Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
144s -
max time network
146s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
-
submitted
09/05/2024, 02:16 UTC
General
-
Target
27cf1259b833aab2925ecf96243b911e_JaffaCakes118.html
-
Size
15KB
-
MD5
27cf1259b833aab2925ecf96243b911e
-
SHA1
22d95f9a3a6c704524f1d3b35a644a201d9ea131
-
SHA256
59ea046a2c88968c31e7caf637c42dd8d63b556ac7f0e08a80e6ffd667b3333f
-
SHA512
df15603b0711f95e48a37fee2fd0c4c0613eb7f6eb14b98b1717baad65cd7fa81e30178fb75d8a5078f5b7495ff17b9dce8a60daa6185bc71f5c34700e875e8a
-
SSDEEP
192:SiegNTpWv3f3lRBLYS6/lO/RntY3kFXHeTu8IDcty9UlYIZPjIerdg5FXtkpkAkJ:SilTpu/EEHSftUdi8HJFB
Malware Config
Signatures
-
Modifies Internet Explorer settings 1 TTPs 36 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
-
Suspicious use of SetWindowsHookEx 6 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\27cf1259b833aab2925ecf96243b911e_JaffaCakes118.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1712 CREDAT:275457 /prefetch:22⤵
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
-
Network
-
DNSxch.directrev.comRemote address:8.8.8.8:53Requestxch.directrev.comIN AResponse -
DNSpropellerpops.comRemote address:8.8.8.8:53Requestpropellerpops.comIN AResponsepropellerpops.comIN CNAMEtraff-3.hugedomains.comtraff-3.hugedomains.comIN CNAMEhdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.comhdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.comIN A3.18.7.81hdr-nlb4-0bbd2e21834cb637.elb.us-east-2.amazonaws.comIN A3.19.116.195
-
GEThttp://propellerpops.com/apu.php?zoneid=3910&lim=1Remote address:3.18.7.81:80RequestGET /apu.php?zoneid=3910&lim=1 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: propellerpops.com
Connection: Keep-Alive
ResponseHTTP/1.1 302 Found
content-length: 0
date: Thu, 09 May 2024 02:16:31 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=propellerpops.com
-
GEThttp://www.google-analytics.com/urchin.jsRemote address:142.250.179.238:80RequestGET /urchin.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.google-analytics.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 6847
Date: Wed, 08 May 2024 13:08:40 GMT
Expires: Wed, 22 May 2024 13:08:40 GMT
Cache-Control: public, max-age=1209600
Age: 47271
Last-Modified: Tue, 12 Dec 2023 18:09:08 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
-
DNSRemote address:3.18.7.81:80ResponseHTTP/1.1 408 Request Time-out
Content-length: 110
Cache-Control: no-cache
Connection: close
Content-Type: text/html
-
DNSjsc.mgid.comRemote address:8.8.8.8:53Requestjsc.mgid.comIN AResponsejsc.mgid.comIN A104.19.131.76jsc.mgid.comIN A104.19.133.76jsc.mgid.comIN A104.19.130.76jsc.mgid.comIN A104.19.129.76jsc.mgid.comIN A104.19.132.76
-
GEThttp://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442Remote address:104.19.131.76:80RequestGET /n/e/newtorrents.info.1304.js?t=124442 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: jsc.mgid.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Date: Thu, 09 May 2024 02:16:28 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 09 May 2024 03:16:28 GMT
Location: https://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442
Set-Cookie: __cf_bm=T.Nf3lJdK2008K6ctYy2WJqHHFWrjQ9SLs1lM7ut3ok-1715220988-1.0.1.1-xBisGJCjhEU3aH_3kb2IRbJ7jb4IH5.TyYXlSJOSkwtdjhoC6FbY1dDdQws7lD064E4glN4ciKmvWHx1lVQPXQ; path=/; expires=Thu, 09-May-24 02:46:28 GMT; domain=.mgid.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Server: cloudflare
CF-RAY: 880e300acca9dd3f-LHR
alt-svc: h3=":443"; ma=86400
-
GEThttps://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442Remote address:104.19.131.76:443RequestGET /n/e/newtorrents.info.1304.js?t=124442 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: jsc.mgid.com
Connection: Keep-Alive
Cookie: __cf_bm=T.Nf3lJdK2008K6ctYy2WJqHHFWrjQ9SLs1lM7ut3ok-1715220988-1.0.1.1-xBisGJCjhEU3aH_3kb2IRbJ7jb4IH5.TyYXlSJOSkwtdjhoC6FbY1dDdQws7lD064E4glN4ciKmvWHx1lVQPXQ
ResponseHTTP/1.1 403 Forbidden
Date: Thu, 09 May 2024 02:16:31 GMT
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-request-id: WD0G427YN5W5NV5Z
x-amz-id-2: Ve2gGC/AcISYMSoxcvTF6sA1/eZuyUSc6lkiudjaTM05g+xClyNSl61aFT7h88j4f61jlh/8UNo=
CF-Cache-Status: MISS
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Access-Control-Allow-Origin: *
Server: cloudflare
CF-RAY: 880e3010dfee9454-LHR
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400
-
DNSapps.identrust.comRemote address:8.8.8.8:53Requestapps.identrust.comIN AResponseapps.identrust.comIN CNAMEidentrust.edgesuite.netidentrust.edgesuite.netIN CNAMEa1952.dscq.akamai.neta1952.dscq.akamai.netIN A2.18.190.81a1952.dscq.akamai.netIN A2.18.190.80
-
GEThttp://apps.identrust.com/roots/dstrootcax3.p7cRemote address:2.18.190.81:80RequestGET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: apps.identrust.com
ResponseHTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Referrer-Policy: same-origin
Last-Modified: Wed, 08 Feb 2023 16:52:56 GMT
ETag: "37d-5f433188daa00"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Thu, 09 May 2024 03:16:28 GMT
Date: Thu, 09 May 2024 02:16:28 GMT
Connection: keep-alive
-
DNSx2.c.lencr.orgRemote address:8.8.8.8:53Requestx2.c.lencr.orgIN AResponsex2.c.lencr.orgIN CNAMEcrl.root-x1.letsencrypt.org.edgekey.netcrl.root-x1.letsencrypt.org.edgekey.netIN CNAMEe8652.dscx.akamaiedge.nete8652.dscx.akamaiedge.netIN A2.21.17.29
-
GEThttp://x2.c.lencr.org/Remote address:2.21.17.29:80RequestGET / HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/6.1
Host: x2.c.lencr.org
ResponseHTTP/1.1 200 OK
Server: nginx
Content-Type: application/pkix-crl
Last-Modified: Mon, 12 Feb 2024 22:07:27 GMT
ETag: "65ca969f-12b"
Cache-Control: max-age=3600
Expires: Thu, 09 May 2024 03:16:29 GMT
Date: Thu, 09 May 2024 02:16:29 GMT
Content-Length: 299
Connection: keep-alive
-
DNSwww.fhserve.comRemote address:8.8.8.8:53Requestwww.fhserve.comIN AResponsewww.fhserve.comIN A15.197.240.20
-
GEThttp://www.fhserve.com/www/delivery/ajs.php?zoneid=609&cb=96179997860&charset=utf-8&loc=file%3A///C%3A/Users/Admin/AppData/Local/Temp/27cf1259b833aab2925ecf96243b911e_JaffaCakes118.htmlRemote address:15.197.240.20:80RequestGET /www/delivery/ajs.php?zoneid=609&cb=96179997860&charset=utf-8&loc=file%3A///C%3A/Users/Admin/AppData/Local/Temp/27cf1259b833aab2925ecf96243b911e_JaffaCakes118.html HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.fhserve.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Server: openresty
Date: Thu, 09 May 2024 02:16:31 GMT
Content-Type: text/html
Content-Length: 256
Connection: keep-alive
-
DNSwww.hugedomains.comRemote address:8.8.8.8:53Requestwww.hugedomains.comIN AResponsewww.hugedomains.comIN A172.67.70.191www.hugedomains.comIN A104.26.6.37www.hugedomains.comIN A104.26.7.37
-
GEThttps://www.hugedomains.com/domain_profile.cfm?d=propellerpops.comRemote address:172.67.70.191:443RequestGET /domain_profile.cfm?d=propellerpops.com HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.hugedomains.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Date: Thu, 09 May 2024 02:16:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Sun, 04-May-2025 02:16:32 GMT; path=/
set-cookie: site_version=HDv3; expires=Sun, 04-May-2025 02:16:32 GMT; path=/
set-cookie: captcha-tracker=; expires=Wed, 08-May-2024 02:16:32 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd3
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8wAlM8ysj3og6SR4fnnj7DtVu%2FINni96D9pHX4Cnw0quJgXnUjEXRpnMuGE%2Fwz98daUwAMh2wwysrIi2s6OnTsA9%2BEztxlvojqr7S%2FaGxBXMIQ%2BotdJmWaxDHPMBwsb6gONBqIk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880e30207fba7193-LHR
Content-Encoding: gzip
-
DNSwww.microsoft.comRemote address:8.8.8.8:53Requestwww.microsoft.comIN AResponsewww.microsoft.comIN CNAMEwww.microsoft.com-c-3.edgekey.netwww.microsoft.com-c-3.edgekey.netIN CNAMEwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netIN CNAMEe13678.dscb.akamaiedge.nete13678.dscb.akamaiedge.netIN A2.21.17.194
-
DNSwww.microsoft.comRemote address:8.8.8.8:53Requestwww.microsoft.comIN AResponsewww.microsoft.comIN CNAMEwww.microsoft.com-c-3.edgekey.netwww.microsoft.com-c-3.edgekey.netIN CNAMEwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netIN CNAMEe13678.dscb.akamaiedge.nete13678.dscb.akamaiedge.netIN A2.21.17.194
-
3.18.7.81:80http://propellerpops.com/apu.php?zoneid=3910&lim=1http
HTTP Request
GET http://propellerpops.com/apu.php?zoneid=3910&lim=1HTTP Response
302 -
142.250.179.238:80http://www.google-analytics.com/urchin.jshttp
HTTP Request
GET http://www.google-analytics.com/urchin.jsHTTP Response
200 -
3.18.7.81:80propellerpops.comhttp
HTTP Response
408 -
142.250.179.238:80www.google-analytics.com
-
104.19.131.76:80http://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442http
HTTP Request
GET http://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442HTTP Response
301 -
104.19.131.76:80jsc.mgid.com
-
104.19.131.76:443https://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442tls, http
HTTP Request
GET https://jsc.mgid.com/n/e/newtorrents.info.1304.js?t=124442HTTP Response
403 -
2.18.190.81:80http://apps.identrust.com/roots/dstrootcax3.p7chttp
HTTP Request
GET http://apps.identrust.com/roots/dstrootcax3.p7cHTTP Response
200 -
2.21.17.29:80http://x2.c.lencr.org/http
HTTP Request
GET http://x2.c.lencr.org/HTTP Response
200 -
15.197.240.20:80www.fhserve.com
-
15.197.240.20:80http://www.fhserve.com/www/delivery/ajs.php?zoneid=609&cb=96179997860&charset=utf-8&loc=file%3A///C%3A/Users/Admin/AppData/Local/Temp/27cf1259b833aab2925ecf96243b911e_JaffaCakes118.htmlhttp
HTTP Request
GET http://www.fhserve.com/www/delivery/ajs.php?zoneid=609&cb=96179997860&charset=utf-8&loc=file%3A///C%3A/Users/Admin/AppData/Local/Temp/27cf1259b833aab2925ecf96243b911e_JaffaCakes118.htmlHTTP Response
200 -
172.67.70.191:443https://www.hugedomains.com/domain_profile.cfm?d=propellerpops.comtls, http
HTTP Request
GET https://www.hugedomains.com/domain_profile.cfm?d=propellerpops.comHTTP Response
200 -
172.67.70.191:443www.hugedomains.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
8.8.8.8:53xch.directrev.comdns
DNS Request
xch.directrev.com
-
8.8.8.8:53propellerpops.comdns
DNS Request
propellerpops.com
DNS Response
3.18.7.813.19.116.195
-
8.8.8.8:53jsc.mgid.comdns
DNS Request
jsc.mgid.com
DNS Response
104.19.131.76104.19.133.76104.19.130.76104.19.129.76104.19.132.76
-
8.8.8.8:53apps.identrust.comdns
DNS Request
apps.identrust.com
DNS Response
2.18.190.812.18.190.80
-
8.8.8.8:53x2.c.lencr.orgdns
DNS Request
x2.c.lencr.org
DNS Response
2.21.17.29
-
8.8.8.8:53www.fhserve.comdns
DNS Request
www.fhserve.com
DNS Response
15.197.240.20
-
8.8.8.8:53www.hugedomains.comdns
DNS Request
www.hugedomains.com
DNS Response
172.67.70.191104.26.6.37104.26.7.37
-
8.8.8.8:53www.microsoft.comdns
DNS Request
www.microsoft.com
DNS Response
2.21.17.194
-
8.8.8.8:53www.microsoft.comdns
DNS Request
www.microsoft.com
DNS Response
2.21.17.194
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
914B
MD5e4a68ac854ac5242460afd72481b2a44
SHA1df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA5125622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5
-
Filesize
68KB
MD529f65ba8e88c063813cc50a4ea544e93
SHA105a7040d5c127e68c25d81cc51271ffb8bef3568
SHA2561ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184
SHA512e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa
-
Filesize
1KB
MD5a266bb7dcc38a562631361bbf61dd11b
SHA13b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA5120da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc
-
Filesize
252B
MD5cbbdf094e73fd24bc0020b6e76f420d2
SHA18763b19984ad7431d5584f81adc26b6ab56492ac
SHA256bf394daa9dfa7c4d4f9b47509a019fb408ae0785b0d4898bc1cf59f2557f1ca6
SHA512932bf73336c4c6fdf4b436aa1a577580dd0feb85f71a8ac703184410ad655df0ad19a74ed83b05415335d15119f25243aeb751014e151c3f1aef2e7587540479
-
Filesize
344B
MD584f69a2d1aa831d02de9b8d8b19883fb
SHA136cec8556011c33012746d406f92d27d53229ac6
SHA2568287664463f1a535a3007e2d341ec2abf4bb5c593de900e2d8d98e703c9c6ee1
SHA51226d7ba4f505ed7230fce8e4f315bd2d8decae78ba39664c8ef9cd8cab3a33c6705440ad389ee275c4a083297512c1a40873ffebb093ee842372817aac8fb685d
-
Filesize
344B
MD5667315b22dff8985953d3b59066dbdc7
SHA1173a89e433e3ad902a9bc0dc645edd8a83b6c094
SHA256da88303565189789560c0d75fe6312c03f21733a20c8f39ef84da4a293d6bb40
SHA512410a06d3059163c3e6a2e2016f7fd165a28c4003a32996647ddb63bb03bce3fba5883c2ea0214cc2af32d498b31b7323985008df262514868c723fe7ca124fb2
-
Filesize
344B
MD5ac7739c4cc94bc291e91d37bcb811c5e
SHA12faadd7d7b8385e98fd04b819bedf4c71c7ebcbc
SHA256eb55408ca793c2c9c4b5ccaea5503452420a554cabee6a81f0c5f4907debebf6
SHA5122ea7483d440fd98b75c5dbc248b090b19058469e70c25e7f4f2ead7854a1d3b5a330530722aae2b18bc1f81e5612150c1e86d2c6c45399a9c46aeb4ed8c5cbce
-
Filesize
344B
MD50472ada5cdb0538ad26698aa2ca932e6
SHA11f081bbadb9c91b2ca5d31d0ff3439a9d437baef
SHA256798b0607ebea7ca0b6312ae7c40c190cce21345abd01c3fc5be87e0092c01224
SHA512e0acd523a41b04000d5a38877cf2c90660eb4f16b460900023afa5bab25efac892b6ddd1f26318294ae79640e0cc9f4a8793e2840edde8ee9e69cbcdce45ee99
-
Filesize
344B
MD553f7990835c99c65ca0f9b9a588fe8a0
SHA10f31ff14e40ef2fed60c491602b91afa65272090
SHA2564b71ff989f6a2ec2350b439af948925cec5da706411c69205a86c8fa6c34a68f
SHA5129686efd33de2a26373cbf84e97020418f0ceaf4a048060cf922b2aec3e117b64925996ec456f10932cefb921461c4740491c0ba244f339cf9d0059d8bc4e82eb
-
Filesize
344B
MD5e6b4595ef3e7ebe5d62f42b12bc8c953
SHA1aa53be256a66d5414c9cba15d4342be090b8b66a
SHA256ab2c1b1e68a0a6075cddcf6214c29120fa64f1f7ea6693c8df56681b0d4c2df0
SHA512af034f91e908aea4441cffc270016605585460e1198081574d854bc87f2507ea14510c90d9c940d745214fd9e6a6e8ee6fdf17c8d19f9ed420c6d9f8a2bbdc3a
-
Filesize
344B
MD52f5e9d081210c0236e960a94b5d7544f
SHA1d622d1a45880039e7aa528727beac4e0cb6b15ff
SHA256fc8dc6b990a3b8e5a1398fb2334a1ddb07b07f80a353f827beffe86ab29b65fe
SHA5122e20874db87f3f97b0f1c2fe6e52f6f8950a27db546d5730f18e8894c08d4410b1a1ffb10bcda8e0ac4ad11918825c8317f30b075cff9a734b684b71ca4649ac
-
Filesize
344B
MD55ec24dfdb26c0ae290b37d4235bf015b
SHA1059330ef023ecacd4430eae8fee43d24dc3db169
SHA256d7e2af42e323bcc269e21ec97f13c889545e703c06d0fdec6d45699f49c81c1a
SHA51230bc1708ec9654cc94f46834f2930ce9f32b480fcb324cdc4a6691f602a5c48479a1c8350e7a4616d0852a19810eeb58191d276688761dd8d1f3abd48d09aef6
-
Filesize
344B
MD5afad646ad0ee5b7ad8dfe250e58dbf5e
SHA11f6d91041f7580195bde9bc542f0350c2e23d87c
SHA25622c083d98a3af1d2c0cb422b2ffa85712fb157bc2162f865d9674354436f8d35
SHA5120bfb9720c10a1ab32750ec8adb892ffd03e98e203a9d0fba41fcf46384aa95d86e6530f5651ea6c9c634de2223697b3fa118fcbafd2319399b5289446b26faae
-
Filesize
344B
MD52803474804f5941ee7d674c7773544f8
SHA1118d117a2789da26d0a831e0cc2281adae10c00f
SHA256661cf8bfdaa27a1f1aa179de42124f4ed5ece493608b92d3abe0f10529617f0d
SHA512ff97bb81dec3c5c0b259dcd4be7675fbc654cfea6a991032ea49975254ebaf8027980ec827368e4d4e64821e36f5347b08617bfff45dcc7ece4fa8490bfc5621
-
Filesize
344B
MD5b26e625ec3c9ebaa9a54822e7a514d22
SHA189526ad8fc56944d4ae7ceece45cb71de57c6405
SHA2568e359520ec68d30f75ef78e7f510a8336e984853f69d969491cb7159cc894a09
SHA51286856637b91f8821ee43af720e2d9064da1a4ab3c44d3d51fe2c15656a06fca8cbe56c2d943c9364b6419d4d0efeb049a72d3c2e0e7cf673e0f7087d1324bed5
-
Filesize
344B
MD502b6ae5fb2511b0744e8f745319eb594
SHA1cf170f52693b6d0828d551978272aa4d22d29970
SHA256f30f20d7494ebfe2dcacb89fb48a99ed34f5640be39b8ecf4990c0befdcfd635
SHA512c65f7e48cbb5cc74e0182604caf0290c53bc8ab53abe52634fb43a0aed1a5ea7c884f96fc8bc6d8549836dcbd7d0870b130be80429f766e296863bf20b2f08eb
-
Filesize
344B
MD58db7c2897d1b80d72a72c6950e920923
SHA1476682886a2bfe5cadc8b8a77f47350cc9c8ebb6
SHA25691a1cf097921482f1b41b1cbd028e6678d5626823c1f46708700060e5c3649ea
SHA51225699885515cc72115f3bc4e027532da6bebd7fd39570db85d66b2930301c194edfa12f597fa3b4505c0cfcec0537dceb0dad3acbe90cb10551b00e99f71baf7
-
Filesize
344B
MD5eeca47b39d48b668b77539aba1504171
SHA126fec5cff5598e1a616558aa18897359f2ebb659
SHA2569dc1fb8817207e13e281e1bde38ddcc3c8a3081a7428438f407a344a9cdf9c33
SHA5129552e2b00891e3ae77a91288f913df812e80ef3569615426b801bcbde6bb659f8effaa932f8c7b9c5f0bf0e5b586cc510b83fa431d5edd6f694be2507c4db08d
-
Filesize
344B
MD5375bd2280d1a9fd6a50a7a44c0d7a8dd
SHA172acd73981ae21fcd12afdb70fe90720e5f5305c
SHA256e56c2221a85b615e33377f83a4a97ed10381b3f5be2c39bbcebf20c78507cc35
SHA5128f75182cfce5924183753b736ad266a105b5f6758c77278b172bf4be38100b7e5d960e76c9fca33065c75421925c392312402c42e62ac606aa5f8e0ea4d1ec10
-
Filesize
344B
MD509e17f003f0243f90d26914d5c0398ad
SHA13afc2cf8a072980319e42f4e1158f32590bb03c6
SHA256ec17d8d9cc72f56c61a202a1d217c9bd54c5824e0f501c6ad505ad05cf477981
SHA512b3cdc472a2d4ab90ade78e360bacd979f32bd6f6c478447254f0c2aed182dd3e5954d0e50ae6c2ef59649103d8b54e09812054593e49bee3622843c0edada0bd
-
Filesize
344B
MD5bd8fe706439faca306044e1b0bf7bc82
SHA170a5ba71473f3dd2f3c5347fbe3ab7c07c2e4fbf
SHA2564fac2d72f141aaa624a3c66a66fa259253ded7bb1d7462bdfc52ed670a8fa769
SHA512b0d6533a79ed36700f2d51a35c9189f6ba791ceff7094dbd8120dda321b3d19f7089b638820da9e441bfee7e7d96719b7ac86b57ddec15f53dffb2362bdb8c65
-
Filesize
344B
MD5fbfa5eb58fc1eebb99e1c60dc2856ddc
SHA1df66da60580d3a286e24b559df1361ecbfe16e73
SHA2560ec339741f0491fe6a71f19b378f1ab253c91f9ca2aec2eeacc9bea535e02d01
SHA512d28e90978bb8e85397e717e8065a15b0d2b2e739c13d0a2614570507d85a604f8bba478138a671d1a45f459ee29c5fbc4daa92099826e1b8209f6e16aa273b41
-
Filesize
344B
MD596e72cdbda1736fabf5c2b8e31661071
SHA163135b9209e72e152e3cf4f0332571566f88859e
SHA2564a81c956c771a79303372b3d05cce3558476568f50dc7fa1ad40fa48a5bf706d
SHA5129c997efba5fa9f9887e466ebfd89de0a014c9f2a81b43ca72a4d4af7e0f147ca27724e5ca1176e9c32cee89c47e1f2f9b75735f750a683cb038133d173dfa7ba
-
Filesize
344B
MD5aa18f617e93ca22e18c6ffb99cac625f
SHA179bb8d6220c5a2f1417ad823349458b3448a60be
SHA256a7d1f20d59c5ca78ffe67f7959eca725b4097f0a5a01e9a6e29be75150132dc0
SHA512b9e82f6f87d920122044bd719f79de550400bdc8c304b80496d6ff40754f3f4ccf297281f4fb01b6c6e88add29e2c010cd0adad9b300b21a5d1913eb63885639
-
Filesize
344B
MD5b161d063ddc46ab272ec4488ded54fe5
SHA1f8229c57668ef8ade0faac92a600a6da53265ee9
SHA256d3bc120550fba70430515b6ee3e3b0cc1ad99d94af1c851263f0f0df05ab9331
SHA5129732934c98e01dcbb20703b6629edb612bdbe57069892524df026b67987c8134601a9de289f293ed73e2602626c3561c2c931d3e1b4fb91faaf04196d3c0a991
-
Filesize
242B
MD5640b78a53d1c088f1a5cb30535d208b4
SHA1543c3d49cf488910bdd60d61c90a5d85d03fc0be
SHA256c03a8c9492357bfc1b69fa1b03dc133f5a9f3a1d01815c374d6c799690eb97e5
SHA512e7fa62da55437e6ea3bbec66b44eb1165fd3301d51bec6361190faac2cc8204ab5e62368c8d9ca6bb74a0a4b59663dad290b9fb176699c6c11838124a63231f0
-
Filesize
65KB
MD5ac05d27423a85adc1622c714f2cb6184
SHA1b0fe2b1abddb97837ea0195be70ab2ff14d43198
SHA256c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d
SHA5126d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d
-
Filesize
177KB
MD5435a9ac180383f9fa094131b173a2f7b
SHA176944ea657a9db94f9a4bef38f88c46ed4166983
SHA25667dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34
SHA5121a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a