2f8863a6eeb9fca47c69ee39109ef191e652759fbfc6a18f21c92f32fc0006ee

Analysis

max time kernel
184s
max time network
237s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
24/12/2023, 14:15

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

002067d01c469dee0c54717c1abd346a.html
Size

42KB
MD5

002067d01c469dee0c54717c1abd346a
SHA1

e2aa69db5ac740440e70f0549b37f495865c52a9
SHA256

2f8863a6eeb9fca47c69ee39109ef191e652759fbfc6a18f21c92f32fc0006ee
SHA512

90fe239cf22b8ef86d41f3239b24e153f3873f42ff75dc6ac89a6f82830b30ea1aa31a0454127963b8d03b4ea8e56251c0ad7a0f2509f647ed9074b8498028db
SSDEEP

768:duLWmXqp2ulxi36p9GF35yeVMO4PJuh9GmzjOs13mR3IZDd/6mV3uXFQXxHOK+sR:duLl0xi36p9GF35yeVMnPJuh9GmzjOs3

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "409589608"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000a883829c536588438b4279b7bc6c193000000000020000000000106600000001000020000000194c83ddfdaf8a9dadb2848e7a430659fa47de3c87865fe5bbc3bf27f70b33df000000000e8000000002000020000000c6de2d0879a201f16d162152c1e08d007f823ffceb9a42c405fcca8677d2de8820000000ec514510b2cca3b3d6fe0780fc6f90b47f00af9dabc6bdcd331377b15a44ee0540000000f342def0549322ff2a2a29c265bb9c0641c14ba68e4d41003e8cdf7d79b07b5786a9b206c0f0d0ebc345d194cdc4df0caaaa6d1b28076a9dee9dcec5251e7fff	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{CB38D270-A267-11EE-97A9-E6629DF8543F} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 50751bb67436da01	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000a883829c536588438b4279b7bc6c19300000000002000000000010660000000100002000000095f589687cbfd53adf39173e41d661fd6febf45563747716f193bc38ebd42b77000000000e8000000002000020000000060c5481f27d50f198bc0309ed742be96d23e3a37b78049d0488aeff0ce3c5249000000036bf896b535cf0141226a0de850d1e4c226c7ad9edcf37f801598e3596aa44794778c60ef9ef2714581892846692995c28d9896c7c63a04a468f956beab8876dac8f59705298c3ccd4f1a51e253e2bf13c11978a7f809aa6cacf6a3b7e960db13fcfe3c53d90e666e7abcc746df14bb5a36bbb79c032cddfeb405a4ff8e2ddd4cf4adafc6aa9374b186eab04fd16541640000000e60d43e62acf66dd3955e153462d0158e934bc29cccaf88cba35fb9a2d6ab416724f0d629f8118d0cf6fd12db6264043a20088ec3099fc2db357ec6afec3244a	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3308111660-3636268597-2291490419-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2572	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2572	iexplore.exe
2572	iexplore.exe
2736	IEXPLORE.EXE
2736	IEXPLORE.EXE
2736	IEXPLORE.EXE
2736	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2572 wrote to memory of 2736	2572	iexplore.exe	30
PID 2572 wrote to memory of 2736	2572	iexplore.exe	30
PID 2572 wrote to memory of 2736	2572	iexplore.exe	30
PID 2572 wrote to memory of 2736	2572	iexplore.exe	30

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\002067d01c469dee0c54717c1abd346a.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2572
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2572 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2736

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
94c8e116d2afcef5cd9342a3a1bad7ea

SHA1
1353c94b7993cdb01f99ec658e48f572c0089c73

SHA256
0eae6d3385c2224cedd6209bdf845682f814687444794e5974da5775b89a62b5

SHA512
a1b0e0822b923e010c896c0ccd3878fe1108e71ab0f2f8835ce6109151130f748386ff91e9adb16e4a2dae10411b000e450363d435886b3b4ca530e91e8018af

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ce4d00f532acd8792d3491029d1d6c31

SHA1
06af3fa02cf51b6bf399eac0e797ac8f87935036

SHA256
a09e0e0a880dde0f88a7f4e9cfa19df66bc1a8ce2400d72a702958d2d5baf35b

SHA512
0b24ec47bd86d6b5892aee9ddd0f837a7f0f9cb66c37dc9a15cb4115d203b514d663c68458e6b1295e12f120e7588e23520eca75d924859efefc4933b4dc94cb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
85fc5d505f7a6edc26d5038ea3c104cc

SHA1
d594ad8de886024fa50274295bb6a5994fd3f3fd

SHA256
961e300d280863701921c55cd764b8ed58e5fd390101c48785dd5cfb9e90b3f2

SHA512
c8300d98e564978ef2733b7300e5e883f0736d7a1f6f60fe071f8839038ccf49c570647fbdbf3c71b945d2dbb3090d26c38518e5abf04bc024493d8ca29a3065

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0edee1171e9bf7adfa26a97877055bb0

SHA1
1b88e8d70157bd4947fd6bd6e3ec654b6141d7f8

SHA256
bab2205d35f793e85ae8d05b2a6425416ab903526d068f329b41f92e53640ed9

SHA512
911742ee49c0942aec9b3ae97083359a73ae99cf8f2fffeceb41b2267693f5be63a749593756216b114bb31c34d90b8da61e6ee3f9373c6acdc40b1899d0c96e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ede4831f6062beb8ec6113313a163714

SHA1
a932aa2a9f71473420d75227cb4d91c31d218cc7

SHA256
efbea30960689d363c23cf9213ce0c0f43b48d3a9deefc654f431005254d9c41

SHA512
406499962e377678488a4673846414af45435a5bf9e76f1cf512d007df6e012a7709b4babfeb2288c7e50ac150df38b718ca810a07cdda41166bbb35f0979918

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2a74fba5a3aab8d866e931540b362c52

SHA1
34a1780d669ddd8faf8dcedbfaaeeee1722e8f13

SHA256
10064dbdddb9958b164763fe01ad59f9597cf9a24e4c40d769b836fdc55f83e9

SHA512
ca5656c873a59015494dafe1ce631619544e8a9795c57bbace6e01565603930743a2949c0895d0734c7912304b740c4a828ecada86458d2b5059fabd957c213c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
24cbcf99d23daa9dcac0e3ec46b3d66c

SHA1
0107d31be8bd17bfc701c789c8a7b07ae1fa3fdf

SHA256
0d379679dd802561076bd9ddafbb53bc0ce1e934caae7ff08be76d0c1be99c3a

SHA512
e2ac13d936ed69ed0f0a4161b6b685c193ae68049751bb42024202323594d52dd4e274b235e3249863899557bb8c455a4f4729aec110e7f26366b1aacb02abd6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
74569508cbdeb47509e0e4e5e9a65a42

SHA1
c967ef026fec42ec1b4a0bd0c2728374a907a51d

SHA256
cbfd7ddc2673365d7b012d70f28c53bc6e0b5bf9ba301318cb7a384ead18f0f4

SHA512
b2ca42bd3d93b53b585a00cf48968366e9e116b01c5aeac4de276bcfb1dc93d9a3d9d0fb8e8720cd0044fb1dfe6b1e5d7971ee7b427320ce6e8a07aea151fa5c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f4ac225b850b79277da315e3aa6e6a77

SHA1
1775b568aab8dea45fc6bc39779640bbbdab9696

SHA256
24e6352e6c9740ec9bb2be23302bfaeced425ccc81ac74abb1bda5264e0ca7a1

SHA512
42718bb9ef76eb8db5f87dfa12d35c0945fde4be283360093a8806a3dfba5bb0efde3d5b5ab0524aa7306e8681d2ed30fabe5342bbd0f68f02aac6e46066793c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ce4c5aa8cc19951c7e6180a4430c7d37

SHA1
814321c754b74100c73bbe227fad77e8d0ed1344

SHA256
4f936fe7a9be28b2d1ac5f4a6860ed9849dca523ca676d2880ff316fee82f05e

SHA512
6d5cb097ef674bd2fcc408ad72da05cf05b751473bc75298e63d9abac61382d312d5c59f5193830e138263ea501c0cdbb09cbbfe312c49800372d95942d4aefe

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3c9cfda215323d537df82fec1f917965

SHA1
ea89a05bafb8730c29b412382937b4189f8bf68e

SHA256
d4b102c61f31a9d7ec755519841f0da3d8343cab09a48944267bc7706fc792ab

SHA512
441684a9c3f5fbddf4584a2e503013cfa21ebb039df6636a52a6d91238ec861b72b7e5c15e7680149acc1f0214ad2a881107edd4aba835997e0dc66da7ba0d81

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ed39b375ec4b69f81806720d2161385e

SHA1
79abef2b4ca02b4d6c1e93cd501bf3b1244d067c

SHA256
3f71ee3b60ed4abff480d9cbafb3a8838a48dfc67ae54b8395af094bf29da418

SHA512
a53bb170a2b1d877d74b851e6b7468b7c435808cbb192bbc0ba02c744341be397a8f7ed2c4f0df3df8e94208540577dbb28999337bbd5fa3028c6f793035dbe0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0d4e3cb91af9ced3939c642e3f129bc6

SHA1
1f601d33135e7fa53810e6cd6ed023729a0ba9c0

SHA256
ccabf1d6eb46ad7cb5ef205873070212d523091278800e5ecb5f8ed796043689

SHA512
2ae432147366f40953c1d84cae701237468dda93ec4cf3b6399340e8059b59c974cda603702eeaa304da67ede4c6449582f7c41784835f87ae6e88bc1fe0f0f0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1901dc52e187f9b0efaa14001cebcdd2

SHA1
cf43c91be15345ade900711089753385f87ef886

SHA256
4a5c1f88d6f1e7b2517777ebbe18a226c563eb7192e8a59951c2279e019682ea

SHA512
3a62a25b27672b66290b149399c4e50894bc0e1ee814ad005ffba00a4f5eb242d95e5847cd4bcdf4fdf7b70cd5d961263a1fecdecce1c165072962bbe8f05181

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
01fa61b979933339307a9fe3ae0f7b0c

SHA1
e89fbb77ac75b8f40f858cf6310e2d3feb43c3e8

SHA256
06d3e65997b0a318f5da6fe834e694181d18cf2e6df150ee5ea9d45d1c19aa04

SHA512
b874c50f361ef4ee1431361ffe28e002946b017d6f70e0d6781de8c30c1d89b1fbba42eb7a2725e4dadd19f7e9afda101b671ffadc2f52e5c6550b5180690684

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1132e98653f868fe70bd3a3c7ebedda3

SHA1
56db7d369e7c17cdf6277d07194f5164e51f4ef7

SHA256
f9925c8aa079dd5c100100a48d8c345bbdb29184933a97c12885d9ab289d64ae

SHA512
f8cceb36ab41038e95d61a3e75a482908d1201fe60403a9190b1fa7a36babac65c1440cf979d85a693ba7c72832b3b14ac8c1cc1181e3b68cfa2113e7e835aa0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d97ee552d38dcb9e45e4332b8759b7a2

SHA1
a58a5a90c33be3ffde57d938e9e8529761529eeb

SHA256
cf5e108a03dee401e9d93aadd2b9141dcf27877cbe1adb3dacdfafda9b0ff4c0

SHA512
d200c74a37a32306aa5673013b2e0a1414bd99d2bf1d8c2c4067d654c0098f132d865ed876aa27b5300b5f28e38d5a451f0b37a7458f97486b9c90e37a6b32c1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8c940dc37dff6ec3a4f9fc39302c362d

SHA1
c70c0fa2fa0a85d3d007925f28e29da06ee0986e

SHA256
73bb79a37d9df0adf495d3d396415f2a56507ebef52dc838f7be576a2826da31

SHA512
e4d663f10da785772358deb045c210a9ab86247bad98cefdb5b89f1becece536bccb628037304baebc798361083daa55d39f1819fe3fd2137c83321de168b7f7

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab76B9.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar7E3A.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit