0f3a1e1823e15c6cd7153f416fd3d9819c10384e0e0984192ee8c3dfc02af775

Sharing

Copy URL Twitter E-mail

General

Target

FTB AppInstaller.exe
Size

1.3MB
Sample

240328-avs8wsbh81
MD5

b918c82b63e5c38d4a6160e579fa0ac1
SHA1

330cc9820933dfe2a776a470e6b4b8f55aadd206
SHA256

0f3a1e1823e15c6cd7153f416fd3d9819c10384e0e0984192ee8c3dfc02af775
SHA512

9a9e658bbe27b77ba1373cbd747c1b7fb399f17ef318f2865e8285b1482adafcee0a93bb245cedeb7f5d66d992ee2168c932b823e29790969c8455ddef80467e
SSDEEP

24576:CIwboSt6/qeP0K/ni/ue2oYEwP0F2WJCvG+CVBUFm/yc9jDOqBEdfewRYcn9:CIMo7/qe0Ine2UwcF2I+szjTBq2c

Score

5^/10

Malware Config

Targets

- Target
  
  FTB AppInstaller.exe
- Size
  
  1.3MB
- MD5
  
  b918c82b63e5c38d4a6160e579fa0ac1
- SHA1
  
  330cc9820933dfe2a776a470e6b4b8f55aadd206
- SHA256
  
  0f3a1e1823e15c6cd7153f416fd3d9819c10384e0e0984192ee8c3dfc02af775
- SHA512
  
  9a9e658bbe27b77ba1373cbd747c1b7fb399f17ef318f2865e8285b1482adafcee0a93bb245cedeb7f5d66d992ee2168c932b823e29790969c8455ddef80467e
- SSDEEP
  
  24576:CIwboSt6/qeP0K/ni/ue2oYEwP0F2WJCvG+CVBUFm/yc9jDOqBEdfewRYcn9:CIMo7/qe0Ine2UwcF2I+szjTBq2c
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1
- Target
  
  $PLUGINSDIR/app/cmp.html
- Size
  
  4KB
- MD5
  
  f86a5fcc1a4571e07da1643e35c355e4
- SHA1
  
  077b7723de794fdd75e151973771dca2887ce2d9
- SHA256
  
  63be4af3233394c6b8efaa16dc8c6c68c13cf09b102ff7424dbe06df1b3e1cae
- SHA512
  
  0fc3b8d453e287142a472fd35a50b803b5b79115ac6efe61cd0ee9a0c765c1704871a213708b64d8a947d2eace74991f949252383960a9c791c083e8ed00d812
- SSDEEP
  
  48:t9rc0/GLAoShbEHaLKNGiNQtvmolOGR34rjKALcaILNt7ByOXGz+a1Sw1AttCR4Q:4VLjHa2NGiivmmp6vLBAtFkkjpG
Score

1^/10
behavioral2
- Target
  
  $PLUGINSDIR/app/index.html
- Size
  
  4KB
- MD5
  
  ccd01db9ef1c3df3561380a3f5462e7f
- SHA1
  
  700ef7a8e7a74c97262420ba2d8707ddfbe7aece
- SHA256
  
  017065bf90f638f1ae510ba5ad9d574e7bea96d9c80113e3e9a03f532317c038
- SHA512
  
  173e91864abb96ba7bf5463708074a53556b94fc91afd822dd68660dd1de0759f5001b6bfa808c8446586c04a905ec22af311f4961c508c3ce0e24290de13558
- SSDEEP
  
  48:taFZKCZ9gjH5idc3JWhAVUHphSI2ZIx5LBQFldEdkoDkoJlPFa9NRfPoslsNjqYf:81GHUdc5ibuVgmYz7rVJPRTX9
Score

1^/10
behavioral3
- Target
  
  $PLUGINSDIR/app/js/app.js
- Size
  
  19KB
- MD5
  
  49598749dc32446e0794a4da49a9ff62
- SHA1
  
  875592dba04d3ce18088d2b0cb1d8e8bb6bb42a0
- SHA256
  
  ca3f1ae68da764b503bba21246f09b523d9e54502735249f939ca46be91365cf
- SHA512
  
  063ff4df5ce890799822bf488581796a6db5601dbf9e6275c746056adfb0fb297ce42be1d735cd713999ef806eab9fd0ad0edb030f0cb68dae28439936eebc90
- SSDEEP
  
  384:4+udc15Zmb9plmb02wjI3A98zwF52xxYRdv7WR3FGHtH:hu215wbdmbH3A98zIAnGdv7WR3YH1
Score

1^/10
behavioral4
- Target
  
  $PLUGINSDIR/app/js/block_inputs.js
- Size
  
  789B
- MD5
  
  b5b52c92b90f4283a761cb8a40860c75
- SHA1
  
  7212e7e566795017e179e7b9c9bf223b0cdb9ec2
- SHA256
  
  f8dbd6793b35f7a26806f4dabad157aaafdf6d66fad094b50c77d60f223fd544
- SHA512
  
  16ad53ede5424ca1384e3caea25225589e9eec9e80e2d845948802db90fad222f709a7b651cd7601a34ba67a0627433f25764638fd542cbd4612871308e7b353
Score

1^/10
behavioral5
- Target
  
  $PLUGINSDIR/app/js/libs/cmp.bundle.js
- Size
  
  293KB
- MD5
  
  2faa49b16f4bbd7edf8f3327512dc69c
- SHA1
  
  8ec787c190e128e5601da072543df82f76d96306
- SHA256
  
  64150b7f8614ffaa8c6467b65897f8900ac1164ca302574b63273236f44a98e4
- SHA512
  
  30a5de539efd5ee38565a7f166337e8fe1db27c5b93d64a2efefd5cd769e71a4f1b4013c4433d82eeffc1f5cb7c3abb8f7730067cb5a9fdc17b027f0af7c3e03
- SSDEEP
  
  1536:bUGtWT5RTnP8pGjQp1vdH6cAvFGJg4sAYEkNSKWUqxXtbs3Z4mSn/C19V92RPQ8E:bUL5RzgHMcMFGJgcDkNNWU33Tge8IZF
Score

1^/10
behavioral6
- Target
  
  $PLUGINSDIR/app/js/libs/jquery-1.10.2.min.js
- Size
  
  90KB
- MD5
  
  44e3f0db3e4ab6fedc5758c05cf27591
- SHA1
  
  2d408aa1d35661019c95adcc60b78c0727ed25b4
- SHA256
  
  bc44d3631ffef1df7960e359f02002d3ada45ee05205c2cf1edd85da2f518144
- SHA512
  
  4d4844e53e686fc59a52e86588f328dca3ed6fdad7195c58942a98c51755a24981b903ee7c7b27785375eaad5a7d9501cf74b999674b79f214e66103bad9efdc
- SSDEEP
  
  1536:O4mCgi8DyCuXXFiJ+L0kJQsJVPEKuQRZdC/RAfDknv+p0WzH/Io9Z7qABZnu0JFV:OGsKYAI2p0WP9bDrJ7fak
Score

1^/10
behavioral7
- Target
  
  $PLUGINSDIR/app/js/models/notifications.js
- Size
  
  2KB
- MD5
  
  58a992f232c19b157038f80b5df6418e
- SHA1
  
  d67f7f6f3563c9eabe34e9c5b4a7914fb477db6e
- SHA256
  
  e9df261ca103e3ea0303f35d2c09b77b44b58385eb100977f55c6ba52ffae4a9
- SHA512
  
  223fc8fbcda7f966ebeabf096050b97947805c29e3b9e5c52fe0b3d2d7f23e3ba664b085ed2e8201ce4180731bfd8596bbdc5f85473617e78797d860fc4a0edf
Score

1^/10
behavioral8
- Target
  
  $PLUGINSDIR/app/js/utils/analytics.js
- Size
  
  3KB
- MD5
  
  b2e33c86158354380975390d5d482193
- SHA1
  
  d058276309f75144fc2fd95e4e29c3d40efd59cf
- SHA256
  
  381d0a9c8d54b62534cb8b38dc48b2ef9cd95a06d7e37ae3931c8ac5b17d2453
- SHA512
  
  ca8786e55d0e795cf21827e809bcc4da4dde02886427ab80738b8c008d27b56c25b3c1b413fcbcfd2acb504a86e57d72825554b427717fcac6cb64374b0c2715
Score

1^/10
behavioral9
- Target
  
  $PLUGINSDIR/app/js/utils/commands.js
- Size
  
  9KB
- MD5
  
  5fa64121965e613040c172cd66de9b13
- SHA1
  
  d646ce6c0660e605aa98975c3c511a377adf27fa
- SHA256
  
  754200cb1243426aa100ae6e875efb465044d4d744b69d8402cc1ac6527b047d
- SHA512
  
  b6af4c22edf874861accf06d15fb495edc81e70a6e5612734f3e43afe1410a57c27f385ed79b581f09209be0171a39cd5554eaee36537d4e789a959c225c6dcd
- SSDEEP
  
  192:7Ifi1dLg6VjwS1vJzE0MNCU1WStK2Od8uu7alvsvTGmb8LqwvIJO:7MEfkUvJQHC6W8tusv0qE3
Score

1^/10
behavioral10
- Target
  
  $PLUGINSDIR/app/js/utils/cookies.js
- Size
  
  1KB
- MD5
  
  6c60e675f8c8c68c0174b644d3a63a2a
- SHA1
  
  3635a3fe07ccc4a6f33a986ddb690522d0611abb
- SHA256
  
  9d3cb3822e20d6f5157faa02dc69bdaef44576c3fb5523e00aa152107ce30287
- SHA512
  
  1dc9ec7b139bcf37107ecd673c01e4fcc606332ea1645a4a1b4e5d95f817d4c99d5964cd3d941a6a526689341d9623b17b4efc002cdf4c73404299d52b1be452
Score

1^/10
behavioral11
- Target
  
  $PLUGINSDIR/app/js/utils/modal-events-delegate.js
- Size
  
  1KB
- MD5
  
  be8209120c313de506c26ace0acf2d28
- SHA1
  
  eda661d7141c610da7c35c4ac61d78bee3a7a5be
- SHA256
  
  31bb2794755a0cc7f1cc85cd2c428b78be7ff7d24978e55a2c1cad016bf01c39
- SHA512
  
  18d39ed2101993c4a2c3d242623d699391895f7713a3628b091d04c72dc497a9b7127dc7477169a8ff970484e2d69b2ba8ebb65fad45b1584dcb14fe7bec2040
Score

1^/10
behavioral12
- Target
  
  $PLUGINSDIR/app/js/utils/strings-loader.js
- Size
  
  5KB
- MD5
  
  9c94eb933d8a43dd3825e67a7e30c980
- SHA1
  
  7ec7b16af6f399219209ba5967d377040486a11b
- SHA256
  
  96445709fde2613af50f4b8908296d4bfccdccb2d9db9febc34a9bf4dcc70ecf
- SHA512
  
  a662a299e31633f71a9b9675970359430fdac06dcc284fd7ce92919f244c7f921639f97a42356e993a95865e6c9f198dcba82c126f82065bf2009a31ec9b02f5
- SSDEEP
  
  96:FXS/WSBWlbBtDhWFTnTeWsNkEj1I/6WfwkUlx416moPdXDKP8j8yZrME6:FXSuQwBBh0nTevNkEj1O6Wme0muXDK0W
Score

1^/10
behavioral13
- Target
  
  $PLUGINSDIR/app/js/utils/utils.js
- Size
  
  118B
- MD5
  
  a0952ebeab701c05c75710c33d725e7e
- SHA1
  
  1da8a2e889f1213d481ae3cd5571670c01e64adc
- SHA256
  
  b4f0c48cbfeaf8141fd44b12031e3f0410cb0cdc313888ffdb14fdf1d2341246
- SHA512
  
  5e5ae616d3fded7d2bf47a326242c4477ca3119fb52897bfb41de0be230ccbd6c3da2c00268b3973e9bf7b4f2886aba64fd9719b448662e4130ee66d87913389
Score

1^/10
behavioral14
- Target
  
  $PLUGINSDIR/app/js/windows/cri/cri-controller.js
- Size
  
  3KB
- MD5
  
  72526c949ff77810c4d74d43e08c238a
- SHA1
  
  82829b392889bfbb58a26f55d381270387bd966f
- SHA256
  
  8692994ddd20ba435a1999b86f9a2d14070a459b0f2d3746fe221d9de4bd6a94
- SHA512
  
  90b5ae70e4728221a344e61739f1ce9c46108998b9d94f314457a878d36d1a0871299077bc2a771647d2bdfb624e5f3d37916c9f8585ed592fc2b75b9fee9f9a
Score

1^/10
behavioral15
- Target
  
  $PLUGINSDIR/app/js/windows/cri/template.js
- Size
  
  1KB
- MD5
  
  28decc051786aa95f9eaa105e501c1ad
- SHA1
  
  fc48b98afa8381691f3fc9e8fbcfd3b44d7cbbf2
- SHA256
  
  251a2a256702e0311d74880d94f1dad12faa50522fe574f8cb773347f578f193
- SHA512
  
  d64fd779d00fe3cfb90e7793e0174fc604426fb30b7dfcdf624fcf936fd86c505c30537067179fce2244731b45ae24eebd4d0955f007ff12945dbd5426871263
Score

1^/10
behavioral16
- Target
  
  $PLUGINSDIR/app/js/windows/finish-with-recommended-app/finish-with-recommended-app-controller.js
- Size
  
  1KB
- MD5
  
  b21fcd37b1c81aadc4dda525db185dd2
- SHA1
  
  987ac6a2703d3e42dad58b942bc5ba29592ace6c
- SHA256
  
  f13b908106e9994e50288eeb36161819bc39ec36d7247821e2c6017411dc0940
- SHA512
  
  a3d51da492b347445e80a785d3e68e783e46ae51a78a1da6652cf937e63de4403d4f81872304007dcca1f4ca6e7f23c029415e9304594658923be1cf7b6ade1c
Score

1^/10
behavioral17
- Target
  
  $PLUGINSDIR/app/js/windows/finish-with-recommended-app/template.js
- Size
  
  688B
- MD5
  
  062e24e6af49db893b179e3103217721
- SHA1
  
  eabb2cc459ca23d89dcb22181624b1d872dabcb6
- SHA256
  
  6b623c21042933b5dae9da12494dad7e6177173509ab44b13855a7da12c3ec2b
- SHA512
  
  a34c085a08defc41c78dd1251aeba46650e645dc7edfe8dc9e884f2d9d2217bece44663a3b90951a4ccf8f4490a3d1167b284e14522f283a05af3aff3f863630
Score

1^/10
behavioral18
- Target
  
  $PLUGINSDIR/app/js/windows/finish/finish-controller.js
- Size
  
  1KB
- MD5
  
  af8a66c367387fbf507e029516c1fcce
- SHA1
  
  50c2b532d1e60a26f006452e21b5e88aa4ec21f0
- SHA256
  
  1e88f053c4981a95db7f20896ef7d517efaa2943263175bd45abf7453e3ebd88
- SHA512
  
  2d298da5314912d44b903625f2f9d5518f57862f0feb2508fbc34cd5e29e0e7517ef80a61742a55037b5d82f974fca0708a864d96a98944460b5b2c1bdb7f142
Score

1^/10
behavioral19
- Target
  
  $PLUGINSDIR/app/js/windows/finish/template.js
- Size
  
  1KB
- MD5
  
  f092de7ea66d8e920b345f38537fa35d
- SHA1
  
  82d107a409f18878307ae0cefe24074db64937c4
- SHA256
  
  b05f111369e12ecb4cdc6526dd554061eb31097aa0de4bd126ddc185b69d922f
- SHA512
  
  14942c0122f216c07595cbaae498f9c4d37a2d0fd95f262c332502befdf4566c7a042c4d85702c1d82a111123dde677096195e9efeb1d74eb1dfd4df84d01a23
Score

1^/10
behavioral20
- Target
  
  $PLUGINSDIR/app/js/windows/main/main-controller.js
- Size
  
  10KB
- MD5
  
  4959438cb98fce93433cdbd280e62b0a
- SHA1
  
  972b633602a163b1ac5eb7d452f366e29c4abad0
- SHA256
  
  f2cf7ac8379f4dc6efe03200351769a84a35810b00230222992ead431c852fbf
- SHA512
  
  d94c3c42dc082b4dffd70c3694e1c640bd874c6dff77573797193211ccbf021c0e876b039221f83e99334e0a0103bf25f616d2f8a566df17ccb7d6b1d7efc9a3
- SSDEEP
  
  192:z8RRXr9xThFzkzLZ1ksEIA6li5djpACga0ZFxVgMKV59GsZnMwOVTzdfj5UEOwbx:zsrHTTzkzLZhJitOy3ZnMwKfF
Score

1^/10
behavioral21
- Target
  
  $PLUGINSDIR/app/js/windows/main/template.js
- Size
  
  3KB
- MD5
  
  a118c7724c208f12083240cafccfd10b
- SHA1
  
  f89c676a215b869626737862a08c9eb07d440211
- SHA256
  
  63a43bb08403972d0f4b0e381bd264af14e826e0035242bc1baa9a815956b8fc
- SHA512
  
  9fede79044ae5de7baf5bfba0d5a515ce462a25420026ff45bcf1751e57510023cb40df42d08e880114f62b38ddb218355d5357b725df32a41ae4e6a18414cb3
Score

1^/10
behavioral22
- Target
  
  $PLUGINSDIR/app/js/windows/modal/modal-controller.js
- Size
  
  1KB
- MD5
  
  b6bba76e578754ca8f644ad7329a03a8
- SHA1
  
  82345000009becdc14bf18057bd60e4564385515
- SHA256
  
  3faff6193b107fef98fe896b7c2cf3a80c2f7dd6391b20f7c8ed92ffed065ab7
- SHA512
  
  ac86fc25eaf9f02394c0019b44097185d30ff9604b9e7301b8bf7bec5b171e9ff3f6b14994d8d6f4462f0456be16eb0ca014e7e81356b15ab31772ac200be8ae
Score

1^/10
behavioral23
- Target
  
  $PLUGINSDIR/app/js/windows/privacy/privacy-controller.js
- Size
  
  1KB
- MD5
  
  2b6bb6deac313cf77763c19dc6ecd38b
- SHA1
  
  af6e243f6aa46cd6dce34053b4df8915bbc99b70
- SHA256
  
  b95bba8f200b4509d62bc884f24ac897f3475141c1a163157d9d494880d9bb62
- SHA512
  
  7fbaeec4c289d322271d9189a31eda53fedf0eb9768e16de6f2bb4d2435057b172f314e604598f403c294607fa1650c071e1c86892bb6bd3b08c90641ecde543
Score

1^/10
behavioral24
- Target
  
  $PLUGINSDIR/app/js/windows/privacy/template.js
- Size
  
  655B
- MD5
  
  cf8d2c26520d7c84e560dfa79e31dcd3
- SHA1
  
  716f2ec17480d5cc9c145bc147833fbfc39d36f0
- SHA256
  
  95c459eae0edccdb94702aea603a097e461daa0e5f37dcd0e30de7df665433a8
- SHA512
  
  d466dcf7e86a4295857020feea281fc89f519f6bf1e79c3b5e1046d0745c9c9010377b1941e06c9a9b2c78a4173ed9909332d5d6c39b05f460e8a863086c895b
Score

1^/10
behavioral25
- Target
  
  $PLUGINSDIR/app/js/windows/progress/progress-1-controller.js
- Size
  
  1KB
- MD5
  
  d557ab7af5766c6fbce0120179b7daf1
- SHA1
  
  35c7c56d3134c8deeb5ac46a96d2957dcb8bd850
- SHA256
  
  adda31d8cb17ca8018bbe0a51bb837957cb9236c10f011c8203d4eff9c5e112c
- SHA512
  
  9cd8b14ab0eb0de06183290b6bae3e0b5e18ad2b8695ae14a2da19dfc3efe90a3a4ae2ee22847a4e91a300fd95ebc226f0b06de5d5a2fab7857bde06c28bc873
Score

1^/10
behavioral26
- Target
  
  $PLUGINSDIR/app/js/windows/progress/template.js
- Size
  
  242B
- MD5
  
  92b145e6649ba0add3dee9a69d3fa91e
- SHA1
  
  4db1a45392ec973cc8a7eecf3a30a9a7ecc7a64d
- SHA256
  
  a7128a08bca53dd919cab3e5cb4dab31ded7ae2dafc957209b9fdd23f3b944ab
- SHA512
  
  747a087dffdba5c92d9f4c8923615d388b9c4c79d3b71d3cb90487aa37c132290a4f5107eef3055c03eadcb9614e20d4655393dc9251fab7e0ee2438f0d95751
Score

1^/10
behavioral27
- Target
  
  $PLUGINSDIR/app/js/windows/settings/settings-controller.js
- Size
  
  4KB
- MD5
  
  afb2d2867098374317b703953484f36c
- SHA1
  
  2b929c7a336cce4c55bb4ddc6cd6819b23328983
- SHA256
  
  b51264009794361db841122ebcdac5cf0d88dd48e64206a3802f7e9b2fe90757
- SHA512
  
  c59edd44c676aa9088025ca1d55b0f6502652443161a86032510cfcf646b2dbe0909404f72ba05059418d59c9dd4a4b0deb9ce405a7275a537db5d22c50a5a25
- SSDEEP
  
  96:8RFTr5TvuTlpwW6tXcJ/FGR+4oSrOlidbtmfPNVC8VopGHmI4RdK:8RFBjugW6mY+4oSrNWmNm
Score

1^/10
behavioral28
- Target
  
  $PLUGINSDIR/app/js/windows/settings/template.js
- Size
  
  2KB
- MD5
  
  bd2c8bb825b8a10cafea10a03351814c
- SHA1
  
  130a1e57f0c3e21163947b04d6f35a98889019c2
- SHA256
  
  d2a588ff365af6c5c66efaecf3d7592f6e8130f8f0fb974ab4f80e20c63e3c4e
- SHA512
  
  c622ce6d0d294c1b38be47f9e22b13d9705541dde9b6e1ca7b448cae7560fd2c4bc1e7e60d4e8e6db7b0d1faf441c8dbb6b3215f0b40415bd700d3651148c4ed
Score

1^/10
behavioral29
- Target
  
  $PLUGINSDIR/app/js/windows/welcome/template.js
- Size
  
  1KB
- MD5
  
  17f54fca6723b983875d940d931e0afb
- SHA1
  
  01774cd5cea36bd74c80a708d6f77567e8091024
- SHA256
  
  42c546e9da748ef76fdab56b96fd511eb607617a9ba37b3dc420148b769d8acb
- SHA512
  
  401df9a54cd14c19227d91bd08b4775a7b437644b4ca0d1d636d3e07b04591f9c5516e80040ae6a79ba400457d15e3d80aa148a63de870a64664fc5a02f7a038
Score

1^/10
behavioral30
- Target
  
  $PLUGINSDIR/app/js/windows/welcome/welcome-controller.js
- Size
  
  2KB
- MD5
  
  c85cc870329df47991e4dc4a0ce45346
- SHA1
  
  2febb6f9b07409435ee761e8e3b5f3e0ed1fdf74
- SHA256
  
  b5b815308ea6421acfce3d03c92f14af1aa78b71c54314a048f051cd16818f19
- SHA512
  
  3334f0a70bc15651afde76cb3e6ce299b070f24494606534b683271c20da07c78b2379dcfa0cff44ae382532217c132dc1cadc87de5a91924ebcd6f711ff01cb
Score

1^/10
behavioral31
- Target
  
  $PLUGINSDIR/app/progress.html
- Size
  
  6KB
- MD5
  
  baa1ec5a1832eed48fe04ee731f22e43
- SHA1
  
  2bb619f5adc2f9e51df6dd4c1fbc0dee9a401b5a
- SHA256
  
  52d120576a0ce22d4b81cda28c18103e808d9f8a0201ed31c71eaf6d133c53b2
- SHA512
  
  04700c852a638a28da3266ce9d072abd29d70e3de6097865f38bd3ceb6249a675a3da4bc666489a616c100f063095ff31f3086c4d207f077cbfcadb0c4d6e1b5
- SSDEEP
  
  192:MxMZcds5Y1lCC5MVDHkWyRK5HN69wX6Ym5b+:Mpeu1JE36+
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

T1120

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32