Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
145s -
max time network
141s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system -
submitted
03/06/2024, 14:02
Static task
static1
Behavioral task
behavioral1
Sample
920c4ee004fb901aa1ffecd185417b7c_JaffaCakes118.html
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
920c4ee004fb901aa1ffecd185417b7c_JaffaCakes118.html
Resource
win10v2004-20240426-en
General
-
Target
920c4ee004fb901aa1ffecd185417b7c_JaffaCakes118.html
-
Size
37KB
-
MD5
920c4ee004fb901aa1ffecd185417b7c
-
SHA1
1f4eb3155204f4330508bd6e7c3b0b6a9a117256
-
SHA256
3d1463a0bc570273ab82cb36c47254dbaa098584024115b09f1d8fd76979f492
-
SHA512
89dfac823909819a1720ec5398d928c39b7eb849cf0daf1fc7ded9683d86392e3b875dcb445f2bc70685c54648c3aacb2731c98b03e3f54ae17504fe6099f1c6
-
SSDEEP
384:WjvHwduTvmBxnxVRLq1+c1XWV+PzCsBSGXNEu0:WjquTv2nxXLm9RWIVB/XNEB
Malware Config
Signatures
-
Enumerates system info in registry 2 TTPs 3 IoCs
description ioc Process Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName msedge.exe -
Suspicious behavior: EnumeratesProcesses 10 IoCs
pid Process 3736 msedge.exe 3736 msedge.exe 1140 msedge.exe 1140 msedge.exe 1132 identity_helper.exe 1132 identity_helper.exe 824 msedge.exe 824 msedge.exe 824 msedge.exe 824 msedge.exe -
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs
pid Process 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe -
Suspicious use of FindShellTrayWindow 25 IoCs
pid Process 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe -
Suspicious use of SendNotifyMessage 24 IoCs
pid Process 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe 1140 msedge.exe -
Suspicious use of WriteProcessMemory 64 IoCs
description pid Process procid_target PID 1140 wrote to memory of 4408 1140 msedge.exe 82 PID 1140 wrote to memory of 4408 1140 msedge.exe 82 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 4072 1140 msedge.exe 83 PID 1140 wrote to memory of 3736 1140 msedge.exe 84 PID 1140 wrote to memory of 3736 1140 msedge.exe 84 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85 PID 1140 wrote to memory of 2128 1140 msedge.exe 85
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\920c4ee004fb901aa1ffecd185417b7c_JaffaCakes118.html1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:1140 -
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffdadfc46f8,0x7ffdadfc4708,0x7ffdadfc47182⤵PID:4408
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2044 /prefetch:22⤵PID:4072
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2292 /prefetch:32⤵
- Suspicious behavior: EnumeratesProcesses
PID:3736
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2860 /prefetch:82⤵PID:2128
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3232 /prefetch:12⤵PID:1540
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3280 /prefetch:12⤵PID:2932
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4672 /prefetch:12⤵PID:180
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4664 /prefetch:12⤵PID:2368
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4616 /prefetch:12⤵PID:1188
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4692 /prefetch:12⤵PID:748
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5592 /prefetch:12⤵PID:5008
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5756 /prefetch:12⤵PID:5048
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6000 /prefetch:82⤵PID:3156
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6000 /prefetch:82⤵
- Suspicious behavior: EnumeratesProcesses
PID:1132
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2232 /prefetch:12⤵PID:4764
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:12⤵PID:2892
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2052,682710669934653425,11515995985815140218,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3088 /prefetch:22⤵
- Suspicious behavior: EnumeratesProcesses
PID:824
-
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:4720
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:1940
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:4796
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
152B
MD5c9c4c494f8fba32d95ba2125f00586a3
SHA18a600205528aef7953144f1cf6f7a5115e3611de
SHA256a0ca609205813c307df9122c0c5b0967c5472755700f615b0033129cf7d6b35b
SHA5129d30cea6cfc259e97b0305f8b5cd19774044fb78feedfcef2014b2947f2e6a101273bc4ad30db9cc1724e62eb441266d7df376e28ac58693f128b9cce2c7d20d
-
Filesize
152B
MD54dc6fc5e708279a3310fe55d9c44743d
SHA1a42e8bdf9d1c25ef3e223d59f6b1d16b095f46d2
SHA256a1c5f48659d4b3af960971b3a0f433a95fee5bfafe5680a34110c68b342377d8
SHA5125874b2310187f242b852fa6dcded244cc860abb2be4f6f5a6a1db8322e12e1fef8f825edc0aae75adbb7284a2cd64730650d0643b1e2bb7ead9350e50e1d8c13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
Filesize216B
MD5fdff7ed84cda899f233fa0d371638697
SHA146e3abe11d0a7e985fb9bf08d539a41c2ca6feef
SHA25652c0b5e4c22099ec44b25bf96c9ecf5ac8451d5a938641f3b6e4c8f575170c38
SHA512304fb48def289f1c87f6f22c6a03fa0cf1232db3575728b3032671868c60a99a5667851502da17318e9ebf732d1d6268bed6f764c203b73d6aaa5c6b31922e62
-
Filesize
2KB
MD50833164c016835c20eaea56853f3bb3e
SHA169a0c4bfde64f940e396d797fdcded5a20311008
SHA256eec7ecf3c39571d6667f19106b2b24e207b08c563c25954fbbc02336446dc36b
SHA512119284c2f5bc031ec2a7a3071caf7cc7a7ea15b358992d79a7f0d77246b1e982012aaaab1336dae851e76bd889ebf472dbd7b4bb7cd29307a61d58e7c0aff563
-
Filesize
2KB
MD5da3da8e313cbe3890796aa97d4167492
SHA15c6ea53e5a842dab7e48ac6326b56ef27bd31cc0
SHA256f99865d367d8d8aa0a2329a6887e496d9cfef1036e4e0e63f30b67744cf99769
SHA512556176bcacfb6156827d6893c6916b812182a045ebdad3cbe022ae613935986ca4b2330ee1e9ab204a53263efd8954db905f064cdcfd0ee7eaf451f872ee6205
-
Filesize
5KB
MD59f96fe5b7923dba795b14cc6e92a4b02
SHA12cd0fe6f3e7a2c85bdd9aff5873b8c621440d9d4
SHA2562ab6463ff40c44a64b1cc7182a8b3f593e64f398615f75bad88c59802e692f3e
SHA5129e38fe993998c1cde44ad66a407e7b1c9e476b1cea90f368bfd828dd6ba5ad2a71359fd588a016068cf3dcf6b0e75e21f07155198318d4ca69e9619810733794
-
Filesize
7KB
MD5525a4871d5f081135842823ae2bfe61d
SHA137829f4b5c7df8d21609ddf0eb719b3990df31e8
SHA256772ff5b007de708146ca1249f8ccf9bc4df4689361efb2b65cda45f616d24157
SHA5120de204f864e88b888b805de96eb3fed7a2402f591202a69c0ef413a61bacdfc98a1eb5693c888286c6e223cd8ecc9185451fa4e9dc45936ef07a2d2f0847c931
-
Filesize
16B
MD546295cac801e5d4857d09837238a6394
SHA144e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA2560f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA5128969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23
-
Filesize
16B
MD5206702161f94c5cd39fadd03f4014d98
SHA1bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA2561005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA5120af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145
-
Filesize
10KB
MD5484c63f874e77cf482fc253b943bf970
SHA1528490c269cc4a54f59232b633e7f2fe1178f160
SHA256cca5e64c03a3bf67ac920f05f9d41b542808942d716e6e53a46dbf469aafb8bf
SHA512ec639e20948ca2df3eb5c28160039a0e85e052f14bef6550034aaed49bc0f756df06c55515ec414970b1472a4805ddfede37cb5ce04d4d0d4ae1484c6a0efedb