1146a36e64bbecf48a227e6eeafcb371d73a23f4d40ad00da3cfbe72fb8a91aa

Analysis

max time kernel
134s
max time network
135s
platform
windows7_x64
resource
win7-20240508-en
resource tags

arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
submitted
12/05/2024, 20:35

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

sample.html
Size

220KB
MD5

37dfc8f9ceeed16442349a1fcbf2c604
SHA1

a3aa4c0bf2f46c966a2f2a7a1e7f350f4af93612
SHA256

3206978be5e3380708214fe21ab934728e4b3dcf62f3d423738f6f5ce24ae7f3
SHA512

dc95f6f4ce9562a3fc115d3b417b26dea43088f6d2623d58dcd1e8910efa156e9202abcb49404792bfb203064e2b5ebcabc7be9bbcd8f86b14f6276a527c07c2
SSDEEP

3072:SL0VBZcXG8QUwRo+XyfkMY+BES09JXAnyrZalI+YQ:SLsbcWULZsMYod+X3oI+YQ

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 35 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "421708011"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{34D0C3A1-109F-11EF-84C7-4637C9E50E53} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2737914667-933161113-3798636211-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1916	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1916	iexplore.exe
1916	iexplore.exe
1636	IEXPLORE.EXE
1636	IEXPLORE.EXE
1636	IEXPLORE.EXE
1636	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1916 wrote to memory of 1636	1916	iexplore.exe	28
PID 1916 wrote to memory of 1636	1916	iexplore.exe	28
PID 1916 wrote to memory of 1636	1916	iexplore.exe	28
PID 1916 wrote to memory of 1636	1916	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1916
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1916 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1636

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
4a0ed8662343b97197186ec048851ac1

SHA1
79306189608f55525e8a30f9851aea193f17464f

SHA256
8b6627ee9e3209874ae53f61eef99c9d95d3e5a9df012d01e8c820589672a72d

SHA512
ff79b88089d0df6d38f810210119594d5250902b61ba67b9a3204a2e69bfeab74182a83cd969793aacb742e2be5022a5f62649b15052b1a616c2bb8a3c402271

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
b061cfba38d88b33e96c8b41f921483b

SHA1
c3f425ce687a670919aa866657cec7ab4fd0ffda

SHA256
ad564cb46aba838148e51d1d87695bdf35e521aaf7c0510beb59c16d85bc85b8

SHA512
248bad9d940fd47409358c5275d8c273e1bcfeef2e80fcb7b645e092ca718a54f03096e3bbbda321ae51ceec9e9aca517d7b06a0358f41947d7e23a73344225c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bc97c83700644aed7cf101f8f38a17a1

SHA1
6008e2e436f5cde7dc4acebba54ef873f7134cef

SHA256
8623c4bc9748c9a9ca4f1f6c2b4d68a1a72df2bdbf98c29b291f15b21729d0a9

SHA512
651648f3d852158938e9cf965c26a9c0907dcfdaa06881752c93aecc8830942b584e72b1055d6f8b6ff58cac8c7fd7e5704fdd85d673a9c6a7c44cadf4cfc1d1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1969e40e6e08544b290d19c6001475e4

SHA1
c56a9ec2e2f90e178d135591f4c24a8cb2da1991

SHA256
f34e10cdf9b607f2ecea277736a6c3e7195be6555c6667df1ab63e36879c1e1e

SHA512
7a94ecf68074e12132035e3cfea69d603a1345b7cb2732681d56f507901c88f5c61a0f5d6e795df7b10ca67278e18fe7cb787ff374d37820b3b2294e7f5f32fa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
51a7e66cea4d433f2cc0876d924932af

SHA1
a8fa0f907c48d333d2c2490e00e687784a5189c2

SHA256
e1907a3369c459fb5506a2925ef19a496133eb3cbcc09f5d25dc7c343ec015f4

SHA512
192ebe8c8e00020792193bb1a981b0a7446739ccc4d3af3f1a25e80310a6e1e16db4724fc7b3ee049bb873c9e8196bb15746f48458c8aa769a839d69c1247d77

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
dba1035c59f0291091fb8a233e06af06

SHA1
e74274b272bf7a7330721dce1f7ca4ae254263f6

SHA256
cb637ac366285b9e373b0a0dcfc922af7044776ff8760e0f6654d69668fa9d8c

SHA512
914c5b7436e497275c836950c72775e6a20f5084ed1de68febf298d0d09a097d5f3c429f7a5a3a2b8a0a9ae3a37443c9b0a670ce672152a50145f323f14f8a63

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
abafaa16a4c835aac7a617a1159c6522

SHA1
6b1a3eb647e373de0053a70bf51dcaeca9d658f0

SHA256
d01bccb151836eeebfaa30921a71dcd022a48f00c82fc81328343b28c2558d70

SHA512
3eada0dd4fc35d699726256280d31cedec5492baea75c8d4a9221dd6f7d9ea50fc383e67ed5b5a6cef18c756f0ba000f7f7997d86cfdd26bb4be3011c5c16d61

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
31b5914eaba7813de0e567e9fb0a29ff

SHA1
7df1f87f9c9f7868b3542d53a94911337e25f7d4

SHA256
3927b2946971244164b238a4c8b7d77cefe1f6d41636ee0890523cebb2c32fae

SHA512
150f04b1593425ef7a338a63d908ac6ead4451f89b51452c28be6db276aaa724f2c24687fb7f1aab54cf6fa5e6ab90a518cdfb4ae47c6207f5ed1338d2ae707a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
261d6fc6dd963fdac1cb110801cadc55

SHA1
c9ea2d579cfabe2090ba17f6bf0d1f964a22284b

SHA256
4d4e17935f52abca1ae0d29864f8a1dee6878c3fedb2b615e0682f6ae5b5b7b6

SHA512
35dd8ec7838de661b2ee97f6b69946b52168fcd0ec09469155503197a3c285b642acf045434a6fda94547d9bc782e5f4320b21b6835c96bc1c0d7ca47ff552dd

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
abf86afefe58369b8f82ab622a07c7e7

SHA1
b0d703061e7c23682a4d4beb483280b3c28c65f3

SHA256
b7bf652aa2c107da5901d8c5b368eedaf4d28c70a9413d084b7943fd7601c850

SHA512
a6a12a20c15c101d80ba25ff83affcdd410296b320fd308d39c165fb14e4d8a4c047140f8bb98263c596f8ffeddbdcd23f7966ba4cce965340dbcce7b399c919

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
6191f2b13d03e44768bec6423a101708

SHA1
bbb61f269b42a2e6f61d79d0d1922a08a8f57f6f

SHA256
d2f640b21215c8b14191bc09cf4df3ab6b47fdf93f03873ceff5b1578cfdfc30

SHA512
f091f996146d662657b9f7a60ac2db246a4e6b80afac1b280bd97b02071f052d960c6e5416c8f4cbd088642cec533b3a5b0583660c63c6e857ea5a3f5e10fa16

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ceb324f94d4a7a4058c5b788c18b31aa

SHA1
46379c90991bc8971488e21c83c2e7035e850786

SHA256
bdbb73e359ced4b3034d4441d131be771845492df80d0d35ad81b961fb16435b

SHA512
09af03ed88a38578dae8489997304cc963613b200251d78019de1814d3d4c18e54ad5b16505fc61be3e071e60cd9755cdfa390153c862146084d613b7b83030d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1110994b4fc84c6965b30d1a13fbbe59

SHA1
10a0b213531d3b26452cba7a4685b0374dd457cf

SHA256
57b17bfa1e0ac18b6d54429e27e3736526aa281b51d0ecfbe68c17e13433e01e

SHA512
d298b8e5991b437d15cb48e811f32a714181d3de87c7dbf2c278ef97aee14ee22220f47a0455fb0bb38e591c7115ae7315ab06d1a575a012a30603ab761a76c9

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a220419afa2d04b58273169bf3cf98fc

SHA1
1e9025302001d022cb0d92f680912ac8b15732d2

SHA256
98f7051f80be24aff20408d509b9b2586c37173ac79c6e45093d65751aadab5d

SHA512
39253fe2fe6c3345bd1c87afbf4bc510627ffdc67c13a20fd73e5548f095de6bb05c1dd28a0c7cbbe5f58c1db6df4fe5ddaf633d6970786a55d09a08130951a5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a79fa7009191421ff926498d85f4e3c2

SHA1
670eef8392b2b033070b8769cf11bf2e88242b82

SHA256
764767d838bab9482aedd8f53a6a6009442dd36d529c1c815b89a167dee407e5

SHA512
ae1e9b78764acf6581edbcf90bf471287c9be608e30b65a838cb792dae9cc548721c9bd589d57cdb2ca140e1c924c71ae0ce4b4dd8dfb4f82d16c795000f6e2e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f4912bd6a5d3f21872ffc4f9d3f2424a

SHA1
b7212798c3b6ccbcd053ec50e3c97be2af897449

SHA256
c6b2863d4196a2a1309cfc3eb9a56a9d107d8f753ba828549fd602a79a400d85

SHA512
56aae2fda14ee7ea5ccfd19ea1e1323672679a2f47e9fbca87d15a761f78bc68038ec744f8565a37833335c45fa579c0a7492ba41cd12803c2841f9d3f1d30d0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d36e3d588013ed5a6c143349e6439a6b

SHA1
1d9c27031d1fbb2c37ce338640020a58f8c3190d

SHA256
999ab1dd8c71dbc0c142326205c3696e02b378fde6c46c6d597abb6738c0775a

SHA512
3e610df215dc6695ae4badce4df3b40ec0026f78cd2bba4b18912b8e7a1303f33f4468534810c2c91be587dccab08d30f07ca3deb246c24eb98a67620ee679cb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a0da3a67db02f77c31062f5c5bf1c751

SHA1
ad1b8828d2f5199d21732b5c108ce8edbfc234c2

SHA256
e23f4a70b1a4ea84b21d6f8c99552de86a83d0955a7f84e7d92818b79030cab8

SHA512
01d800fc30365427196371cece3374c7578588b2e1fdc6afbe94d9650690f12b618b8ac4d868219d45eb59f1361d353319969c0ddafbda1bb09e7cd7c47fa82c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
e345e71dc332eab3c02ae084238a630a

SHA1
9b60cec780238aa80fd65e8863103d4b8b678305

SHA256
59a0b1899f44a1e7e46c9d09525e52f1b25c19050767ce3ea6f6c78c1a232c86

SHA512
a204ccac06160692ee9c74a7b69010709bd924ab3eca36b9faca7c8fbbc9758d5a68a6cc6c465b6136eeba80dac982764a76acddb746a55c08a8c53f55f84157

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
06beb4ab3f758da8cd22490f7be9249b

SHA1
efbe975715bbce5e3335ea7244a1c4f02853035c

SHA256
9a77ad159d38f53830919f8adaea52b38080edc954c8af17911eafc53d86ad58

SHA512
bed61e9c3ec260edea39ec86c914f4270e3ae5cde2b082f68a7098cd61b27c5f9d29be9b797e7a4b4e22190ca46a6d1fba6fe31309aa641b6f626752e4bd2f03

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
d956fbfb100af2b60a25006ed0567bc5

SHA1
454b904dbb58b0fae7aa6a4cbd053da70550a228

SHA256
28a95b346f2f08876819822eab3410b419780d188eb8925637b5a40948e15ba0

SHA512
e81d3e787c287dfeedb81ce6241a8a1df6d753df3d5bac7e4a12074ac8e2a049b8ff8fe707cdd24c0d4ddd09737c61e7a29fa3b9f3746453f6c43a3afdd288bb

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabEB1.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarF13.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit