3f867bfbaecda26c6937292956c300e54acb46ccf49659af79732119b679a626

Analysis

max time kernel
0s
max time network
135s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
13/01/2024, 22:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

client/index1.html
Size

595B
MD5

95ed9b20c463b10b13b90f44338f1404
SHA1

8432f377c48431c6c9932a07bffebef656de3fca
SHA256

3a358972a4a29a86a1c71aacb0f2d68d58bc01d091ad26cc5d65e6a55f3a77d0
SHA512

a8158eb9f2ebf833f2a32c15f4939504e5baaeddd456f45288c946e70dd659595afae67442b887f0498472f9445db3d105c5e5485811119f8d00536dfdabf89f

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 29 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{D1986261-B262-11EE-8857-46361BFF2467} = "0"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2896	iexplore.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
2896	iexplore.exe
2896	iexplore.exe
2824	IEXPLORE.EXE
2824	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2896 wrote to memory of 2824	2896	iexplore.exe	17
PID 2896 wrote to memory of 2824	2896	iexplore.exe	17
PID 2896 wrote to memory of 2824	2896	iexplore.exe	17
PID 2896 wrote to memory of 2824	2896	iexplore.exe	17

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\client\index1.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2896
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2896 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2824

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
252B

MD5
e3ff779b093f01939ef0c30d3599dde5

SHA1
184ba6ed3953b91eafdb749315f050907b52c4ee

SHA256
d30467ecd0ecaea1707ab536b468c91313274c5caef800b7dc51d21bd598f545

SHA512
b930561332a5d77b8be091b906f84e14bbd576bffc670ce119518258ddd5598cb2464defe8c2b528a6b1689cf3109f4fb53c776001e54d91c40bc201cc80646e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1004763d3720315bcf6b86ca0f354904

SHA1
a5dfc7476b7dad25cafdd89f1378e3c35e2a677f

SHA256
ce012027fcefd1a0379eec0bf8527a4272274c302bb05417fd6ef71bff02028e

SHA512
15d801a1909d5418618a1b27755da3078ae0218749c24b5c04673add867cbb96806322bd626d12612c2da0bc80ee42d2445b2f076104b87bc341d686e88b3bd4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fc46a693ae6e07d6d0bbd92f0cbedf47

SHA1
84d1fd3f06b5a67a9276b5e1e33eb797466e8281

SHA256
bede4d63b8b57772b165cadd160e63b9eb8e51d52bb87abaf5178894611f1546

SHA512
106b5b2fc6f434b1b42cb73d0e9f15a4f5f7975c0f7aff0d3134116fffa1386d01e5dbfb315931698973674b2e23b37801063a87c4e3722604069c19be8fe37c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ae0be344094a47623b7cb580fcab0c69

SHA1
b9627dbd246cfbffffb0c0fdaf54887ae3ca4b04

SHA256
76c080d5b98df58ac23eeb9cf855ef7b9c4f8554add9f906df590b2f1109fb1a

SHA512
258e50f7fe33662eb7497ba77d106097270ac0ab6222c7799b9c744803d0f5b9ed419c6a73adbf05e78f94c32be7866be65d99fc3a3399bcb3348dc1d68f45ad

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b5f918092be29f3cdfe12281ca83a2c9

SHA1
2854c2aec6bb15f5103641fab21f76968913c602

SHA256
69d0cde253af12d8075bf1bbdb23eb9dbaa253dd70d3b2d0c3d2779eb40fea88

SHA512
dadb519007a8f773249e8eecaebc49bb317c233ebe3a10d5aa27c78d0af6612c38bf16f5e5f2e08d0c0ac7c14bf84a0b5c1ef0eec530e1f487ff608a0d19ab18

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fd5177b50325aefd3ab6f43d3da83428

SHA1
d151ccef0ae313a1720b273bf82f7c522eedac74

SHA256
a24dd8b8e9ef578edb39efacb4144d050c3b65e6de28d9655302029e25b1780b

SHA512
2a007159f15993b5ae9b36637fe0ae89f2cb95b1268a7eb6bc280fc90d2b1d7f6dfca7aa99c8febc590f3d88b7e05f1c743bc569381049cc2c13726c927bd73e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e4a7f4c39346f5e09e336cf67fca8169

SHA1
b1f28d47499d893fd6d78887f435534e64fea728

SHA256
3a5a7a2cbf0291e0511a90ec0914f76a63a30352a15db0e38cb8cf7269915223

SHA512
06d764b7ac5710a46c7f5710d715e6b4dde53b3a65e3002a184eac12a09f35d584f751844c89be0d3e24a47321c3551cab03d0b3e60c18fa5b039132bbb4ad95

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1fd2912a6566b0f6961dc30da793bb47

SHA1
73dea45934072c78ce5d04bf52291949771e2a02

SHA256
ebdbb768d858a2e9a684a0e6a19f92d678a058410952b097a379ee305968d40e

SHA512
e5a5a584b01e3a94c11e5c23bab3195f5499df697915ac6822e96ad5f7bef4d6fbc6c4759641115f9fa3e48f1f5b181074ee4bb478213e700a48d09ad75b23ff

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8994a7c8358b8d1ec382956db206c008

SHA1
8b8b8178a43e593299bcfef1f0271548fca80d3a

SHA256
c976f533a33a54618010412734615714126303696b89572879a825413ef28919

SHA512
7db44fd2c84eb8af26178fc7567d2d99201c6cb08f0095537b05f8907cb7372e6962d2070be76cdd844ad4b8cec688c64ba53e5c4269cb5e54bf439733d84c33

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
93368bbea7dbb11560bc285d7106a0e6

SHA1
20c7a9a29eb544b2e98ebff89f4c060322eb0375

SHA256
2affba4b1243be02f162994b66a00caf6b02d9ea9a6834a4a3f84d1282defdfd

SHA512
3058ee8a44757fed6f9166efb3105fdca315bc714d55bb2b040d06a522b893b7d08107d4c64bd8c564437b0ccafd89b79c9ee9552b50809c5b37ca8bdf07a6d5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
03c1f44ae8d0c66e0f7588b849eb5506

SHA1
ea448d4a60c80d01e4bddca99257bd71a62ee741

SHA256
f4e285981495abe34b3d24425d6afe2b46d3ec60e67e54e957dee315b572f1eb

SHA512
00971d4b44fbd019006f8507037876b398a4043cfce3d129c6a321c11b9bbd109f247ba186d253367e76edf9e8e73590c9aff5b1a9dc78a403209328b3da1cdd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
85291e03cb44ccf7bb930b276749844e

SHA1
fd431569873fbecded156f7e68106aef8794e34e

SHA256
eff7dc6e1785bb74b0fd9e64f6184db9b2e95f3f64be5ddc5b76881c452306ed

SHA512
c5eaceb31f90b32a838e86644b8f6e6465d9ce22c67b13a7c05ee495d3e73d35e7c95afede0187a6901aa5790bad61743033ddf7d747b0f17ae83508ff7b36d4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b054bca4113690e6790ff9f45f9125b3

SHA1
08feddac254d4ab96b47c14e9ab4a73633220d4d

SHA256
b58f4538edd64682c3560ab911f07919c6c62f0ac869538d805e7466600002f9

SHA512
20f5c202a2fb60864555d1d291af7b8b189aa20befb356081bd30c0a6dba0e82de1169120f3ebfeb7017f577c596e6a8684fe84240653dd4a705d3df04e5d05b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c185740e1af55c34c5ac62e5311b1beb

SHA1
2396fc5c925a5d1b887bf39ad04486dcb32d1c68

SHA256
b295506df3dc3ffda7fc86abc91616092945556e0f109c95ff3b409208c0bdf2

SHA512
b5a30112e224a08a72249a60431e67042c64d6197b9733d02bc457b6961bd663adee529410a3d62e1f38ab45c8fb2b16b6f6aadefa32de28d1d9f709ae46f1c5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c252099a9757ec349fd3bdd9099cf39b

SHA1
3eaa6ae8077d568ba8e448ab2dfd8d5df5f5a3d4

SHA256
3a8d9264dc65d5446c8d9c1d17db5f0f7183c3c2e352893a0b38fc3df3321c56

SHA512
9ddda2b6d0a6403bb78c68c4cf7d01b64647e453bfe395a449eaf0d7f1b26618182a1770d78cb2c5651d598b90abc3a82ec786e108bd7dedaa15e6c7eb3448a3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6e3f16ea18ff34702500cfac434776b0

SHA1
34ae4af79b9b12e2c760963d725fa9226ffe5359

SHA256
76f88dab5d0cdca040d175f73d8e5a6aa34b834f6ef50c11c999a96f946ddd2c

SHA512
7f02de028533dc01e00becde5100db1cd7334f5b580d00e5342f0f3180d99b1d330a7b17354ed45824bad135da64694e8726ec3898c0db851113f40896e581dd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
0b1da2ab65b0d5971bc9864c94e249f6

SHA1
501c45f14dcd77671734763d4da8e414c6c21142

SHA256
bf42b8c0bf1543890719013078d94b4779105892e866e5a8cf35411d67142c1d

SHA512
97b94980fe2a77850ea8f7ea794898d58f96f3b92e3e6361117b4555b110608b17a3e98e439ee05fcb43867990b6c40f112357626a7a800e8b15fc7ca7749880

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3d8f85d63a116b893fc6ffda1ca79dc6

SHA1
73878113659b20411d2cb3923bd14333e76325f8

SHA256
d466b346311ca81d3a33f9890c2d3b4f4ba1dac8a8dc39120ef091c6c0c8a732

SHA512
7b7385ff9742f28597d48d9f4adf9ee8f983131d03b383a4d4dbfab38eb574f3a4462ae099f35cdc4b117abb69f9a75d922dec9b5a238bc60e6a6b1317deeefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6314f64beb2728e262327681010e327e

SHA1
7c07fd2a5ad8df1f83aa02f388a08f23cac460b7

SHA256
1a40cde65c67f115b21c4941888dc4b57b0587975c5d78e13d857706226b6c39

SHA512
d0150700540b47ca39c533f8ea7d39b6e794ffc759a9ec3d403ff3c98dcb543765ab1e6104d99113cf12a46c6894000c9a77e8cc5a9e9f6b7997853a442c041c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
242B

MD5
b894e573157ba3d707cbb12f3789e042

SHA1
344ad814f408a2c90ef89d7e4eb0b981c898f079

SHA256
7d68ac463abec804e8bf59ceca075873e2732253463076af97839c10343a6a43

SHA512
ebb844df896198c50b487b0489d8637bdad33cafc024e9b3d41afc29394d437f330553835db9b3d3b8dbcf07a48accb26b4489af8ca3a827e6bfe0391d866ed3

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico

Filesize
4KB

MD5
da597791be3b6e732f0bc8b20e38ee62

SHA1
1125c45d285c360542027d7554a5c442288974de

SHA256
5b2c34b3c4e8dd898b664dba6c3786e2ff9869eff55d673aa48361f11325ed07

SHA512
d8dc8358727590a1ed74dc70356aedc0499552c2dc0cd4f7a01853dd85ceb3aead5fbdc7c75d7da36db6af2448ce5abdff64cebdca3533ecad953c061a9b338e

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar2736.tmp

Filesize
102KB

MD5
2a24cecbab74f5cb7cd4c8ec1e2420dd

SHA1
af25d3ab9a3f16fb9a1b2d8b19e0447991f97e36

SHA256
59b76159e538f9082a3834578623b4dd11f6e35486d4ea46a040acb3895dab6e

SHA512
75946d43d8773ae1641e4034d93fce61f9173c6165f8e93d92232aafd382a31f8ff3686e0ac23d92b56ddb110bc8c6873bac0b2b5f5efbd2c85d1cfa18570201

Download Submit