593⤵
        
        PID:12436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        594⤵
        
        PID:12452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        595⤵
        
        PID:12468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        596⤵
        
        PID:12484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        597⤵
        
        PID:12500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        598⤵
        
        PID:12516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        599⤵
        
        PID:12532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        600⤵
        
        PID:12544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        601⤵
        
        PID:12560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        602⤵
        
        PID:12576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        603⤵
        
        PID:12592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        604⤵
        
        PID:12608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        605⤵
        
        PID:12624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        606⤵
        
        PID:12640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        607⤵
        
        PID:12656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        608⤵
        
        PID:12672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        609⤵
        
        PID:12684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        610⤵
        
        PID:12700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        611⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        612⤵
        
        PID:12724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        613⤵
        
        PID:12736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        614⤵
        
        PID:12748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        615⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        616⤵
        
        PID:12784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        617⤵
        
        PID:12800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        618⤵
        
        PID:12816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        619⤵
        
        PID:12832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        620⤵
        
        PID:12844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        621⤵
        
        PID:12860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        622⤵
        
        PID:12876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        623⤵
        
        PID:12892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        624⤵
        
        PID:12904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        625⤵
        
        PID:12920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        626⤵
        
        PID:12936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        627⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        628⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        629⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        630⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        631⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        632⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        633⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        634⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        635⤵
        
        PID:13076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        636⤵
        
        PID:13092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        637⤵
        
        PID:13104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        638⤵
        
        PID:13120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        639⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        640⤵
        
        PID:13156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        641⤵
        
        PID:13168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        642⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        643⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        644⤵
        
        PID:13216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        645⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        646⤵
        
        PID:13256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        647⤵
        
        PID:13272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        648⤵
        
        PID:13288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        649⤵
        
        PID:13304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        650⤵
        
        PID:12756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        651⤵
        
        PID:13356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        652⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        653⤵
        
        PID:13400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        654⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        655⤵
        
        PID:13436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        656⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        657⤵
        
        PID:13468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        658⤵
        
        PID:13484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        659⤵
        
        PID:13500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        660⤵
        
        PID:13516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        661⤵
        
        PID:13536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        662⤵
        
        PID:13548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        663⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        664⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        665⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        666⤵
        
        PID:13604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        667⤵
        
        PID:13620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        668⤵
        
        PID:13636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        669⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        670⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        671⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        672⤵
        
        PID:13700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        673⤵
        
        PID:13716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        674⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        675⤵
        
        PID:13748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        676⤵
        
        PID:13764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        677⤵
        
        PID:13776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        678⤵
        
        PID:13792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        679⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        680⤵
        
        PID:13824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        681⤵
        
        PID:13840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        682⤵
        
        PID:13856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        683⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        684⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        685⤵
        
        PID:13896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        686⤵
        
        PID:13908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        687⤵
        
        PID:13924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        688⤵
        
        PID:13952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        689⤵
        
        PID:13968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        690⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        691⤵
        
        PID:14032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        692⤵
        
        PID:14068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        693⤵
        
        PID:14092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        694⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        695⤵
        
        PID:14148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        696⤵
        
        PID:14176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        697⤵
        
        PID:14228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        698⤵
        
        PID:14248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        699⤵
        
        PID:14260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        700⤵
        
        PID:14276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        701⤵
        
        PID:14296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        702⤵
        
        PID:14312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        703⤵
        
        PID:14328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        704⤵
        
        PID:14352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        705⤵
        
        PID:14368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        706⤵
        
        PID:14392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        707⤵
        
        PID:14412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        708⤵
        
        PID:14440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        709⤵
        
        PID:14452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        710⤵
        
        PID:14468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        711⤵
        
        PID:14484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        712⤵
        
        PID:14496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        713⤵
        
        PID:14512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        714⤵
        
        PID:14528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        715⤵
        
        PID:14540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        716⤵
        
        PID:14556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        717⤵
        
        PID:14572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        718⤵
        
        PID:14588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        719⤵
        
        PID:14604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        720⤵
        
        PID:14620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        721⤵
        
        PID:14636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        722⤵
        
        PID:14648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        723⤵
        
        PID:14660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        724⤵
        
        PID:14676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        725⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        726⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        727⤵
        
        PID:14716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        728⤵
        
        PID:14728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        729⤵
        
        PID:14740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        730⤵
        
        PID:14760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        731⤵
        
        PID:14776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        732⤵
        
        PID:14792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        733⤵
        
        PID:14808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        734⤵
        
        PID:14824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        735⤵
        
        PID:14840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        736⤵
        
        PID:14856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        737⤵
        
        PID:14872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        738⤵
        
        PID:14884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        739⤵
        
        PID:14900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        740⤵
        
        PID:14916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        741⤵
        
        PID:14932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        742⤵
        
        PID:14948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        743⤵
        
        PID:14960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        744⤵
        
        PID:14972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        745⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        746⤵
        
        PID:15004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        747⤵
        
        PID:15024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        748⤵
        
        PID:15040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        749⤵
        
        PID:15056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        750⤵
        
        PID:15072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        751⤵
        
        PID:15084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        752⤵
        
        PID:15100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        753⤵
        
        PID:15116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        754⤵
        
        PID:15132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        755⤵
        
        PID:15144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        756⤵
        
        PID:15160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        757⤵
        
        PID:15184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        758⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        759⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        760⤵
        
        PID:15232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        761⤵
        
        PID:15248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        762⤵
        
        PID:15264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        763⤵
        
        PID:15280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        764⤵
        
        PID:15296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        765⤵
        
        PID:15312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        766⤵
        
        PID:15324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        767⤵
        
        PID:15340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        768⤵
        
        PID:15356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        769⤵
        
        PID:14436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        770⤵
        
        PID:15384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        771⤵
        
        PID:15400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        772⤵
        
        PID:15416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        773⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        774⤵
        
        PID:15444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        775⤵
        
        PID:15456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        776⤵
        
        PID:15472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        777⤵
        
        PID:15484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        778⤵
        
        PID:15496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        779⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        780⤵
        
        PID:15520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        781⤵
        
        PID:15540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        782⤵
        
        PID:15556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        783⤵
        
        PID:15572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        784⤵
        
        PID:15588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        785⤵
        
        PID:15604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        786⤵
        
        PID:15616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        787⤵
        
        PID:15632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        788⤵
        
        PID:15644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        789⤵
        
        PID:15664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        790⤵
        
        PID:15676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        791⤵
        
        PID:15696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        792⤵
        
        PID:15712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        793⤵
        
        PID:15728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        794⤵
        
        PID:15744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        795⤵
        
        PID:15760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        796⤵
        
        PID:15776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        797⤵
        
        PID:15796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        798⤵
        
        PID:15812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        799⤵
        
        PID:15828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        800⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        801⤵
        
        PID:15888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        802⤵
        
        PID:15912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        803⤵
        
        PID:15928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        804⤵
        
        PID:15940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        805⤵
        
        PID:15960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        806⤵
        
        PID:15976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        807⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        808⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        809⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        810⤵
        
        PID:16040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        811⤵
        
        PID:16056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        812⤵
        
        PID:16068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        813⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        814⤵
        
        PID:16096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        815⤵
        
        PID:16112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        816⤵
        
        PID:16128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        817⤵
        
        PID:16140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        818⤵
        
        PID:16156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        819⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        820⤵
        
        PID:16180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        821⤵
        
        PID:16196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        822⤵
        
        PID:16212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        823⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        824⤵
        
        PID:16244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        825⤵
        
        PID:16260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        826⤵
        
        PID:16272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        827⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        828⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        829⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        830⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        831⤵
        
        PID:16352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        832⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        833⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        834⤵
        
        PID:1156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        835⤵
        
        PID:3012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        836⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        837⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        838⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        839⤵
        
        PID:16428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        840⤵
        
        PID:16444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        841⤵
        
        PID:16460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        842⤵
        
        PID:16476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        843⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        844⤵
        
        PID:16504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        845⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        846⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        847⤵
        
        PID:16556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        848⤵
        
        PID:16572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        849⤵
        
        PID:16588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        850⤵
        
        PID:16604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        851⤵
        
        PID:16620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        852⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        853⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        854⤵
        
        PID:16664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        855⤵
        
        PID:16676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        856⤵
        
        PID:16692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        857⤵
        
        PID:16708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        858⤵
        
        PID:16724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        859⤵
        
        PID:16736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        860⤵
        
        PID:16752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        861⤵
        
        PID:16768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        862⤵
        
        PID:16784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        863⤵
        
        PID:16800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        864⤵
        
        PID:16816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        865⤵
        
        PID:16832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        866⤵
        
        PID:16844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        867⤵
        
        PID:16860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        868⤵
        
        PID:16876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        869⤵
        
        PID:16892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        870⤵
        
        PID:16908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        871⤵
        
        PID:16924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        872⤵
        
        PID:16940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        873⤵
        
        PID:16956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        874⤵
        
        PID:16972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        875⤵
        
        PID:16988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        876⤵
        
        PID:17004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        877⤵
        
        PID:17016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        878⤵
        
        PID:17032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        879⤵
        
        PID:17048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        880⤵
        
        PID:17060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        881⤵
        
        PID:17076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        882⤵
        
        PID:17092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        883⤵
        
        PID:17108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\65305c54851fcc6b87c05c8a0ae1f585_JaffaCakes118.dll,#1
        884⤵
        
        PID:17128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/17048-3-0x0000000075330000-0x00000000755B4000-memory.dmp

Filesize
2.5MB

Download
memory/17060-2-0x0000000075330000-0x00000000755B4000-memory.dmp

Filesize
2.5MB

Download
memory/17076-1-0x0000000075330000-0x00000000755B4000-memory.dmp

Filesize
2.5MB

Download
memory/17092-0-0x0000000075330000-0x00000000755B4000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads