84f3dd1e7ac9549baa1a6cb1f4f0bba38104ed38dcb60d8676fbc4ef7b9ac829

Analysis

max time kernel
121s
max time network
127s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
12/05/2024, 10:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

39ab12846c60841d26803b9e4b3a9a64_JaffaCakes118.html
Size

1KB
MD5

39ab12846c60841d26803b9e4b3a9a64
SHA1

eeeaa5fcf7daecce1fb339677fa9bb271392ff8d
SHA256

84f3dd1e7ac9549baa1a6cb1f4f0bba38104ed38dcb60d8676fbc4ef7b9ac829
SHA512

a87f1a724c3a77f3a7e448e98ba1db98b24585a64a68495c3ada503379e8ba68b51d93e6cd803f4e74bdda0382aa6553948f38d9b8f8d1d1b19b72365d802807

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000587104b0d2f7da409208cf3ae9e77a2300000000020000000000106600000001000020000000c675eda1c8ec07fa3de19f4595d745076a239242e254341f0cdad87c3a9195ac000000000e8000000002000020000000d09869f691751b42fe398635c0b0185bd65fd2ebb67200fa2217e6cbe160604b200000002c6ff48e0f98a9ba34a57a1e464e75f62d66761e4c278d638cf8ef6be5f076c540000000da1ffbc85df6df930c2885347340e6d5ba832929b15d4d9aeaf469533baf1a234c5ef6880fdaf4ced9f0dcdbfb6042549a4671b913647977a392aa8e18f3bbfb	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421671995"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{5993F8A1-104B-11EF-B97B-5630532AF2EE} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb01000000587104b0d2f7da409208cf3ae9e77a23000000000200000000001066000000010000200000006eb4de2839a879885f4b08afdeaf59424582e7ce8b784f14130e475263827e30000000000e8000000002000020000000fa5dbe81a5177d941d7c1e55bccb8000480a6de20d8eea23df4d1fd7c6277d1290000000674cd42915217519ba6cb5366f9ee1e260151c97c5e4cacfc92a7001a863d370138ae12e12b5d78d606538a91dce9d335a3e2d2f3b9389135d5e170b64e83392b3ae857ff853ba2d35966cbf082b30d70112e79616e9bebed304e338c81b2f5f5db66be53ce795d448ad9f602797832294be0fc474ccc89099bd683718e5ecf5efeb302e63fd060e5ec6f690fb6b3c5c40000000dd0eb301b721644b7f8ef26232d32f5838ca7309349611780650c55989218fa741c35206b36b0e405d09a3656e3f095dc9fe34a6c30122ce54d57123bc7f9317	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-268080393-3149932598-1824759070-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 70b2492e58a4da01	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2188	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2188	iexplore.exe
2188	iexplore.exe
2184	IEXPLORE.EXE
2184	IEXPLORE.EXE
2184	IEXPLORE.EXE
2184	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2188 wrote to memory of 2184	2188	iexplore.exe	28
PID 2188 wrote to memory of 2184	2188	iexplore.exe	28
PID 2188 wrote to memory of 2184	2188	iexplore.exe	28
PID 2188 wrote to memory of 2184	2188	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\39ab12846c60841d26803b9e4b3a9a64_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2188
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2188 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2184

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4c136fb0088b7ec3d0d4424b984674cf

SHA1
999747d63053c81b7af134ad780dff0e0e32b329

SHA256
cceee83f6305f438d16571e231190fd110682f9ce53233593910f5c9329cc481

SHA512
d552f9588d443c4288db47423a64063d63b93a1f0d872bd8d8f75f32762235346f7dca729cadea786998d3e498e49431700301e612dda884f78b5327a2df5ea8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e9054f98658220316f29a728a40d1bac

SHA1
1ffd8ad1aa3d44b7141010e7d78e8197507d0fb1

SHA256
092d3e0155a27990d320c81b644c850a952c9e9d67bbc031459ca4f2795793ce

SHA512
d245d097d2614b175ef5d7d439df14a7512c510b6db4eb2cdf82669c7dfc258fe3c219ea5546dcb0ed3b8efaf0471897c90dc6b6913b4c278df9c0966bd4353d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5349ca46b56840921172cd80ad68a181

SHA1
8d2f6a4f44344651144edf4823d7b8095d90f1a9

SHA256
0521627e492e9c699bab1dad7904b31e5f7c10a7eb6f257f50fe0dbd0d5d6b00

SHA512
c5d0e8f8ea47e3e0ebde8d854d0129d1b6012df1d4c8b8cac7f3a26b2e1cf0469a4d7f542e5628af769e02c02009fa2e9b105cfdab9f172b8e2f09ac00ed5069

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e11016e3653525bcb9c01c144e8564e7

SHA1
035b4ff9986aae2735aa2691423d598467a12d73

SHA256
3dab4c2f440637a93df162613e0eee748b784c7d2c53a30af27b995a7f9e8f18

SHA512
b17b505bdbdde47f4045023a1106186d0376cc577c82e3ede928fa815c3378c26db94d89b7f68cb5b25f055045229f0499a419286b5fe1dbebdbc19db3f5a238

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
928f83b4806fdc1b3edf4211b43e86ea

SHA1
3bd8553460cac4a06c70143ee928185b187fdccd

SHA256
1fc462ffd921b42e3847f8617e0fb815a9fb4f9689cd0d1a8fd8b27149766798

SHA512
2bd74ef1835b8c471f0e7a8192bf8ce8fbd95d5ee488500227e43e1a8d673684f666482cf9cc61bad4e0df4aa632763e123c0f9f051ed90741f4d91ab0764193

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
37fd0d3206b044a92cab8ac53f8d8f3a

SHA1
c9146858cb0cd41eaea40ee26e7413c7616a5752

SHA256
16fa91a1c7ed0d6ae652eabc967f004e7df96f6c71b8cab57105e005a6ad25b0

SHA512
8d2467bd163c7ff7ea43508c27b1d327cdef11958cfba7cf7de8b7b4008887dda1ea92232a09577698f8cbbd7f633afbd14bc9289e0aa1536e4cd5e410c43c53

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6dce564c79b10e924f6a71be4f7783a3

SHA1
add5cd961dfb09c151fdf992a3bd35e3c75d6edc

SHA256
ca2c455612bed16ca15f3a336983054ec854793142fa48ae1a75134485668af2

SHA512
5569aa44a7023eb6e638cf07412d47621225cf70879485c6003fa5e8ae8e928cca43e9f8367b0422e56af49ee65566a9196655dfdb1969adc08f7d2612f6f606

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
3c750e711348d3fc459e1c1f62e3507a

SHA1
d300030936688d063027236492c8448167c3e62f

SHA256
0664be788f7e03c99c3eb123573801e40d3eb2521b18bbc06d441e3a43e37974

SHA512
a7aa269c80ffe9c3ce1ec02dd7ad711f95a9ce5b58e8f0e0362ae1979bc6a95ce5c87bded113490ba6b45d9d621d3160092456a73a1c2d988f0989af4200d601

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5e126968a212ecb0e091bcddfa90e818

SHA1
7fdc7797e46aebf60b41fedcc36d5f1b40b980cc

SHA256
3c535cc72732f3ff7447e4c3f9f482e26fe24e16a1ec53b2c3e76aa3b238bb4d

SHA512
c49068ad6d62030ac830ea70997508db47a9c4f00ba0b6a4e3f0b504f67c0d0c3f53b16e196f144ea2e6f862a2aea986ede64ab12849dcbdce06f12b47606458

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ca059d6f64d5b495987eaa8611b57779

SHA1
cdaacb9d5028adfa87c873323e5d6a516ca89d01

SHA256
cd40bc18b17c7ef01c75b299bf77b4201879e92e2f344aa8af22d99f1b4e12db

SHA512
b56f9e3fc0a330e3b6f9d2e8209782bd87e540581bb7b5162c5f35688bbc87156a7b26fc6be56ca263e15654d23aefb5c85ec2fddd8d5b8562308ac4947530e0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ec21c27e7f4e466ba225c15f8e2a3a33

SHA1
7f2b2b5bf2aa6e553e738141ec915cc0fec3dcdb

SHA256
62c52479c9f28b93103c0bbbd11041607c8835d986413cfb18907b00fa50142f

SHA512
2913c0de0d872607d9db8bcab074b1d53b048035b7d293e310c5e6a4ca3fb6e85c83adeb50e11ccda8c475d263a1d82afc14cf2e4c960f9c31968f8c015d106c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8e9ac946a45621a854a3ca918052b1b9

SHA1
f43dd1eda049ed60ca5a6d87acddc3e00c3e046a

SHA256
1e1312d7ba05b022cecbad1b17fd1bac2d57d063c3f416184c5d2c5d2b58227c

SHA512
f384be08375620b066fa60f1b7ad153693ee65d0977b0b034b75a35ecaab0169880c33a40ec1f00040955047fcfde34ec49c9e5263adf81855c814100c4309c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7419f5ae8fba48f77c24c1b7be803e33

SHA1
6034d40c624bd16ee02392946b6e8c007ab45c5b

SHA256
e8d04928f0757daa2518a3712b50ae7a1d9d91bf43e23a105604075c8acc031a

SHA512
6e5a479fc3b9d7e7f248a49e96047d2d39a4768d107cbd0557068799c774c07c9031e1c8efe18e5420fa64e46e608014840fd71f5fa13a24c0258987a44394b1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f6a38dc68bc1497f87e1846ad19439f9

SHA1
cc3a4fc60693db7ff77db224c54e78cde81fa567

SHA256
2262518c42bf1a4401c4f800e25400d5a84a62334caf633d9eaae41505d0219e

SHA512
6323c3ee3d9ef7e098fdfccc213eed8df25685b8cc76cb4e252282942ffbe76709e2aa32dbd157c344557e9defe5b41ca819711e613dc540b90399b02c733c2a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
73615b1703e91a82f1291a74eedb023f

SHA1
b097e0e8350b36379f55932edc9533c72f43ade8

SHA256
81e0ad9d9f08fd6c103284fdae5882af8263149d7e0c0f52f6053a5c6893dc18

SHA512
6b60fe9a99b4f18924ea2e08f3f9d6a6ac5c693a5f8e1efa38201715bed2c03c082e967d0a30369057ac81e85f12e17ecc0fd236e340504c5b4b3e67ddf303e5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c7af26c9d1e376e6add88fc3f2a46f3f

SHA1
d62f4b06dc6d68dc3ea46c235daac841f336e4b6

SHA256
ad6655b3baf55e20be632e4357b05a1576c08efd89c28cff397afd372011b54e

SHA512
7030505dacc997a3c5d24fc8b2b09c9d6680bb556067bd2f5d4740913ab307d645becaa70dbf0a3f1eb21add019c387473fa22358e0e259b7672c353e13429b5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e4d8f6121fed099cbd2a11b7903891a2

SHA1
1f67b111768f42b0e39be9804f9207f8d22b02aa

SHA256
d9e544ea89fc232093757f9cc0e5780902769b54d66988952d412cfd9eb3c59f

SHA512
c4be8e25dabd0c9c1a654c4c94542ff121eee04ca7d742a55aaca799a3bb085ea3922e850c815ddcbe817cf5ef14e46ad176e43f25045b719d50729a25d22f65

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
548c5e974ffce0355869a2c9de861b41

SHA1
289240cbcd7e4d85771ee6cc66fcaa47d40b3c0f

SHA256
b281c01e89b1bdc9a383c9960a20c1fda4cc370cbc2bfe9ef13a1f79c9bc0e4c

SHA512
a1fed1f24810a0a3c3a576526bf2679765574c29f5ec1f8c47f982f17945dfda47c246178db65b0c82fb6ef776bd7fb219a0de7f56aefeb0ca9251a0b9e28239

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab4195.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar41F6.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit