1b2249296ef7573d7c2b3badbdec6e86a1d41113d5bc6378aec6b091f99d4f9a

Analysis

max time kernel
124s
max time network
134s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
22/07/2024, 07:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll
Size

105KB
MD5

625b3b18b6f9d8e006efbc4f5063f8f5
SHA1

1876f7a99f5008e356541dc5750b578b575c2dbb
SHA256

1b2249296ef7573d7c2b3badbdec6e86a1d41113d5bc6378aec6b091f99d4f9a
SHA512

b6f5662003acf860d6009dfd2ed43a061101ccd37451065334527a5e3c3561291776bd75ed39772365bdc47f09727f3ded8ea5beaf6c44cb675f45680094537e
SSDEEP

3072:mDXT20Ee8DSyUqQKryibThCfUWpZQT9TvHqDPbBP:mTxB8DBUqQK9nyQT97KDPFP

Score

1^/10

Malware Config

Signatures

Suspicious use of WriteProcessMemory 64 IoCs

description	pid	Process	procid_target
PID 2588 wrote to memory of 3352	2588	rundll32.exe	84
PID 2588 wrote to memory of 3352	2588	rundll32.exe	84
PID 2588 wrote to memory of 3352	2588	rundll32.exe	84
PID 3352 wrote to memory of 1212	3352	rundll32.exe	85
PID 3352 wrote to memory of 1212	3352	rundll32.exe	85
PID 3352 wrote to memory of 1212	3352	rundll32.exe	85
PID 1212 wrote to memory of 4072	1212	rundll32.exe	86
PID 1212 wrote to memory of 4072	1212	rundll32.exe	86
PID 1212 wrote to memory of 4072	1212	rundll32.exe	86
PID 4072 wrote to memory of 1144	4072	rundll32.exe	87
PID 4072 wrote to memory of 1144	4072	rundll32.exe	87
PID 4072 wrote to memory of 1144	4072	rundll32.exe	87
PID 1144 wrote to memory of 2144	1144	rundll32.exe	88
PID 1144 wrote to memory of 2144	1144	rundll32.exe	88
PID 1144 wrote to memory of 2144	1144	rundll32.exe	88
PID 2144 wrote to memory of 4680	2144	rundll32.exe	89
PID 2144 wrote to memory of 4680	2144	rundll32.exe	89
PID 2144 wrote to memory of 4680	2144	rundll32.exe	89
PID 4680 wrote to memory of 4276	4680	rundll32.exe	90
PID 4680 wrote to memory of 4276	4680	rundll32.exe	90
PID 4680 wrote to memory of 4276	4680	rundll32.exe	90
PID 4276 wrote to memory of 2408	4276	rundll32.exe	91
PID 4276 wrote to memory of 2408	4276	rundll32.exe	91
PID 4276 wrote to memory of 2408	4276	rundll32.exe	91
PID 2408 wrote to memory of 3096	2408	rundll32.exe	92
PID 2408 wrote to memory of 3096	2408	rundll32.exe	92
PID 2408 wrote to memory of 3096	2408	rundll32.exe	92
PID 3096 wrote to memory of 4452	3096	rundll32.exe	93
PID 3096 wrote to memory of 4452	3096	rundll32.exe	93
PID 3096 wrote to memory of 4452	3096	rundll32.exe	93
PID 4452 wrote to memory of 3256	4452	rundll32.exe	94
PID 4452 wrote to memory of 3256	4452	rundll32.exe	94
PID 4452 wrote to memory of 3256	4452	rundll32.exe	94
PID 3256 wrote to memory of 4028	3256	rundll32.exe	95
PID 3256 wrote to memory of 4028	3256	rundll32.exe	95
PID 3256 wrote to memory of 4028	3256	rundll32.exe	95
PID 4028 wrote to memory of 2116	4028	rundll32.exe	96
PID 4028 wrote to memory of 2116	4028	rundll32.exe	96
PID 4028 wrote to memory of 2116	4028	rundll32.exe	96
PID 2116 wrote to memory of 932	2116	rundll32.exe	97
PID 2116 wrote to memory of 932	2116	rundll32.exe	97
PID 2116 wrote to memory of 932	2116	rundll32.exe	97
PID 932 wrote to memory of 1164	932	rundll32.exe	98
PID 932 wrote to memory of 1164	932	rundll32.exe	98
PID 932 wrote to memory of 1164	932	rundll32.exe	98
PID 1164 wrote to memory of 1168	1164	rundll32.exe	99
PID 1164 wrote to memory of 1168	1164	rundll32.exe	99
PID 1164 wrote to memory of 1168	1164	rundll32.exe	99
PID 1168 wrote to memory of 4068	1168	rundll32.exe	100
PID 1168 wrote to memory of 4068	1168	rundll32.exe	100
PID 1168 wrote to memory of 4068	1168	rundll32.exe	100
PID 4068 wrote to memory of 3212	4068	rundll32.exe	102
PID 4068 wrote to memory of 3212	4068	rundll32.exe	102
PID 4068 wrote to memory of 3212	4068	rundll32.exe	102
PID 3212 wrote to memory of 2964	3212	rundll32.exe	103
PID 3212 wrote to memory of 2964	3212	rundll32.exe	103
PID 3212 wrote to memory of 2964	3212	rundll32.exe	103
PID 2964 wrote to memory of 1524	2964	rundll32.exe	104
PID 2964 wrote to memory of 1524	2964	rundll32.exe	104
PID 2964 wrote to memory of 1524	2964	rundll32.exe	104
PID 1524 wrote to memory of 2272	1524	rundll32.exe	105
PID 1524 wrote to memory of 2272	1524	rundll32.exe	105
PID 1524 wrote to memory of 2272	1524	rundll32.exe	105
PID 2272 wrote to memory of 2524	2272	rundll32.exe	106

C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
1⤵
- Suspicious use of WriteProcessMemory
PID:2588
- C:\Windows\SysWOW64\rundll32.exe
  rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
  2⤵
  - Suspicious use of WriteProcessMemory
  PID:3352
- - C:\Windows\SysWOW64\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
    3⤵
    - Suspicious use of WriteProcessMemory
    PID:1212
  - - C:\Windows\SysWOW64\rundll32.exe
      rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
      4⤵
      Suspicious use of WriteProcessMemory
      PID:4072
    - - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        5⤵
        Suspicious use of WriteProcessMemory
        
        PID:1144
      - C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        6⤵
        Suspicious use of WriteProcessMemory
        
        PID:2144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        7⤵
        Suspicious use of WriteProcessMemory
        
        PID:4680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        8⤵
        Suspicious use of WriteProcessMemory
        
        PID:4276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        9⤵
        Suspicious use of WriteProcessMemory
        
        PID:2408
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        10⤵
        Suspicious use of WriteProcessMemory
        
        PID:3096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        11⤵
        Suspicious use of WriteProcessMemory
        
        PID:4452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        12⤵
        Suspicious use of WriteProcessMemory
        
        PID:3256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        13⤵
        Suspicious use of WriteProcessMemory
        
        PID:4028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        14⤵
        Suspicious use of WriteProcessMemory
        
        PID:2116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        15⤵
        Suspicious use of WriteProcessMemory
        
        PID:932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        16⤵
        Suspicious use of WriteProcessMemory
        
        PID:1164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        17⤵
        Suspicious use of WriteProcessMemory
        
        PID:1168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        18⤵
        Suspicious use of WriteProcessMemory
        
        PID:4068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        19⤵
        Suspicious use of WriteProcessMemory
        
        PID:3212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        20⤵
        Suspicious use of WriteProcessMemory
        
        PID:2964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        21⤵
        Suspicious use of WriteProcessMemory
        
        PID:1524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        22⤵
        Suspicious use of WriteProcessMemory
        
        PID:2272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        23⤵
        
        PID:2524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        24⤵
        
        PID:3232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        25⤵
        
        PID:1344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        26⤵
        
        PID:5008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        27⤵
        
        PID:3024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        28⤵
        
        PID:3216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        29⤵
        
        PID:5028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        30⤵
        
        PID:4984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        31⤵
        
        PID:3332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        32⤵
        
        PID:3508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        33⤵
        
        PID:5084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        34⤵
        
        PID:3224
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        35⤵
        
        PID:2088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        36⤵
        
        PID:3764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        37⤵
        
        PID:3456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        38⤵
        
        PID:2620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        39⤵
        
        PID:1316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        40⤵
        
        PID:1116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        41⤵
        
        PID:3676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        42⤵
        
        PID:952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        43⤵
        
        PID:2556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        44⤵
        
        PID:2444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        45⤵
        
        PID:4804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        46⤵
        
        PID:436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        47⤵
        
        PID:3504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        48⤵
        
        PID:3912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        49⤵
        
        PID:4248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        50⤵
        
        PID:512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        51⤵
        
        PID:448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        52⤵
        
        PID:2608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        53⤵
        
        PID:5088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        54⤵
        
        PID:3208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        55⤵
        
        PID:3856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        56⤵
        
        PID:2484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        57⤵
        
        PID:4024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        58⤵
        
        PID:4864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        59⤵
        
        PID:1460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        60⤵
        
        PID:1584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        61⤵
        
        PID:4992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        62⤵
        
        PID:1876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        63⤵
        
        PID:4120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        64⤵
        
        PID:4104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        65⤵
        
        PID:4744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        66⤵
        
        PID:4460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        67⤵
        
        PID:2128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        68⤵
        
        PID:2868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        69⤵
        
        PID:3744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        70⤵
        
        PID:1468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        71⤵
        
        PID:4572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        72⤵
        
        PID:4032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        73⤵
        
        PID:4280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        74⤵
        
        PID:4488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        75⤵
        
        PID:4428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        76⤵
        
        PID:4524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        77⤵
        
        PID:4336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        78⤵
        
        PID:4332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        79⤵
        
        PID:208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        80⤵
        
        PID:920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        81⤵
        
        PID:4016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        82⤵
        
        PID:4048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        83⤵
        
        PID:3204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        84⤵
        
        PID:668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        85⤵
        
        PID:1900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        86⤵
        
        PID:4400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        87⤵
        
        PID:5048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        88⤵
        
        PID:4124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        89⤵
        
        PID:1588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        90⤵
        
        PID:4376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        91⤵
        
        PID:3136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        92⤵
        
        PID:4244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        93⤵
        
        PID:1020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        94⤵
        
        PID:1492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        95⤵
        
        PID:2060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        96⤵
        
        PID:5136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        97⤵
        
        PID:5148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        98⤵
        
        PID:5168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        99⤵
        
        PID:5196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        100⤵
        
        PID:5208
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        101⤵
        
        PID:5228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        102⤵
        
        PID:5240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        103⤵
        
        PID:5260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        104⤵
        
        PID:5276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        105⤵
        
        PID:5288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        106⤵
        
        PID:5304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        107⤵
        
        PID:5320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        108⤵
        
        PID:5336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        109⤵
        
        PID:5352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        110⤵
        
        PID:5368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        111⤵
        
        PID:5384
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        112⤵
        
        PID:5400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        113⤵
        
        PID:5416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        114⤵
        
        PID:5432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        115⤵
        
        PID:5452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        116⤵
        
        PID:5464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        117⤵
        
        PID:5484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        118⤵
        
        PID:5500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        119⤵
        
        PID:5520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        120⤵
        
        PID:5544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        121⤵
        
        PID:5556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        122⤵
        
        PID:5572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        123⤵
        
        PID:5588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        124⤵
        
        PID:5604
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        125⤵
        
        PID:5616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        126⤵
        
        PID:5632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        127⤵
        
        PID:5644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        128⤵
        
        PID:5656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        129⤵
        
        PID:5672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        130⤵
        
        PID:5688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        131⤵
        
        PID:5700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        132⤵
        
        PID:5716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        133⤵
        
        PID:5728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        134⤵
        
        PID:5744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        135⤵
        
        PID:5760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        136⤵
        
        PID:5776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        137⤵
        
        PID:5792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        138⤵
        
        PID:5804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        139⤵
        
        PID:5820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        140⤵
        
        PID:5836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        141⤵
        
        PID:5852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        142⤵
        
        PID:5868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        143⤵
        
        PID:5884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        144⤵
        
        PID:5896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        145⤵
        
        PID:5912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        146⤵
        
        PID:5928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        147⤵
        
        PID:5944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        148⤵
        
        PID:5960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        149⤵
        
        PID:5976
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        150⤵
        
        PID:5992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        151⤵
        
        PID:6008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        152⤵
        
        PID:6024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        153⤵
        
        PID:6040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        154⤵
        
        PID:6052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        155⤵
        
        PID:6072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        156⤵
        
        PID:6088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        157⤵
        
        PID:6104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        158⤵
        
        PID:6120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        159⤵
        
        PID:6136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        160⤵
        
        PID:2332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        161⤵
        
        PID:5076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        162⤵
        
        PID:2100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        163⤵
        
        PID:1720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        164⤵
        
        PID:4872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        165⤵
        
        PID:4060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        166⤵
        
        PID:2056
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        167⤵
        
        PID:2008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        168⤵
        
        PID:228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        169⤵
        
        PID:6148
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        170⤵
        
        PID:6164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        171⤵
        
        PID:6180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        172⤵
        
        PID:6196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        173⤵
        
        PID:6212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        174⤵
        
        PID:6228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        175⤵
        
        PID:6244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        176⤵
        
        PID:6260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        177⤵
        
        PID:6276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        178⤵
        
        PID:6292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        179⤵
        
        PID:6308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        180⤵
        
        PID:6324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        181⤵
        
        PID:6340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        182⤵
        
        PID:6352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        183⤵
        
        PID:6368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        184⤵
        
        PID:6380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        185⤵
        
        PID:6396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        186⤵
        
        PID:6412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        187⤵
        
        PID:6424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        188⤵
        
        PID:6436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        189⤵
        
        PID:6452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        190⤵
        
        PID:6468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        191⤵
        
        PID:6484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        192⤵
        
        PID:6500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        193⤵
        
        PID:6516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        194⤵
        
        PID:6532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        195⤵
        
        PID:6552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        196⤵
        
        PID:6568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        197⤵
        
        PID:6584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        198⤵
        
        PID:6596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        199⤵
        
        PID:6612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        200⤵
        
        PID:6628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        201⤵
        
        PID:6640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        202⤵
        
        PID:6652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        203⤵
        
        PID:6664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        204⤵
        
        PID:6680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        205⤵
        
        PID:6696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        206⤵
        
        PID:6712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        207⤵
        
        PID:6728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        208⤵
        
        PID:6744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        209⤵
        
        PID:6760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        210⤵
        
        PID:6776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        211⤵
        
        PID:6792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        212⤵
        
        PID:6808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        213⤵
        
        PID:6824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        214⤵
        
        PID:6840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        215⤵
        
        PID:6856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        216⤵
        
        PID:6872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        217⤵
        
        PID:6888
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        218⤵
        
        PID:6904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        219⤵
        
        PID:6920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        220⤵
        
        PID:6936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        221⤵
        
        PID:6952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        222⤵
        
        PID:6968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        223⤵
        
        PID:6984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        224⤵
        
        PID:7000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        225⤵
        
        PID:7016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        226⤵
        
        PID:7032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        227⤵
        
        PID:7048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        228⤵
        
        PID:7064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        229⤵
        
        PID:7076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        230⤵
        
        PID:7096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        231⤵
        
        PID:7112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        232⤵
        
        PID:7128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        233⤵
        
        PID:7144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        234⤵
        
        PID:7156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        235⤵
        
        PID:4928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        236⤵
        
        PID:3960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        237⤵
        
        PID:6540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        238⤵
        
        PID:7176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        239⤵
        
        PID:7188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        240⤵
        
        PID:7204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        241⤵
        
        PID:7220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        242⤵
        
        PID:7232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        243⤵
        
        PID:7248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        244⤵
        
        PID:7264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        245⤵
        
        PID:7276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        246⤵
        
        PID:7292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        247⤵
        
        PID:7308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        248⤵
        
        PID:7324
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        249⤵
        
        PID:7336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        250⤵
        
        PID:7352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        251⤵
        
        PID:7364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        252⤵
        
        PID:7380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        253⤵
        
        PID:7396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        254⤵
        
        PID:7412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        255⤵
        
        PID:7428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        256⤵
        
        PID:7440
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        257⤵
        
        PID:7456
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        258⤵
        
        PID:7468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        259⤵
        
        PID:7484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        260⤵
        
        PID:7500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        261⤵
        
        PID:7516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        262⤵
        
        PID:7532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        263⤵
        
        PID:7544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        264⤵
        
        PID:7560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        265⤵
        
        PID:7576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        266⤵
        
        PID:7592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        267⤵
        
        PID:7608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        268⤵
        
        PID:7624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        269⤵
        
        PID:7636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        270⤵
        
        PID:7652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        271⤵
        
        PID:7668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        272⤵
        
        PID:7684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        273⤵
        
        PID:7696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        274⤵
        
        PID:7712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        275⤵
        
        PID:7724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        276⤵
        
        PID:7740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        277⤵
        
        PID:7756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        278⤵
        
        PID:7768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        279⤵
        
        PID:7788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        280⤵
        
        PID:7804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        281⤵
        
        PID:7820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        282⤵
        
        PID:7832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        283⤵
        
        PID:7848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        284⤵
        
        PID:7860
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        285⤵
        
        PID:7876
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        286⤵
        
        PID:7892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        287⤵
        
        PID:7908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        288⤵
        
        PID:7924
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        289⤵
        
        PID:7940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        290⤵
        
        PID:7956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        291⤵
        
        PID:7972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        292⤵
        
        PID:7988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        293⤵
        
        PID:8004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        294⤵
        
        PID:8016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        295⤵
        
        PID:8028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        296⤵
        
        PID:8044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        297⤵
        
        PID:8060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        298⤵
        
        PID:8076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        299⤵
        
        PID:8092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        300⤵
        
        PID:8104
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        301⤵
        
        PID:8120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        302⤵
        
        PID:8136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        303⤵
        
        PID:8152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        304⤵
        
        PID:8164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        305⤵
        
        PID:8184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        306⤵
        
        PID:8200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        307⤵
        
        PID:8216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        308⤵
        
        PID:8232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        309⤵
        
        PID:8248
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        310⤵
        
        PID:8264
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        311⤵
        
        PID:8280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        312⤵
        
        PID:8296
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        313⤵
        
        PID:8312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        314⤵
        
        PID:8328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        315⤵
        
        PID:8344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        316⤵
        
        PID:8356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        317⤵
        
        PID:8376
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        318⤵
        
        PID:8388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        319⤵
        
        PID:8400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        320⤵
        
        PID:8416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        321⤵
        
        PID:8432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        322⤵
        
        PID:8448
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        323⤵
        
        PID:8468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        324⤵
        
        PID:8484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        325⤵
        
        PID:8500
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        326⤵
        
        PID:8516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        327⤵
        
        PID:8532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        328⤵
        
        PID:8548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        329⤵
        
        PID:8564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        330⤵
        
        PID:8576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        331⤵
        
        PID:8588
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        332⤵
        
        PID:8600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        333⤵
        
        PID:8616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        334⤵
        
        PID:8632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        335⤵
        
        PID:8648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        336⤵
        
        PID:8660
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        337⤵
        
        PID:8676
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        338⤵
        
        PID:8692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        339⤵
        
        PID:8708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        340⤵
        
        PID:8720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        341⤵
        
        PID:8736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        342⤵
        
        PID:8748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        343⤵
        
        PID:8768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        344⤵
        
        PID:8784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        345⤵
        
        PID:8800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        346⤵
        
        PID:8816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        347⤵
        
        PID:8828
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        348⤵
        
        PID:8844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        349⤵
        
        PID:8856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        350⤵
        
        PID:8872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        351⤵
        
        PID:8884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        352⤵
        
        PID:8900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        353⤵
        
        PID:8916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        354⤵
        
        PID:8932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        355⤵
        
        PID:8948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        356⤵
        
        PID:8964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        357⤵
        
        PID:8980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        358⤵
        
        PID:8992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        359⤵
        
        PID:9008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        360⤵
        
        PID:9020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        361⤵
        
        PID:9036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        362⤵
        
        PID:9048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        363⤵
        
        PID:9060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        364⤵
        
        PID:9072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        365⤵
        
        PID:9092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        366⤵
        
        PID:9112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        367⤵
        
        PID:9128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        368⤵
        
        PID:9144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        369⤵
        
        PID:9156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        370⤵
        
        PID:9172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        371⤵
        
        PID:9184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        372⤵
        
        PID:9196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        373⤵
        
        PID:9212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        374⤵
        
        PID:9228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        375⤵
        
        PID:9240
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        376⤵
        
        PID:9260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        377⤵
        
        PID:9276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        378⤵
        
        PID:9292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        379⤵
        
        PID:9304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        380⤵
        
        PID:9328
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        381⤵
        
        PID:9344
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        382⤵
        
        PID:9356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        383⤵
        
        PID:9372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        384⤵
        
        PID:9392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        385⤵
        
        PID:9404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        386⤵
        
        PID:9416
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        387⤵
        
        PID:9432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        388⤵
        
        PID:9444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        389⤵
        
        PID:9460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        390⤵
        
        PID:9476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        391⤵
        
        PID:9488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        392⤵
        
        PID:9504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        393⤵
        
        PID:9516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        394⤵
        
        PID:9532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        395⤵
        
        PID:9548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        396⤵
        
        PID:9560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        397⤵
        
        PID:9576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        398⤵
        
        PID:9596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        399⤵
        
        PID:9612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        400⤵
        
        PID:9624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        401⤵
        
        PID:9640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        402⤵
        
        PID:9652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        403⤵
        
        PID:9668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        404⤵
        
        PID:9684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        405⤵
        
        PID:9700
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        406⤵
        
        PID:9716
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        407⤵
        
        PID:9728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        408⤵
        
        PID:9744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        409⤵
        
        PID:9760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        410⤵
        
        PID:9776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        411⤵
        
        PID:9788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        412⤵
        
        PID:9812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        413⤵
        
        PID:9824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        414⤵
        
        PID:9836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        415⤵
        
        PID:9856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        416⤵
        
        PID:9872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        417⤵
        
        PID:9884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        418⤵
        
        PID:9904
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        419⤵
        
        PID:9916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        420⤵
        
        PID:9928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        421⤵
        
        PID:9940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        422⤵
        
        PID:9952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        423⤵
        
        PID:9968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        424⤵
        
        PID:9984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        425⤵
        
        PID:10004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        426⤵
        
        PID:10024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        427⤵
        
        PID:10040
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        428⤵
        
        PID:10060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        429⤵
        
        PID:10076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        430⤵
        
        PID:10092
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        431⤵
        
        PID:10108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        432⤵
        
        PID:10120
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        433⤵
        
        PID:10136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        434⤵
        
        PID:10152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        435⤵
        
        PID:10164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        436⤵
        
        PID:10180
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        437⤵
        
        PID:10196
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        438⤵
        
        PID:10212
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        439⤵
        
        PID:10228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        440⤵
        
        PID:5184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        441⤵
        
        PID:9996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        442⤵
        
        PID:10252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        443⤵
        
        PID:10268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        444⤵
        
        PID:10284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        445⤵
        
        PID:10300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        446⤵
        
        PID:10316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        447⤵
        
        PID:10332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        448⤵
        
        PID:10348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        449⤵
        
        PID:10360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        450⤵
        
        PID:10380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        451⤵
        
        PID:10392
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        452⤵
        
        PID:10412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        453⤵
        
        PID:10432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        454⤵
        
        PID:10452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        455⤵
        
        PID:10468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        456⤵
        
        PID:10488
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        457⤵
        
        PID:10504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        458⤵
        
        PID:10516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        459⤵
        
        PID:10536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        460⤵
        
        PID:10576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        461⤵
        
        PID:10608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        462⤵
        
        PID:10620
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        463⤵
        
        PID:10632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        464⤵
        
        PID:10648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        465⤵
        
        PID:10664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        466⤵
        
        PID:10680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        467⤵
        
        PID:10696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        468⤵
        
        PID:10712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        469⤵
        
        PID:10724
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        470⤵
        
        PID:10740
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        471⤵
        
        PID:10756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        472⤵
        
        PID:10772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        473⤵
        
        PID:10784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        474⤵
        
        PID:10804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        475⤵
        
        PID:10820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        476⤵
        
        PID:10836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        477⤵
        
        PID:10852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        478⤵
        
        PID:10868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        479⤵
        
        PID:10884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        480⤵
        
        PID:10900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        481⤵
        
        PID:10916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        482⤵
        
        PID:10932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        483⤵
        
        PID:10944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        484⤵
        
        PID:10964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        485⤵
        
        PID:10980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        486⤵
        
        PID:10996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        487⤵
        
        PID:11012
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        488⤵
        
        PID:11028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        489⤵
        
        PID:11044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        490⤵
        
        PID:11060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        491⤵
        
        PID:11076
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        492⤵
        
        PID:11088
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        493⤵
        
        PID:11100
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        494⤵
        
        PID:11116
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        495⤵
        
        PID:11136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        496⤵
        
        PID:11164
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        497⤵
        
        PID:11184
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        498⤵
        
        PID:11228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        499⤵
        
        PID:9756
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        500⤵
        
        PID:11280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        501⤵
        
        PID:11300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        502⤵
        
        PID:11312
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        503⤵
        
        PID:11340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        504⤵
        
        PID:11372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        505⤵
        
        PID:11424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        506⤵
        
        PID:11452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        507⤵
        
        PID:11468
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        508⤵
        
        PID:11484
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        509⤵
        
        PID:11504
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        510⤵
        
        PID:11516
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        511⤵
        
        PID:11532
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        512⤵
        
        PID:11556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        513⤵
        
        PID:11576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        514⤵
        
        PID:11600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        515⤵
        
        PID:11624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        516⤵
        
        PID:11636
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        517⤵
        
        PID:11656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        518⤵
        
        PID:11672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        519⤵
        
        PID:11688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        520⤵
        
        PID:11704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        521⤵
        
        PID:11720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        522⤵
        
        PID:11736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        523⤵
        
        PID:11748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        524⤵
        
        PID:11760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        525⤵
        
        PID:11772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        526⤵
        
        PID:11788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        527⤵
        
        PID:11804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        528⤵
        
        PID:11820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        529⤵
        
        PID:11832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        530⤵
        
        PID:11844
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        531⤵
        
        PID:11856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        532⤵
        
        PID:11868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        533⤵
        
        PID:11880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        534⤵
        
        PID:11892
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        535⤵
        
        PID:11908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        536⤵
        
        PID:11920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        537⤵
        
        PID:11936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        538⤵
        
        PID:11956
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        539⤵
        
        PID:11972
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        540⤵
        
        PID:11988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        541⤵
        
        PID:12004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        542⤵
        
        PID:12020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        543⤵
        
        PID:12036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        544⤵
        
        PID:12052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        545⤵
        
        PID:12068
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        546⤵
        
        PID:12080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        547⤵
        
        PID:12096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        548⤵
        
        PID:12108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        549⤵
        
        PID:12124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        550⤵
        
        PID:12140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        551⤵
        
        PID:12156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        552⤵
        
        PID:12172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        553⤵
        
        PID:12188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        554⤵
        
        PID:12204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        555⤵
        
        PID:12220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        556⤵
        
        PID:12236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        557⤵
        
        PID:12252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        558⤵
        
        PID:12268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        559⤵
        
        PID:12280
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        560⤵
        
        PID:2512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        561⤵
        
        PID:4380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        562⤵
        
        PID:4576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        563⤵
        
        PID:3464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        564⤵
        
        PID:4988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        565⤵
        
        PID:9388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        566⤵
        
        PID:3400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        567⤵
        
        PID:12300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        568⤵
        
        PID:12316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        569⤵
        
        PID:12332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        570⤵
        
        PID:12348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        571⤵
        
        PID:12364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        572⤵
        
        PID:12380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        573⤵
        
        PID:12396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        574⤵
        
        PID:12412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        575⤵
        
        PID:12428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        576⤵
        
        PID:12444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        577⤵
        
        PID:12460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        578⤵
        
        PID:12480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        579⤵
        
        PID:12496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        580⤵
        
        PID:12512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        581⤵
        
        PID:12524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        582⤵
        
        PID:12540
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        583⤵
        
        PID:12556
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        584⤵
        
        PID:12572
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        585⤵
        
        PID:12584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        586⤵
        
        PID:12600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        587⤵
        
        PID:12616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        588⤵
        
        PID:12632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        589⤵
        
        PID:12648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        590⤵
        
        PID:12664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        591⤵
        
        PID:12680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        592⤵
        
        PID:12696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        593⤵
        
        PID:12712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        594⤵
        
        PID:12728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        595⤵
        
        PID:12744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        596⤵
        
        PID:12768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        597⤵
        
        PID:12812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        598⤵
        
        PID:12824
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        599⤵
        
        PID:12840
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        600⤵
        
        PID:12856
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        601⤵
        
        PID:12872
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        602⤵
        
        PID:12884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        603⤵
        
        PID:12900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        604⤵
        
        PID:12912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        605⤵
        
        PID:12928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        606⤵
        
        PID:12940
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        607⤵
        
        PID:12952
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        608⤵
        
        PID:12968
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        609⤵
        
        PID:12984
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        610⤵
        
        PID:13000
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        611⤵
        
        PID:13016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        612⤵
        
        PID:13032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        613⤵
        
        PID:13048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        614⤵
        
        PID:13064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        615⤵
        
        PID:13080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        616⤵
        
        PID:13096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        617⤵
        
        PID:13108
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        618⤵
        
        PID:13124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        619⤵
        
        PID:13136
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        620⤵
        
        PID:13152
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        621⤵
        
        PID:13172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        622⤵
        
        PID:13188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        623⤵
        
        PID:13204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        624⤵
        
        PID:13220
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        625⤵
        
        PID:13236
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        626⤵
        
        PID:13252
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        627⤵
        
        PID:13268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        628⤵
        
        PID:13284
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        629⤵
        
        PID:13300
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        630⤵
        
        PID:11944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        631⤵
        
        PID:13320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        632⤵
        
        PID:13332
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        633⤵
        
        PID:13348
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        634⤵
        
        PID:13360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        635⤵
        
        PID:13372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        636⤵
        
        PID:13388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        637⤵
        
        PID:13404
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        638⤵
        
        PID:13420
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        639⤵
        
        PID:13432
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        640⤵
        
        PID:13452
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        641⤵
        
        PID:13464
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        642⤵
        
        PID:13480
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        643⤵
        
        PID:13496
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        644⤵
        
        PID:13512
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        645⤵
        
        PID:13528
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        646⤵
        
        PID:13544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        647⤵
        
        PID:13560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        648⤵
        
        PID:13576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        649⤵
        
        PID:13592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        650⤵
        
        PID:13608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        651⤵
        
        PID:13624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        652⤵
        
        PID:13640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        653⤵
        
        PID:13652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        654⤵
        
        PID:13668
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        655⤵
        
        PID:13684
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        656⤵
        
        PID:13696
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        657⤵
        
        PID:13708
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        658⤵
        
        PID:13720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        659⤵
        
        PID:13732
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        660⤵
        
        PID:13748
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        661⤵
        
        PID:13760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        662⤵
        
        PID:13772
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        663⤵
        
        PID:13788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        664⤵
        
        PID:13804
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        665⤵
        
        PID:13816
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        666⤵
        
        PID:13832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        667⤵
        
        PID:13852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        668⤵
        
        PID:13868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        669⤵
        
        PID:13884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        670⤵
        
        PID:13900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        671⤵
        
        PID:13916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        672⤵
        
        PID:13932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        673⤵
        
        PID:13944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        674⤵
        
        PID:13960
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        675⤵
        
        PID:13988
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        676⤵
        
        PID:14004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        677⤵
        
        PID:14020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        678⤵
        
        PID:14036
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        679⤵
        
        PID:14052
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        680⤵
        
        PID:14064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        681⤵
        
        PID:14080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        682⤵
        
        PID:14096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        683⤵
        
        PID:14112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        684⤵
        
        PID:14124
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        685⤵
        
        PID:14140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        686⤵
        
        PID:14156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        687⤵
        
        PID:14172
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        688⤵
        
        PID:14188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        689⤵
        
        PID:14200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        690⤵
        
        PID:14216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        691⤵
        
        PID:14232
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        692⤵
        
        PID:14244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        693⤵
        
        PID:14260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        694⤵
        
        PID:14272
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        695⤵
        
        PID:14292
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        696⤵
        
        PID:14308
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        697⤵
        
        PID:14320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        698⤵
        
        PID:4316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        699⤵
        
        PID:14340
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        700⤵
        
        PID:14360
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        701⤵
        
        PID:14372
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        702⤵
        
        PID:14388
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        703⤵
        
        PID:14400
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        704⤵
        
        PID:14436
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        705⤵
        
        PID:14476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        706⤵
        
        PID:14508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        707⤵
        
        PID:14524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        708⤵
        
        PID:14544
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        709⤵
        
        PID:14560
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        710⤵
        
        PID:14576
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        711⤵
        
        PID:14592
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        712⤵
        
        PID:14608
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        713⤵
        
        PID:14624
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        714⤵
        
        PID:14640
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        715⤵
        
        PID:14652
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        716⤵
        
        PID:14672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        717⤵
        
        PID:14688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        718⤵
        
        PID:14704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        719⤵
        
        PID:14720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        720⤵
        
        PID:14736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        721⤵
        
        PID:14752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        722⤵
        
        PID:14768
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        723⤵
        
        PID:14784
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        724⤵
        
        PID:14796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        725⤵
        
        PID:14812
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        726⤵
        
        PID:14832
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        727⤵
        
        PID:14848
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        728⤵
        
        PID:14864
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        729⤵
        
        PID:14880
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        730⤵
        
        PID:14896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        731⤵
        
        PID:14908
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        732⤵
        
        PID:14920
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        733⤵
        
        PID:14936
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        734⤵
        
        PID:14948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        735⤵
        
        PID:14964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        736⤵
        
        PID:14980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        737⤵
        
        PID:14992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        738⤵
        
        PID:15004
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        739⤵
        
        PID:15020
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        740⤵
        
        PID:15032
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        741⤵
        
        PID:15048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        742⤵
        
        PID:15064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        743⤵
        
        PID:15080
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        744⤵
        
        PID:15096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        745⤵
        
        PID:15112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        746⤵
        
        PID:15128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        747⤵
        
        PID:15140
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        748⤵
        
        PID:15156
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        749⤵
        
        PID:15168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        750⤵
        
        PID:15188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        751⤵
        
        PID:15200
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        752⤵
        
        PID:15216
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        753⤵
        
        PID:15228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        754⤵
        
        PID:15244
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        755⤵
        
        PID:15260
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        756⤵
        
        PID:15276
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        757⤵
        
        PID:15288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        758⤵
        
        PID:15304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        759⤵
        
        PID:15320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        760⤵
        
        PID:15336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        761⤵
        
        PID:15352
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        762⤵
        
        PID:15364
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        763⤵
        
        PID:15380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        764⤵
        
        PID:15396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        765⤵
        
        PID:15412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        766⤵
        
        PID:15428
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        767⤵
        
        PID:15444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        768⤵
        
        PID:15460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        769⤵
        
        PID:15476
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        770⤵
        
        PID:15492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        771⤵
        
        PID:15508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        772⤵
        
        PID:15520
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        773⤵
        
        PID:15536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        774⤵
        
        PID:15548
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        775⤵
        
        PID:15568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        776⤵
        
        PID:15584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        777⤵
        
        PID:15596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        778⤵
        
        PID:15612
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        779⤵
        
        PID:15628
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        780⤵
        
        PID:15644
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        781⤵
        
        PID:15656
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        782⤵
        
        PID:15672
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        783⤵
        
        PID:15688
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        784⤵
        
        PID:15704
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        785⤵
        
        PID:15720
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        786⤵
        
        PID:15736
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        787⤵
        
        PID:15752
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        788⤵
        
        PID:15764
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        789⤵
        
        PID:15788
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        790⤵
        
        PID:15800
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        791⤵
        
        PID:15820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        792⤵
        
        PID:15836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        793⤵
        
        PID:15852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        794⤵
        
        PID:15868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        795⤵
        
        PID:15884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        796⤵
        
        PID:15900
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        797⤵
        
        PID:15916
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        798⤵
        
        PID:15932
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        799⤵
        
        PID:15948
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        800⤵
        
        PID:15964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        801⤵
        
        PID:15980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        802⤵
        
        PID:15992
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        803⤵
        
        PID:16008
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        804⤵
        
        PID:16024
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        805⤵
        
        PID:16044
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        806⤵
        
        PID:16064
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        807⤵
        
        PID:16084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        808⤵
        
        PID:16132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        809⤵
        
        PID:16168
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        810⤵
        
        PID:16188
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        811⤵
        
        PID:16204
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        812⤵
        
        PID:16228
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        813⤵
        
        PID:16256
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        814⤵
        
        PID:16268
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        815⤵
        
        PID:16288
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        816⤵
        
        PID:16304
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        817⤵
        
        PID:16320
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        818⤵
        
        PID:16336
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        819⤵
        
        PID:16356
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        820⤵
        
        PID:16368
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        821⤵
        
        PID:16380
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        822⤵
        
        PID:4796
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        823⤵
        
        PID:4492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        824⤵
        
        PID:10596
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        825⤵
        
        PID:11132
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        826⤵
        
        PID:10564
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        827⤵
        
        PID:10584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        828⤵
        
        PID:2316
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        829⤵
        
        PID:16396
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        830⤵
        
        PID:16412
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        831⤵
        
        PID:16424
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        832⤵
        
        PID:16444
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        833⤵
        
        PID:16460
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        834⤵
        
        PID:16472
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        835⤵
        
        PID:16492
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        836⤵
        
        PID:16508
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        837⤵
        
        PID:16524
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        838⤵
        
        PID:16536
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        839⤵
        
        PID:16552
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        840⤵
        
        PID:16568
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        841⤵
        
        PID:16584
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        842⤵
        
        PID:16600
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        843⤵
        
        PID:16616
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        844⤵
        
        PID:16632
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        845⤵
        
        PID:16648
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        846⤵
        
        PID:16664
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        847⤵
        
        PID:16680
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        848⤵
        
        PID:16692
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        849⤵
        
        PID:16712
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        850⤵
        
        PID:16728
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        851⤵
        
        PID:16744
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        852⤵
        
        PID:16760
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        853⤵
        
        PID:16776
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        854⤵
        
        PID:16792
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        855⤵
        
        PID:16808
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        856⤵
        
        PID:16820
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        857⤵
        
        PID:16836
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        858⤵
        
        PID:16852
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        859⤵
        
        PID:16868
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        860⤵
        
        PID:16884
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        861⤵
        
        PID:16896
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        862⤵
        
        PID:16912
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        863⤵
        
        PID:16928
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        864⤵
        
        PID:16944
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        865⤵
        
        PID:16964
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        866⤵
        
        PID:16980
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        867⤵
        
        PID:16996
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        868⤵
        
        PID:17016
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        869⤵
        
        PID:17028
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        870⤵
        
        PID:17048
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        871⤵
        
        PID:17060
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        872⤵
        
        PID:17072
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        873⤵
        
        PID:17084
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        874⤵
        
        PID:17096
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        875⤵
        
        PID:17112
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        876⤵
        
        PID:17128
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        877⤵
        
        PID:17144
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        878⤵
        
        PID:17160
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        879⤵
        
        PID:17176
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        880⤵
        
        PID:17192
        
        C:\Windows\SysWOW64\rundll32.exe
        
        rundll32.exe C:\Users\Admin\AppData\Local\Temp\625b3b18b6f9d8e006efbc4f5063f8f5_JaffaCakes118.dll,#1
        881⤵
        
        PID:17208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1212-1-0x00000000749F0000-0x0000000074C74000-memory.dmp

Filesize
2.5MB

Download
memory/3352-0-0x00000000749F0000-0x0000000074C74000-memory.dmp

Filesize
2.5MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads