b377147c1bfb1f4f96ef04a6a4f2220c2f2cd14c28eb7b39e4da1ef3ff4f9b9e

Resubmissions

02-11-2023 15:01

231102-sdwxkafe89 7

02-11-2023 14:58

231102-scexnade9x 7

Sharing

Copy URL

Twitter E-mail

General

Target

EzExploit.zip
Size

54KB
Sample

231102-sdwxkafe89
MD5

f87c13bf19ed22f5520eb9f6d00b7b93
SHA1

6b7a0d15cdbea67f9c801b7c79da2fe8810ce578
SHA256

b377147c1bfb1f4f96ef04a6a4f2220c2f2cd14c28eb7b39e4da1ef3ff4f9b9e
SHA512

b1a7e16ce91dc6ab379889f0d428e20d026da5142434b560fed6fcf67e7939a240e011584b34b8e36d386acb53c6d7879f3e2415f5ddbf815e46e6433144b953
SSDEEP

1536:Uww7dbv6b3jlK+jkMFzSBr74bytyRZ6u5u:UwgdbvY3jlK+AMd8v4by5u5u

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  EzExploit.zip
- Size
  
  54KB
- MD5
  
  f87c13bf19ed22f5520eb9f6d00b7b93
- SHA1
  
  6b7a0d15cdbea67f9c801b7c79da2fe8810ce578
- SHA256
  
  b377147c1bfb1f4f96ef04a6a4f2220c2f2cd14c28eb7b39e4da1ef3ff4f9b9e
- SHA512
  
  b1a7e16ce91dc6ab379889f0d428e20d026da5142434b560fed6fcf67e7939a240e011584b34b8e36d386acb53c6d7879f3e2415f5ddbf815e46e6433144b953
- SSDEEP
  
  1536:Uww7dbv6b3jlK+jkMFzSBr74bytyRZ6u5u:UwgdbvY3jlK+AMd8v4by5u5u
Score

3^/10
behavioral1
- Target
  
  EzExploit/config.yml
- Size
  
  6KB
- MD5
  
  05341b75bff54e79df25ae979575d313
- SHA1
  
  7e6ac66a82bb6dfca151a8654ea80afd4a732e12
- SHA256
  
  fc76f96f603de83673f345c9e7359c55e4b6273f55fd1e0180b3467498276aae
- SHA512
  
  6faa4fde86615868a2b8888b0c783c3dce42ae5e1292b6aae8c50581642c6f3ee4f962ba1376574d7320d8558c2520488b19ee5d3776a36e570e2df36e237836
- SSDEEP
  
  96:kqdN1x4n/Q+Fd24n/Q+FSq54n/Q+FZlq54n/Q+FZlq54n/Q+FZlq54n/Q+FZlq5p:lNrlrlrlrlrlrlrlrlrl9l4lWqsQr
Score

3^/10
behavioral2
- Target
  
  EzExploit/ezexploit_standard.jar
- Size
  
  7KB
- MD5
  
  109f51f21c044d3292f4a3ef3e2b5c0d
- SHA1
  
  27fa1ba921ce08e56e827cdf6b5a04f9e527f037
- SHA256
  
  249401d3529e543a99a63adbcc8e6b09f62cc70c0b5f32d788d0f739ce16905a
- SHA512
  
  db5a103711068292ad65f0d2a213c91be0c7c284cb715cf03284f249311c9da4474e78be878aea8bfdcb105360f05f190458957dd259b960fa9cf88463393a3d
- SSDEEP
  
  96:uV6HmIeId1qsjTGGlSIdypLFS46BmONDuJyZ07FNPCiBYTG+edJdWEAetV+qGzWO:c6HTUc468zJn7SieTixWiBGzWk38Ob/x
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral3
- Target
  
  EzExploit/launch-standard.bat
- Size
  
  45B
- MD5
  
  94c75b944240c0176898696f27116665
- SHA1
  
  a50fe41985615ab67d65f00cb51deef76715def9
- SHA256
  
  874f32053f82fcc17168d294d239fedf256958cc9ca90176153a8eb62886b4be
- SHA512
  
  e6f6c83870c228bcd6f42af05c0e7cc29c9b79095ccbbf63719d3b700191809e1d5741958c56d0d6f5e0adc5d9cc34f00d9f2a0c71516330fbe6f2aa32a70aa4
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral4
- Target
  
  EzExploit/modules.yml
- Size
  
  155B
- MD5
  
  18f81d9de7dd889e0277e9f67f7df9be
- SHA1
  
  b898768a02aaf715bb5faa03d8041956bd854e14
- SHA256
  
  75a3d3e3d4023e832463b0020b08325a5cad6cdb0603b4d25fdacacf3cc2665d
- SHA512
  
  8558c913f9aa880c18a8a185690da32656842ed20e8cebff9b0d9ebd7306c13f44d7d54390ce320a8c1741c0cb4767475f1900317c3e9f6fb2e5c3b4259210ab
Score

3^/10
behavioral5
- Target
  
  EzExploit/modules/cmd_alert.jar
- Size
  
  5KB
- MD5
  
  56416bffc290b5531375807e134053f4
- SHA1
  
  cc706ad8d6b9bf02154df232d1b9574b892afd2f
- SHA256
  
  785152401573f49a3b1d9a3cf50edb89b971acf0bff4f50c1ba93678b15e92cb
- SHA512
  
  e798017ac689d8cb4f9219b84d85896ac6852762efba859af5e7442b22bf0b81fcdb5e117342e7b309a4c0b7bfed8e0304669b1c70e565b69b05610852b45bb4
- SSDEEP
  
  96:n6H/zjSMnsoU6BuXvGLHvoWywguYPHbSDM9TH5Yvp:n6r+MskcXOLb0uYjSM5Yvp
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral6
- Target
  
  EzExploit/modules/cmd_find.jar
- Size
  
  4KB
- MD5
  
  7b5e43fbeeadb29e464b83438b364b41
- SHA1
  
  7f1ec5e5d4a1638b90bae3850c91c7172dbbd01f
- SHA256
  
  ce8061e18a7adda05365eb3fbc46dd8860725ee8d529b91c1362aabb24e6915d
- SHA512
  
  6721f7bded1786edba9792456348fd94b3cb302ff784057a779dad7682491a3a842d5f05e60d0c3c2f3506d5066afd367159700309fec2e6fa280d83f478f71b
- SSDEEP
  
  96:v6HXGuBMb/E2TWtwRx4/m/5KoE4TpZ06cB1O2uWD:v63G7bEkWtwRx//5tEYEia
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral7
- Target
  
  EzExploit/modules/cmd_list.jar
- Size
  
  4KB
- MD5
  
  355849a62628d973a7bbc8c2505e805a
- SHA1
  
  e7bab7fb96f13c3f007c5d89129d804b5ebe50b8
- SHA256
  
  f4e62e6285ea6812a02495f31b9c2f7d3ebe753973b8a9f9ccab2f7b3016ab1d
- SHA512
  
  e58000192f0c19157b4d3a3683ba07ffdb391a45467c94388953589bbad3fe447403edb147fc0ac1ef3b97779142cda0f578e33e6543392fb8161f942815ff06
- SSDEEP
  
  48:v6H3giVY5igTuykeTZygXXzw/RY8j8fWb9M99Cfrn0o9SEuCVETGUVWf5P7BZf2r:v6HvVU7zJT0y8S9960zqUW5P77fj6f
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral8
- Target
  
  EzExploit/modules/cmd_send.jar
- Size
  
  5KB
- MD5
  
  bd2949539c806d6fea49c0a26dd8810c
- SHA1
  
  2eab10589b2bc9232f1dabfc2ef52c7d1be3d844
- SHA256
  
  5399b872c37b0e5dd6f6bf414b5ef783d2b002ce3d497ac050036da95bf69b7c
- SHA512
  
  05ee6c74a52bcaec4fb6e447d46600be01623002efa777f45414a89dac6c3dc0abef24bae9c5faf4049912b22da148abd2e18e5d752b160a03ddc53088a37129
- SSDEEP
  
  96:f6HSC4xFyAw5Nt8zWmQzLmBNeCt48cP6w4080vfMyvr6M0CxU:f6dsfmIhoLmBNeCtsl3VMyQp
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral9
- Target
  
  EzExploit/modules/cmd_server.jar
- Size
  
  7KB
- MD5
  
  7390d87c1e8f52bc6fb77842b54c1a47
- SHA1
  
  61c8387e7cbbf83679362cca0f32b5f7613b3218
- SHA256
  
  70e7c33275ab86e2a79d40dc76153b8bb5a29d9c18bfeef8605d32cf8ca1af37
- SHA512
  
  442f2f28da32128828a2eac1e7659b9d44edd1fe54637f063c28c41b186b77b7786104a57de27e19140a38120b4123863bae314f1923efe9c2a03c3c5ef17b6f
- SSDEEP
  
  96:/6HNADjagGj/S0Q31hmVXLEboTx8AoMXsKhTGett8pxJWNPInGCeeWyzV+0GzWFw:/6aXaytFMwst8TJWkWyzvGzWq2S
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral10
- Target
  
  EzExploit/modules/reconnect_yaml.jar
- Size
  
  6KB
- MD5
  
  d1fde0d321918adc22002d9072ef23ca
- SHA1
  
  efd66687ec71fa74dd1e6bf438615214abb5fee9
- SHA256
  
  23147bfa63e2ac2add7c57480ab579f6a3d3b6091d480e712b610b1b9b79a4e4
- SHA512
  
  ba876f61d6484db3d441bd7004d03a5d6afa97085fd46d8684d6ba6648af083a4d6300a77f8e16dff754c63158f7be8ee9de81443ae06cb1259c3aed611fca85
- SSDEEP
  
  96:f6HZWp6AqfLNhLLO2cE/BZtit/violx5gSvnG0/KAuKNzLYsyusW4s7NqfyaDW:f650uzNhs4titiolB/GXALWsJsVM8PDW
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral11
- Target
  
  EzExploit/plugin.yml
- Size
  
  179B
- MD5
  
  c551a46f1ca1d5d6b58dbfd9094c34d8
- SHA1
  
  c09123db2600106518f5acb21cb5c4ce2f29d08f
- SHA256
  
  4841ca6db6f33d429f3cd7c7d6e9dcc3e4dcdb3684d9f4d735d7205643fe678d
- SHA512
  
  4dca5efb7cd35807c3c8190d4d9fc2d056a59f8e82ab9541aac48ac84e6550ce411a73f87961b03502231374fe9c010e1390e9dd73d9440c6a7cde75d8e86884
Score

3^/10
behavioral12
- Target
  
  EzExploit/plugins/RconFix.jar
- Size
  
  2KB
- MD5
  
  bb0199fad177d12ac638d2da61f9a4df
- SHA1
  
  25ee0d14cdc31a214e31c042054c82cdd9ad5176
- SHA256
  
  87e3c42b1cdba0b17983ee04ed656d94ebc2101923f4ba4f6dd96dea83705751
- SHA512
  
  26aa5c1f5e1fb172bbd65fd0c91da8e321c982027c7f26a27f2ce7454d8bb9493fc103180e094bfb87e7295217d6dd57b8fbf0ce8df9f5428e6e80c8498e672b
Score

7^/10

discovery
- Modifies file permissions
  discovery
behavioral13
- Target
  
  EzExploit/plugins/VdsPro.jar
- Size
  
  24KB
- MD5
  
  49322dfbb0beaed49c9dc64c94924fb0
- SHA1
  
  0c62026ee41d25c4931a28ce653279d3cd7b7f45
- SHA256
  
  b1ba51e4d0a434601b25cea274e01d35085ff7d3422b58dcabcf6b0606a5089f
- SHA512
  
  a647400bf2a8148155deaa4ba0cf0c157deba2cb6a24bfbe94a431f1f7b3b9d15e09210431580619ed1756366d720f1cf28f9c7833c5a8b8207e9757ce3080b8
- SSDEEP
  
  768:PnX4fmX27zA8nl0C+tHQyliUW4b8mFm6n+:/XjXU88n21HdiSrn+
Score

1^/10
behavioral14
- Target
  
  bungee.yml
- Size
  
  138B
- MD5
  
  c80b1f28cd3edf903e669896fe7dbfe1
- SHA1
  
  5bf527497746048a848aa5ae9063f47d2b9a62fc
- SHA256
  
  ae748b5837d4a7a5f4370e46b000be2d2c1f48f078af69e18f12d4295ef03946
- SHA512
  
  cc2dbfba636e9e141c27a2f5f99bcb8477d447a7dc4fb9cd45784de8a1d56ba8d32ec6a62c5c45e4e64680c5467ffc08a3c69d3d46aadcb96d90b07429f9b61f
Score

3^/10
behavioral15
- Target
  
  jutting/BungeeHack.class
- Size
  
  2KB
- MD5
  
  a92ed9a91d69ac1c22a9c64521266942
- SHA1
  
  c3fc1dc3694456f1cade8e93e09b34a1dd14cd2c
- SHA256
  
  a92049d0997083d64e7722f39610d1e79d5183feb3d5efe34ee02bfe87116627
- SHA512
  
  fc851ae1eb1e0c091da7b8b4c68f7686e5090223de0ca78b8f99b30524289fe4a79c378292045bb72143f2b8311444b8947317479bc46dbd55dfffac13d75e48
Score

3^/10
behavioral16
- Target
  
  jutting/commands/ConnectCommand.class
- Size
  
  2KB
- MD5
  
  96996610ed81e5104ec0a06dcb082217
- SHA1
  
  37c1b8fabf4603e2661da6698692f1be33460fff
- SHA256
  
  63636ef1dc9334e17da3eac152efa43527e4b9986148e0edd4de71ba03089f84
- SHA512
  
  5eafbcbc05acc9968147484befd8d260792ac73a57df7f4de13e5f2badf98932d8ca8edc0f15f26798cb24d8efb5ad33bea4df0bd723b52cd73f82be2a652fa4
Score

3^/10
behavioral17
- Target
  
  jutting/commands/IPCommand.class
- Size
  
  1KB
- MD5
  
  a0dd63da0eb3256f5e2042da8bf100ac
- SHA1
  
  f36f5b6f14459fbadec1a952c5687a1e702e51c9
- SHA256
  
  57897e204c119bd8e5baaead96f37153b162632528fde4fef8b96f0975a6e02f
- SHA512
  
  0f86fd611cb6fc67b71b5f714f703b713f29146c525259a5f8a7f06ab07f48b8640e0eee42a2060660036fcca39e813b9bdbe42cf4c943f6c1ae76f196a5dedb
Score

3^/10
behavioral18
- Target
  
  jutting/commands/InfoCommand.class
- Size
  
  1KB
- MD5
  
  32157437391c38f31622558368a8b6d1
- SHA1
  
  c9cadaf9857869eb7df80975d1a7cc23a469cf64
- SHA256
  
  bf7e1159079f6ee01e5836c5f6bc45c62ea7ad2855dc2977640e78b6a34fa060
- SHA512
  
  d2e74e67ab1a57133f0a2bddb07994e87d55825327e0785e9de568983eca20a282456c64109a4066f093deaa6b396d598822a793673d411348d3d23f3a126979
Score

3^/10
behavioral19
- Target
  
  jutting/commands/NameCommand.class
- Size
  
  1KB
- MD5
  
  9a0b017e890782f7539cc7b3aa3148f7
- SHA1
  
  533ab29124528b600d9c4c5e05dea450a1d7a837
- SHA256
  
  b518926c100c261fd68d921b43ba020875129aacb4481c240675b9cfc9f475b5
- SHA512
  
  2c690aa021f33cc1c1a7176f732b94373eedeea5f12811bc67aba4d344d228dfeeeefcf57e1ab5b595819ccab8ecd5e7c839104abe745ca325639c3bd914bf33
Score

3^/10
behavioral20
- Target
  
  jutting/commands/UUIDCommand.class
- Size
  
  2KB
- MD5
  
  40520107b6b09320a72b1918d4709999
- SHA1
  
  fefe0c241739a81a642511bf028b0dae4cfe9da0
- SHA256
  
  f4683e937f6b6d2e00dfcdd35746185a742a5ab56949592cc8ecac32477929a8
- SHA512
  
  61d03540c2660b0fd91829e297b600dca02af86fb9255944c15908c25bb5951ea643ce1dd954dbe15b538f5dc154e1c01cb3ffb56d61d2d2ccfe4f2fa57b55f9
Score

3^/10
behavioral21
- Target
  
  jutting/listener/LoginListener.class
- Size
  
  905B
- MD5
  
  3cf17b08a68e01d8a0556f6fd28cfb8b
- SHA1
  
  b70fd12d4a789415525ab4ca03e6b6a98dc2a96b
- SHA256
  
  e84bb794ed2d97342d86491ed6415e4dca085fce949eb5d0509597f1ca67a7c8
- SHA512
  
  7ae0f3bda7bd37bb207f86341c4fe3e087b1af444e779d4b0bc21cbc7f2c273553649d16ce2a9652f27e1d5693fa9499efe702703dc4637413d414add185eaee
Score

3^/10
behavioral22
- Target
  
  jutting/listener/PreLoginListener.class
- Size
  
  915B
- MD5
  
  311c49e2c5bf69ef791262cd3b87c529
- SHA1
  
  b98dedf5009706ca4cb98223a05e80244370aee4
- SHA256
  
  5824be6014259d41ea2ef39921ed909ec22274adaac6b94f8b362c4f8130c77e
- SHA512
  
  548f4197426e2cfe0d6c201bc413771268740d93d2d14d3718fb408142a88d60efca2eb9268ad5a02ef898e790daaa0126646d7e7559a514ba65f8a3ec5d1686
Score

3^/10
behavioral23
- Target
  
  jutting/listener/ServerConnectListener.class
- Size
  
  939B
- MD5
  
  d3f133578c61888c29c435953c8d6d68
- SHA1
  
  51bc8b71f53f4956a3da76b758f70b9d10e8eac0
- SHA256
  
  e70d11b496e5d7dc9ebd5e3c7e7fbb25f887c76ba1dfd17472ae14a335e2d05f
- SHA512
  
  c3e9219694319d4ba6897e567bb4a7fae1103de1a651d2b155d0ad450b23626b80957956091f90b5d7330ac6990ed7933ee9bb3f32a1566eb7191625fa25baaa
Score

3^/10
behavioral24
- Target
  
  org/json/simple/ItemList.class
- Size
  
  2KB
- MD5
  
  9dd3032e989f840f5e7e5e5f95b71d6a
- SHA1
  
  6080a1bcd1cff8eb62645d81d7949609c06b1474
- SHA256
  
  25317850e8e03d19ff88e8a7b875381e53a62b6c2a0c7efd8d5b1e2234d85a8c
- SHA512
  
  0af6af2678051b405be65ebb5a51843d36436657616accdc53245c96ab45e56285db31ffc6e139159d8084c5116773a2cb8ae373f3e2de2a531e7d465c1abf54
Score

3^/10
behavioral25
- Target
  
  org/json/simple/JSONArray.class
- Size
  
  1KB
- MD5
  
  92dd5ce586d7eb710b6e641a4dcf2470
- SHA1
  
  ab1e294e67ad15f2f075445b72ab56b24f9b9d23
- SHA256
  
  395f0d61399a89f1cd257131083c76636fe60e2b7fb3dee9463d2938859e9b7a
- SHA512
  
  8ef2bf8adb0662988201af93e86db9d69867c99be77a9cd228b736807a01fdc9d0ba92d7c164ac79712144150f00b68777a19bdd44f6546b88844852e1a04662
Score

3^/10
behavioral26
- Target
  
  org/json/simple/JSONAware.class
- Size
  
  123B
- MD5
  
  310242046d0cbc079cbeece308e7b967
- SHA1
  
  462e347d9d3e3a0a909ebbb25ec1c0964871130f
- SHA256
  
  598d6ac0127c67de5f8225ca21b9d7dfc9086608597295273228eaa342f68ff6
- SHA512
  
  20b9b8af73f2a3f08742f2e927bf0c170d0bf0d1d87b1e67e6e37c86738b2d852dd87beec63f42152e48e92084b9e6b66e77a790a3b1e3ee7e726bb8e6ed408f
Score

3^/10
behavioral27
- Target
  
  org/json/simple/JSONObject.class
- Size
  
  2KB
- MD5
  
  048f4e252f6a27b4ab0babab6d8c81e6
- SHA1
  
  68154b85b890b316ddd9b12b196cd69960a45cd7
- SHA256
  
  c582ae2fee9517fb475b4358ead09f9bcb80605c24ed490ab340e475f7eba67d
- SHA512
  
  306baff39d728cd71e3b71528b56aeae5d7cd7c9f6b44ffe1e4f46d3c25403724efc70dfc6a3a5f05b56274b3877b0e94a8e2cec666de78df296858562f5caae
Score

3^/10
behavioral28
- Target
  
  org/json/simple/JSONStreamAware.class
- Size
  
  179B
- MD5
  
  340a473e1b97899f9278e96d368f1a18
- SHA1
  
  a97beff01fae9b17946e99dd229d892eeeb7cb7b
- SHA256
  
  c83f544b457f9829bcf62e3fa93f03043422811fcfc7822aab94339450276f74
- SHA512
  
  97de898415190e58de03b8609d31af9175563afdd95017378ec5661e104e1438bacded847e4f89fdb983676e8d3f80602a912cfbd4c793cedb52b399539577fd
Score

3^/10
behavioral29
- Target
  
  org/json/simple/JSONValue.class
- Size
  
  2KB
- MD5
  
  35919b229b39bd98d7bc97a133bb6c48
- SHA1
  
  d8ac8987e39ee5eb13d0d58bcb1842ba52aa6b38
- SHA256
  
  5a0d7f37da4ca3bb14b4d5555acf59724e13c4bc1ace3980142bd4ee9cf7551e
- SHA512
  
  195ce3bdb539cb493b36420e1c8895a527647988d2d245b7b8581f86fceea79c5f9ac73f374414217d13ad7da975a5dd1686211bfdd72905069db43b53d1d1b2
Score

3^/10
behavioral30
- Target
  
  org/json/simple/parser/ContainerFactory.class
- Size
  
  194B
- MD5
  
  6d1cf86bba72f9438e1d91814a1f25b4
- SHA1
  
  d43f7799cc3866665c5e0e456701357bf23e4c11
- SHA256
  
  16eb2bf9ea3132c7516eae8073d540d46056c2973c36326e274b55cb03e73332
- SHA512
  
  92d7bd229a68423de39ff20fadde7bd78000c86d9ac21661462d6c657cc8b9fe9c7e8352a3a89b8eaa8c9affe9a2bf247bce2f0018485a9d7ffacf17896e3df0
Score

3^/10
behavioral31
- Target
  
  org/json/simple/parser/ContentHandler.class
- Size
  
  530B
- MD5
  
  f6dd90cb5de155d59ae7016acf54ac39
- SHA1
  
  d47b82ec684052f933a9d588e8d0ce5fa0523709
- SHA256
  
  db3d3f419b969d2ef67d7b5fc4e03432f60eda6b27ced413a28701cebd8894a9
- SHA512
  
  733872abde8b790f3c731609710f6ffa8042b731a0bd3c7f314e8b82ba513245c80a5a68149728ade873731082f8554ad7748841944f8b7ec0cb66c1c617c364
Score

3^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

T1222

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

Modifies file permissions

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32