84a4ea2b675f079515300f72ff77a34c76ad3eb2378d9e898c2a88207a40b638

Analysis

max time kernel
169s
max time network
189s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
22-05-2024 13:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

67669d1e8e536512cdf383b6ff01b344_JaffaCakes118.apk
Size

28.7MB
MD5

67669d1e8e536512cdf383b6ff01b344
SHA1

0e329075545c02f5007814abcbf20cfa433b2dc8
SHA256

84a4ea2b675f079515300f72ff77a34c76ad3eb2378d9e898c2a88207a40b638
SHA512

47236411cc6f1a138545574bc6e0fa4a2056ba6b165d44aa9d48234c87be5a6a03a66839eadc32edbe111fb6765c6f8ac3080d65d56ee5b1bef7f6d22a10a060
SSDEEP

393216:E1YQfgFQieqNe7CWQ39FowT6lbeUek7Cxx3lqwVUv5jZ++QwjH+pW7E6r62Sqeh3:WYmqNcCjjN6QfxAT+wSpW7EOqFuMtBh

Score

8^/10

collection discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs
evasion

T1426

Processes:

com.witgo.etc

ioc process

/system/app/Superuser.apk com.witgo.etc
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
collection discovery evasion

T1430

T1627.001

Processes:

com.witgo.etc

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.witgo.etc
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.witgo.etc

description ioc process

File opened for read /proc/cpuinfo com.witgo.etc
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.witgo.etc

description ioc process

File opened for read /proc/meminfo com.witgo.etc

ioc	process
/system/app/Superuser.apk	com.witgo.etc

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.witgo.etc

description	ioc	process
File opened for read	/proc/cpuinfo	com.witgo.etc

description	ioc	process
File opened for read	/proc/meminfo	com.witgo.etc

Loads dropped Dex/Jar 1 TTPs 3 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

com.witgo.etc

ioc	pid	process
/data/user/0/com.witgo.etc/.jiagu/classes.dex	4530	com.witgo.etc
/data/user/0/com.witgo.etc/.jiagu/classes.dex!classes2.dex	4530	com.witgo.etc
/data/user/0/com.witgo.etc/.jiagu/classes.dex!classes3.dex	4530	com.witgo.etc

Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

T1424

Processes:

com.witgo.etc

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.witgo.etc
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.witgo.etc

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.witgo.etc
Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

T1422
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.witgo.etc

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.witgo.etc
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422
Reads information about phone network operator. 1 TTPs
discovery

T1422
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
evasion

T1628.002

Processes:

com.witgo.etc

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.witgo.etc
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.witgo.etc

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.witgo.etc

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.witgo.etc

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.witgo.etc

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.witgo.etc

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.witgo.etc

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.witgo.etc

com.witgo.etc
1⤵
- Checks if the Android device is rooted.
- Requests cell location
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Checks if the internet connection is available
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4530

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.witgo.etc/files/.jglogs/.jg.ac
Filesize
32B

MD5
0ebacfe57ca80d59484972c4fdabce31

SHA1
a82da73f9135e85a2ff7dd2c82480bb6e3f8901c

SHA256
54edb2101bd055fa1688432aa8335efd1b206bbfe9a65eed0341fc2941eb9589

SHA512
bdc27590aab8844ecb3fe71b15b62130860fe780a7f10329310c63206e20ad73beac2e7cd50ac43a4ddc417221e851bf73abf1586df93728ff45c030b0c799ed

Download Submit
/data/data/com.witgo.etc/files/.jglogs/.jg.ic
Filesize
32B

MD5
ec9b1cce61d868ffd2936ff5e815e8f8

SHA1
69772bbb4d48a249f1afd47e59ac8c7985d2b017

SHA256
4232ac800aa33b951f2f2638ac3c9e1667bfe06a814a9145bfa4c55f6b2d354e

SHA512
1a22fe50a07349072c3d600bf1519acd88fbc1b797411c930c041286afd4fecca44a0c6b56e975b859592d89b91e44671b68f45c6e159aecf217c93210826489

Download Submit
/data/data/com.witgo.etc/files/.jglogs/.jg.rd
Filesize
32B

MD5
879dc1ba36613f067587150e933ba7e4

SHA1
ef4a4b2c735056e0eb5636b99e372b583f88bb7e

SHA256
8d6d847958e52f8ff0b8608cc0fb74efd6ef52d0efb1138c6cf7bbea8886a27f

SHA512
2e784ed400063389833e75f1162d6642bdb1842cd4aecdc09ee431f4c6a011d9ffdbb4e4a76a55ecbd059b6684baf9c62acdcffeae08eb93979377f5f74930ea

Download Submit
/data/data/com.witgo.etc/files/.jglogs/.jg.ri
Filesize
307B

MD5
4069598a4e6a755848c0bf2820863f27

SHA1
31245c48ae030c220595a9edf00401dbe9ed839f

SHA256
647a2ba4ee661d4a28adc364facdab0c5a6f94ee097ef8c954826857c1e01784

SHA512
6d021151694a979af0e817ae196e510aaf54491dc2b56f28a0cb4aa5d621a817d1053707a4d960274812a77931248b3728bedec61e681d5730141cde9530494e

Download Submit
/data/data/com.witgo.etc/files/.jglogs/.jg.ri
Filesize
314B

MD5
fa7cacc86c0784d136aa8b244ef4f1bd

SHA1
582d7b5c6ff5b3488b5494a809e724bbd8150644

SHA256
3c056cb80cdf0a1d84f89e2b7341d37920073e7cd27c490cef57ec2f4d5f8852

SHA512
9b2aa5e8034b4336bb18fbc2ae6711f49cea7ffcfefdb55d76963014bab7ae7e3860261b3cedbf8f1e300fdf2e8262bf95766643f7d4688ea7f58eb495e2cd4d

Download Submit
/data/data/com.witgo.etc/files/.jglogs/.jg.store.report_pid
Filesize
32B

MD5
8ca4b38c391d3da4dd59b08385c1cd45

SHA1
de5dacca30057fb91f16a2bd9dcc5f2978865d93

SHA256
cc6de00374e5d3c7f6831c0d2a3f0c5e5a1771a6f8cb1c8c8a79a01420d3b1e0

SHA512
d2bfa48b2fee787be4eae043ca9c7428f45ff10cb6c728b1105638dee0587a5da7af78442f87df144a989601b753b31a4f7a1994ee50d326f3417f0494d0c9c6

Download Submit
/data/data/com.witgo.etc/files/.jiagu.lock
Filesize
27B

MD5
9d7c4a19e31dcc035d7ee8fd040ca406

SHA1
448c1e4ae5f8647e92bfb52205fee7bf865a8ffa

SHA256
4cd0c8040b0a4597d78ffc17f642972b7a6e2be97762b274b5957b3318f34a3b

SHA512
2575b5ffacfd6e632e108b938a14348f575d625708bbc7725f912addf80c4a9f470a09f4cb5194ee85eeb93284d41a9844dbfc50c0d83fab04af4526407e9961

Download Submit
/data/user/0/com.witgo.etc/.jiagu/classes.dex
Filesize
7.7MB

MD5
7107289ff51865f99d5307c364e0827e

SHA1
d132c3ecb21e078cf7da16dacc9df32d7b3e8a9e

SHA256
8fd176110139ee0bc53068f5ab3d992ebf85f46ade4523033af600cbb89876a4

SHA512
3b03a3d22bd03b77db1f6930d95cf22325f25324f0f0307b997600647d44d2c99b12c14b12a9f4a1089cb80c1b5000a68a50a65eb480641b29067e4027b2f83b

Download Submit
/data/user/0/com.witgo.etc/.jiagu/classes.dex!classes2.dex
Filesize
7.5MB

MD5
8eb366b7864e225c5cbeac195e65d391

SHA1
a9a2f62d3dfa1b2ab9305b26cbe2f5f184b2d8fb

SHA256
08283384800dc26574886b0737dc7736bc4e8818182832090bff6556366baaf0

SHA512
9be83db779f5c9ef8326553623ddb0331568e06ce304c06193728f79e70f310724892b8c3d24d61f9436802012c9bc3c5b88d9971aea6988812cd822bfafe7ae

Download Submit
/data/user/0/com.witgo.etc/.jiagu/classes.dex!classes3.dex
Filesize
176KB

MD5
106a02ed60dff35f2dac8c1bac4af592

SHA1
bc8c18ca3d40a3522a6e87741a57eb13e554fd82

SHA256
b1cffb3f8de897db2b355d7c28ac44676d24ef5051baed17cbb14ec411753aa8

SHA512
14a3ebde72b6fc11ff7a2645fb1f132d83b6c848a89bb2ca40ac899092b7f21214a3520d4c6f31f48ae0e71a4b088ea11dbc044f0ff85da22c2f1ea75d831d21

Download Submit
/data/user/0/com.witgo.etc/.jiagu/libjiagu.so
Filesize
475KB

MD5
5aea02f4e4c77fbf2e7a27f7ca9cc06b

SHA1
522db1748608e9173547b29b7aa82ddc3542c534

SHA256
5a1c513b347e2a929769e2be67552c1d591704f08f7b5590282b66cc2c7d7bd2

SHA512
5c979a11f5e896829db906f533756efc1cf3c5a7e35ecc9e376a0aae818f2dada013441649feac2e188bd51affbbf35156e32fdc6552e185bddbc547f3850316

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db
Filesize
20KB

MD5
75694e403dbc728c85b85d55d972d357

SHA1
346ce6fb424f486cc32f7f46649649470cd57225

SHA256
ad9862b2cfa8b250817df299b073d617bba35aa05292f7f0c6cadcefd47cfaf9

SHA512
591d814f3bdba7180588ec333b554f946a977374df798bf69a352b4f1f0b43a412b5998622a059cfb3ad94eefb56d6ae62c6fe7dfefcb9ec5d47b98971bac6ad

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db
Filesize
20KB

MD5
263eb30ce48782469241139187f3db92

SHA1
70532238e5befef99aa6f151f9dbbcbb38b9594c

SHA256
145ab5b9d067ee5b7c01cde70558beb8c01cc07f94349f092267d2f5f8ed1444

SHA512
b039b17a55781f97e3af75918144c7644daab9785c5d0507a9d478de1423d651d976b48636bbc783dfe5d6c803951ed18d4c1833c70c9a1133ca4b9282123ae1

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db
Filesize
20KB

MD5
f0c768e96898c319b5afcad176e448a8

SHA1
b631cb1aff2e5f0abb722015dcd37e678078c98f

SHA256
503cba15b4d13d1d2ed70c41c4089bfb77a062543331b072db1a4624c2114fa8

SHA512
72dd0998f2a0c45f8c61be403670e7e9841c4b93674de0ac3f03a2ae948bf1274035a9e49075fdb07a3bc0da338b82c72b640c5bac747558eba0ed33e2f3c2b3

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db
Filesize
20KB

MD5
30217f745c63b36d21e1d43127a9a59e

SHA1
9a6ff9d7e1a517d2e75a97c8adcdd8e61298ed69

SHA256
91c19f34446238b761a82a52f8871a347c4033d9c56756bd69b824647e053959

SHA512
9a798868fed952f625cda3a85d52e357ba3329a2ddb862008d71cdf16ae3e730cb57ec021e63ab955226f904958c5c87f729c5ce660fc1c75ff0e18137a57a04

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db
Filesize
20KB

MD5
b4c96747b6d98ad569bdcf2c94019aa5

SHA1
f36aa779861622bac478314f663548ff45481fe3

SHA256
13ddde5bf64891eaf719fc85ba13670bd54bcee3a9b5bf3e114db1873135b7b1

SHA512
e94270775675ecd858bee6710154b4bb5eb2399cc39ff2e12013a4adcf8e5521649a3450e538a5801186e98e482a27798ed1bb6e08c6f97ab6280fa7952ccadb

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
512B

MD5
78437b6686b77904d5c4d7d62f95dab6

SHA1
a3e80abece8e6e8d8fccd0ee64adc5af9a4fa7a8

SHA256
81e94be9a8941b0a74822adb489f921e7d881411a0931ec00a24ff4902949b3c

SHA512
4620821401cfa5beebdfc47609a2d711de685580a50d48a1c11f650602ed572cc6e5829d8abe3d92ceb89a880435c033decd510a6f608cf489c50c1791b33d98

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
8KB

MD5
afd7d9a9c7904728cfff78a0cf7aaceb

SHA1
02402b46e27eb8446289894e459328d1e888aa04

SHA256
5330322679eb9c59ad466738ee94bf42066943223dfc79ac887cb7c16c9423bc

SHA512
508e6c543c2b068db0e2968eefab4de7c28e9562395934da5b4aab88e9628d2003ea5bd1112ca1a8c8e8d7caf055af7eb4dc6491f967d87b2e3a5efa6166cbc7

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
8KB

MD5
b1a10640ea0a3d277d30bcb10039c49b

SHA1
7c2d4d5d4db49dcc9cc2d7e2070a49e04d26b8a0

SHA256
c06ccecee4885acdea3adc4df1ec267289aaa2ad666f98c30c2aa7bacf7d1f96

SHA512
a9791a1b06b2ab4eb0cebf0405dadf8875206954ebdc3d47c673311d8c6a9a31919054fe1dd9c7fd698679ef81567ace4ba203c684d0ffe694d62cc1443ccc31

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
12KB

MD5
080b4ccc6bd081742dbb686775d93859

SHA1
3f92c3079004e6457d1577043f3005ae7cc00468

SHA256
3c567aa11d8209c45a1009f431609621bfa90876ac5624c7ac840083f7b8b1b5

SHA512
99ced785d8f1169bbbac4c3cd4284084b27ead9b66f1d41227c2f3bb2af925c46223af0b47a2b041ab62a362bb4dc3e7382946099b220d6e14ab99f4a6d67d38

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
12KB

MD5
039015daff3a2cfdbe817251e4e7188d

SHA1
8a7b06aa9a001df111bb0ea669b90c3d2a081eae

SHA256
fad625a5b07bdc308fedba22297ae9fdb2bc56df51ab646edb4b044884b8a615

SHA512
945d1e4330ace10fc5748891cf65d88bb19a5a3935c3ee1da371b02263c0426127a3de56e313166113f8c15e6f99f160e30c7ec4bc598c82a142aeb3678cbc98

Download Submit
/data/user/0/com.witgo.etc/databases/ut.db-journal
Filesize
12KB

MD5
30f7aef375239d065467019e3e48be1e

SHA1
901d840df60b0c9647acbdb7f00c7f94127897f7

SHA256
67824ef93615b0caab134e12856774b38e5216da8c26ea494f52d4189d2fe6f5

SHA512
c51ea4a67990f0ac007c1074268a6c415e7c59d19c80fde30fa67fb4fee397f28e38d6c94a780e4812b778552bd46dcf969618aef8cc7c84a8dcc6d281288fe2

Download Submit
/data/user/0/com.witgo.etc/files/com_alibaba_aliyun_crash_defend_sdk_info
Filesize
222B

MD5
89f8026df0cc2879b62141ee83b45c20

SHA1
51863e2845d7fe465893aedba6a003e194bd0a35

SHA256
c138015ca8765d260512bc4fd03f1c7c114ae183fe73a706dd215c542b6bc1d7

SHA512
09a53fb5d5509a3a67380977abc6e20a0970a0dc387f6ecf4646e9df837124838dd552a54cef2e016fc05ebb1e3510d229038b17f5b48a632356e2b12d538e36

Download Submit
/data/user/0/com.witgo.etc/files/com_alibaba_aliyun_crash_defend_sdk_info
Filesize
222B

MD5
df21b227deba040cf0b040d0e65e4440

SHA1
a83676d8341a2ecbf72a0081329e0cb17776c1ce

SHA256
5b01d57011d37b1696b648854a857864d6458647e7f80c30ac580deaf6128007

SHA512
9703d6f599af75e19ac4542e4ade16b8fabb637477cdbd671dfda039364e649e41eba967ee5aef0c2a0055e70e5281fd9dab6f164c124b9a96ebda0f27b89a40

Download Submit
/data/user/0/com.witgo.etc/files/libcuid.so
Filesize
109B

MD5
ef0bc76d91699df466780ce51dcdbd6a

SHA1
3fbea19f53907b9e5129a88b5b9094969b78462f

SHA256
e6bdc84d6c5576226d5c7133eabf520fd8ed2c05400f32feb1944bdb0bf27f33

SHA512
bab3bb10134418f48d62834bf3255b694ec4f511e4282d386d4cdf705d1a48f13293b65d9be228df0ef46bb62c80ea704171b55a52dbcb78e7b807dd74aa5815

Download Submit
/data/user/0/com.witgo.etc/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzE2Mzg1NTE1NDIw
Filesize
1KB

MD5
dde14342ec1a825bf4a557088eea5b4c

SHA1
13bc846e9e554fe978631e3c1deb85d36a791f39

SHA256
a6fda01f0252c6a554d417fe787f41a7af198c950f46f2975c6962590fd0a3d4

SHA512
358fe7f33a6bfd7415d62173eadb09136e46a04d9040d6548d53e1208437caf6c0184ff46b4cec42d36cbc014186196d9daba5781472ce22cb2341fa5a984c9a

Download Submit
/data/user/0/com.witgo.etc/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzE2Mzg1NTQ1NjY4
Filesize
1KB

MD5
2f5c3f092edfd52e627f6753c3483fb4

SHA1
53c24b05b5133f7d4476fda1d99bbed425119a28

SHA256
c78fe0d9bf2518455225adb4d411c7fafc5b8c617feaca715ee345af893ac7fa

SHA512
47b4964dcce7c062c77de0564f46a1f6e3e62694f823814549534e7505be8b2c861a97fa444e41ccc694317f53d82d7ab9c36d9c8db00b6963c7f644aaf9a054

Download Submit
/data/user/0/com.witgo.etc/files/umeng_it.cache
Filesize
433B

MD5
dc4b53d112197f9d3714bdcdf013ba67

SHA1
2e500ac00b0952b6d30bf73f0c07d32f9b95f2e0

SHA256
ad8b85433e3942f1d93f35780e065ee7794a96d0f9a52f4c899e5f2ce60214a2

SHA512
64e801f83fba8a00c0476d60110c050a6d338262235831700fb5236d7448517ecd030be8f31d9c0a5ca4f9dccdff40caa4e3c3750a12744863045abffbaeb957

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
a3ce06b7bb5758a74f48e12a49ea771a

SHA1
6602a95781406cea9463889ae2a02cd65f15865e

SHA256
d046815ce32d8f0c2dac17fa08f3dde6030117aafd65b2cb069d558af05723cd

SHA512
0ebeba2fd1d94fa1a824022b20a8dda3d5168adade98e7e32508f88a1ce095b47f944493a725ad756f7ecd438e295ea5e1dca8fe11d9b9892e2416dd88dfb1c2

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
dbc5ead832c2e1db763b6b25f445ca9e

SHA1
112816b98574c00e2af05619d256b2d0f8f71178

SHA256
d2a1c766b9e8db657445b9aa911f526ffab7e31dde3b8f34d9da25d62fe26260

SHA512
0db5c6db0b938525521de985079486a1404895a6c5f298a906569c7cf68e1bcee773c3cef3bf16fdacdc84e919286814a03a96b4255031b1b6832f4115cf373e

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
9bf40d5a36235d5b5398ab2da3545706

SHA1
097521916c37781ad2930c53ffbe112f9da825c2

SHA256
5e0f5fd8f0f1c7a85335b6bb24ca63920f7ff09a17d77e062e3bc67f82a82fbe

SHA512
cce5f29d40909331999e1a52e1b2b13eff59b5e6c6fe0e48011ab51fc196208ef3f1b017a87ad76b75615c8b05af33788698098144ceb7720564599d76bb7c60

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
e258e523e4d560be44d19f602cab3fb0

SHA1
8782edb709fb4b5fcc3b5ba4dee86e07eaaebc89

SHA256
4343402357a4bbf8fc7971614a83c326ff61a12eb8696cfe8b149bbc88b3e1a7

SHA512
2f3b23506fe1b1431208eff074473ee49f6a9f2f3f24fa73a837972ed149638615ba3ffd908cd4b143162cf1e943fd2ee5228027c7516a855d74efb1cb3f5af7

Download Submit