ab4895c6f7e6e992f9b2e299fd4b72b176e3b40c4f9973067769ea2bb957d8e2

Analysis

max time kernel
147s
max time network
148s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
23-05-2024 13:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6b1c5251f3da4ada82ef1a24ed066045_JaffaCakes118.html
Size

142KB
MD5

6b1c5251f3da4ada82ef1a24ed066045
SHA1

b32c9d1f2eba8f7c6941ba162edc6e29751e9d90
SHA256

ab4895c6f7e6e992f9b2e299fd4b72b176e3b40c4f9973067769ea2bb957d8e2
SHA512

29012d26d8d58a7427124a6091f9e90c53e3b6056089e066d9b2b2199e3f1e3a121dc3e9273928fd5bc0e0dc45ad211aea0d2512d7efea2141cba1e021aaff2e
SSDEEP

1536:SW8ql5uq0cJx76vuyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3om:SiT0Mx7dyfkMY+BES09JXAnyrZalI+YQ

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 35 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422633304"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{9264CB71-1909-11EF-99B2-4A4123AE786E} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2432	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2432	iexplore.exe
2432	iexplore.exe
2156	IEXPLORE.EXE
2156	IEXPLORE.EXE
2156	IEXPLORE.EXE
2156	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2432 wrote to memory of 2156	2432	iexplore.exe	28
PID 2432 wrote to memory of 2156	2432	iexplore.exe	28
PID 2432 wrote to memory of 2156	2432	iexplore.exe	28
PID 2432 wrote to memory of 2156	2432	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\6b1c5251f3da4ada82ef1a24ed066045_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2432
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2432 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2156

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ebb26adbf3868eced0dab46996fd41c7

SHA1
367f7336017a9eb5ade849463f114303046ff8f8

SHA256
fdaaad4af66ff93d271f5604c96170a92d8a5a8bd2ec7c22b404c81ba69c0bf7

SHA512
f08f908186a267f33cf4112bae7740a1525549561791124a9a94dbefe5fb15d69af5d5654d58084aef67d3577b8d141c34cc7b117d46c0aa12084407b85875b2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
aa59e54c5fbea1cf49678f2e1bebaad5

SHA1
40e25c7b16b87319602ef73923004e99f83e7626

SHA256
22f7dd0616c373dfbcc40d40ca3893a8bcf919259345c938050db8bd9edc31e9

SHA512
b359153876327cd60906dccdf23d076ea6bd35013549ba2b1aa218289a0a62da35fd9ba73b41fe4e998d5da51d51f2a28957d851bcbced8479eaebae14fb1061

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7cd56a44516b0c60852c623f0196f990

SHA1
d3ebff5a67ae1e7702e49c0d89ac9b2cfb68ae43

SHA256
4bfb609906920d85378d00a70f426331a640ec4484de0af4ea4f98bbb883998e

SHA512
1f615d45a950a572eca183d30be9019aa6a54ca3125af6bce63f1cd66c9522ac06b9a63122fac9450089a70ca81d2ed88518942fff79ff0b99b8b9cad331335e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
f6e5dd5d4934ac55df06c6d165b038ba

SHA1
58462fe565c0cdf46a2c252e6bf49374cedfb14a

SHA256
6bb2456f5ec7b7d7c69c8df0d275fa11120f72a0d09facb0f804d20df729e80a

SHA512
9cc7dfceeceb859fd5e96045a284461820374411c430989614eb72cd84a71cde76f50661a0a0afda06935abc2351eaf9d6ba40ec08d70c64bfad72a2f9318400

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
298d234bf76bb2c74d8d7b0ff6fd478c

SHA1
e2cb8fa2d444d240700cb31c0f7a81ff064660ea

SHA256
b006b11bcea2b07e822c169dce3191d514aeec48a36ff76118105e9953c4320a

SHA512
4df624c3df61a5c3a06207e3eedd16e58b38b316212badeb0154f66879d148007d91b8166606026ff8a0b815f8d4e5fbd30dbcafc4c007bd9e6fc14eade66761

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
494c0fe892828ad186d07c53d9576bb1

SHA1
29630bc1c442e6ae8eba6860de6f0ec7a84240e0

SHA256
90d1102b7482309cb94893537c9b296130845711cab41f4df909486da078f20f

SHA512
6619945304c3b671e65c0c363cdbd1015451816eb840aa1892434c33d4bd94837fee1337bb71584d60e635d9c993fd0dcccaacde071a9c1b99b5ad0b4630e3b2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c4cfe34994660aee836b1567e2481e07

SHA1
4152da18588fd811ed0817a78b92f29feb674d5f

SHA256
57e72d6e423e1253f1e6f9adc550713946f7d36cee6ef96867f72351966bcbd0

SHA512
1563aa7f84c56c90bffb50f55d5c456f48386228b68d5622c58c72916b004ec0ff69805d1486132087ad6249863652000e737490a2685dd67ae4ddffb18cebaa

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c980827bc13badef3533ee4de8b62af8

SHA1
dd69d28c8dd27811b9ac6aefad3048e0a286c835

SHA256
de43b98b11b69f2fa63afb24bae94224d6f1e028d40654253eb8cf26e375ad88

SHA512
210ee2a46f91f77a26502e00c069ffb0518a5045affe366642c744b22dea940671dafdde4c9b78c3c49585980ebd1ac02c26d9c3c7e4610f61b48588f2363336

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
32c231280127da9a654de02fda59441e

SHA1
5550c156c6e524de9e55b4015eeaa6b45b8d2f8e

SHA256
217bf69a5ce5e25e60ba68bd1eadfdc788b67ca9eb59902b722596faa9e9b45d

SHA512
20b1da4a97f4c30a14f3c5946554ff578bcb365fece8ed80bbaccb7fc3fac9c0a650fc61acd18077e5fcc54417e7011060b05760d29eaa47cbc12315288ec325

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9485406a37970dbe7e8c75ca3aef804c

SHA1
194134671c3e79845460c4fc9f5858812b4b1766

SHA256
f1fe3fb770578c8f18362bcddb8fbe49f925bb3111110c01201de492eae0d66e

SHA512
fbf335a7ba01bb5b39fd7a46318f4e11f9d3ddd1d708abdff9043600825df9f21e0315ae228a1f7c12af105a6f30ba8172beb015d78fb533652de37ff1166a64

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
de953a650564cfb72f0f22fdcd423afd

SHA1
fca104c96b8bbe05f2aa892b7dfec415dac14e73

SHA256
5a1d481c88c193424121b6bface929189419e07dbc419a28014e8bb052f34635

SHA512
c99bd2064d016aa7178982dec101d13936ba175aa7506530dc0046f0be301196b96f80fa5e5d529f89e77013b257ffdb9dc7ed4b2faa520d04cd43f17dcb8126

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
2cb2b919c3ba7f77488529977b4d0145

SHA1
a1e4e55033a70437b316a85f0317a08f6836135f

SHA256
25c9fd8731a6f6943f52edb2238d442308ca53f7cf45baa04d0bb77c01b96b1c

SHA512
922879c9bfdd0a96c49b148ed866747bd1f0a42c5ab0f3eeff226e8b1c88e7eb08e23660596646f782d75e280a4fd7f06f47564cbc6b62102cebaf14f0100c31

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ee9b360f81c872ed7551935251a01ce1

SHA1
a8417a1f3268dd46ac9818d832c04fa83191db98

SHA256
665a6bc3d83a91ea7a5ac934288e5334240629257eecd4095885316cb2abf179

SHA512
7601bdb39e62865467e979d04acb99f0a20f23c7c87e69e415e90ab5ec90ed4000705887e2469c0e087c25db49593059ce1fa68fe14c8a90696f4f5777d6449e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
90c9fc7b9c03455796fb7c0cfe958a89

SHA1
6308efb6e376126b7090a85ff39858e2901e3778

SHA256
0f3a8624eadcb7ad3253858d599adaaf31dfc872d6259ca3323fd124166d0e0c

SHA512
7c71cd49e9a2a50d2c1c22223e09e42fac1a1911a8f882267a3811bd35dd9bd8b7c338d728e1e93a19adadb64f829c957200c6edf02476a151406e6e2bab7854

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7d9115c3007a736d5cefb2b19acbe3e5

SHA1
fe43a08358bacc965770cce0c6bda67b55d45efc

SHA256
413487cdc33d6a575814cca659e08d4c4b614176ce1d53d7ae169b6c7f808aa7

SHA512
fc31afcf436c71c57b7860056e211e42feea4db3858cffae107cc5a1cb7f9322f9806a20e1aa4fc83a33ad2db8e48196b5b069c46edd487838bf8eb30d08a626

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
75ce9e0d83d47e6a3e108192a880c5e8

SHA1
b9bf213ab3706d29aa624c8f1bf6c93305217e0e

SHA256
a6bdb44bc36bc0ee85caba9ebafded3c35006b81864f8cc64d193aca0b8a62e0

SHA512
287933b31cf80ce2fead8f25f22dd0d0da3460999f338cb4fa372f1005f028c3aaeb13d3dcc64b1bf264da1a6f4df2efd2af801ca1b2ca3005b5b391f234649b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cb630893ead20c1681f505321e866b85

SHA1
86d59331f6ad6422143d41b56c4d25c681051e5b

SHA256
9762c5329ba43996680477251f892ddced638246e65ffddd4ce05bd0829238cf

SHA512
55e030d361ba04616407502469e91d711437311c0c6077836e5650b7418936b7628ebbed6d7880ec23de4f74d7f1b648ee5826420578cb8fa9d73ec99ab152e0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
9c2390f4f7a58a7b1f31cbb4aba0f04d

SHA1
ce43206f1fb8afd270b7fe8e8c5233492ea1c3ec

SHA256
5bc9d9495b474911a0651ce0c4985040738c69738a8d7142889b746d289d3027

SHA512
7c460ba3b3f02436231cfc9f1bddbfb4d7428b894bfce84ca58d0e75bc44180b6fe3f8baa197eba4bf73717dea121aaf40b208f88e0bad1200abd0a650254dbc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
10a9c7dd8d0eb4b03ee630a83f4c75d8

SHA1
1b098270a13160540417a7ea9038917cc6cb9866

SHA256
de780e9107cc6ede297f53590964c6622d728cba5d1da69c571481fa8a809f45

SHA512
b4c487ae63b890ec3e01ab69e94649bc71ed616225cdc49a3c04a8932db1450f640965f8fbf0fe4a0726aeee666dcd91cd6d955d6fdcb90d83c991929388d598

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
51723513a194d9534e478e007511ca02

SHA1
1ff3084ece30e8ab13e6fc3d640d8d0834fec405

SHA256
8587e795200d03c539918e66b8e26f681abc51d38a93126836e731eecdb172bd

SHA512
6870c268f4c1b9b537c12b26d2a2c948b29010ed039242a421fd4045c65f26abc8d857d76dcfa0a2242c3d3e3554f8fcbfcb0d52616963b372fbf3d907340c6c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
eed342f9c237e9bb38ce70d29f0074ad

SHA1
87c58ea5030f8f5678e916c6d90e25dd27eacb71

SHA256
f935baf588f89c21ca28a440b2037d784147ad33e4abffd7b4b3440683fcd2c4

SHA512
16c6b05161223f9384dcb6cc803a0c076f90869c5214a9e8d49bf2d20b13d528f738de2b5af4d4a65d1069922ebd4d01242dee1763683a615ab377ffd6ba7517

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab1863.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar18B4.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit