c6e7c7b2ba9df216fdf68e5e2fde5e4a391f5fface0f6a00801293a83b62dc56

Analysis

max time kernel
133s
max time network
134s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
04/06/2024, 02:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sample.html
Size

213KB
MD5

1a80dfd36a20ce5ef28edf2b81beac68
SHA1

7bacd67b6803f6b2c3419b243cf0ef4d0fc5268d
SHA256

001a2df2e7414347c208e9a6ec394c473ac18106753a44391b805db83c59e847
SHA512

8022ab772fbdd1a9e550b283cfa43488f05179e01ccce344035c06a14bb4d3b772b338519967a8a814877f62269818ad778706ba61578bc56f04b54884b5de32
SSDEEP

3072:Spgz2MjLUN5lyfkMY+BES09JXAnyrZalI+YQ:SpiYQsMYod+X3oI+YQ

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 35 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\InitHits = "100"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Enable = "1"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Factor = "20"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\International\CpMRU\Size = "10"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{15E141F1-221E-11EF-AD38-76E827BE66E5} = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "423631675"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-481678230-3773327859-3495911762-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
1968	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
1968	iexplore.exe
1968	iexplore.exe
2140	IEXPLORE.EXE
2140	IEXPLORE.EXE
2140	IEXPLORE.EXE
2140	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 1968 wrote to memory of 2140	1968	iexplore.exe	28
PID 1968 wrote to memory of 2140	1968	iexplore.exe	28
PID 1968 wrote to memory of 2140	1968	iexplore.exe	28
PID 1968 wrote to memory of 2140	1968	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\sample.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:1968
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1968 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2140

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
750cd3ef0350abe99557215be52fdd05

SHA1
af2dfe0569c70d996b5eef0633370a7b07fab663

SHA256
7a715115769b07afeb901e8f5df2537ef716dcfc95539aba4ff29381e0fbbdc0

SHA512
fc25f674808212d61d82da9247ed10cc99c8eeb7b2de3c8d7ae8a632378297742dde568845ee03aa8d27675100b4634edec4f58aa9a32a1def2eb4727dc3894f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
984469121f3b8821d3b6625a8780a6a9

SHA1
46ccccbb9aa32bdb9245d2f05e72cd7fc17ae1cc

SHA256
dc3d1583f3ceedd94962fad2ff79fac18ccef235d1c4db2671f8006c2d0f1536

SHA512
ee48188a8c9aba43f1e4a9e11a37ad479b98178a5dec4f281fc60da77fad4848e171e2831fbdfdb31f585e4934fdab7b030d3a95374bfcaae329fbe9ae0696d0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
bde5874d8323d371375a8620b24341ef

SHA1
e358c2088c99210a43dc9b39e302ec3b2d565e00

SHA256
ecabf04990660cc4b1c3410caf636730ac4c71d16a965cf29bcc3b5407185f4a

SHA512
ace78a62ebc50b9066f17cd4af7216d3b931b14962382593af30773db9b322633c4267ee89278deceb1b6f6b73016f93c6ba3964164c45702da7aefc0f0272a2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f32c48ae686c5863faf01965432c0909

SHA1
933fde899429a0307282f71bf20f32a4bbb2eb7a

SHA256
91418ad7dcb8df9331c74795ed6e0f43d9d48d4e877287c658f588f25b8fe72b

SHA512
86e9e9783e5ab0014a5f43e9095143a7abf4a0eb3a735628f87a9dd3b889fa5cb928b221471fd4b64f513b1a8ba3197b659284947ecc0b19da49e2fbb2c8cf6b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
cecad4b818ab0e7350a6bb852f552767

SHA1
b7edbe4d0f7cc03278c6e6ccb0796304616d4939

SHA256
8e14d20a830ac0c4c2666fe28b897e4786f42f884e9294bfdc0f2d335392b0a5

SHA512
6063c1392832377d2f37d23c0d82993efcbd25c9cbf82dbb1083424d5e68076287f138ba678cb28b430ebd707745b951b2407b0ccf4f669649f1bc9eb1722e81

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
e23be575113cd2b79115c3cec20e0789

SHA1
8763e8b0d809063ca34dd58f88cd7e75d64749bd

SHA256
da3740ff985bf572bfe9223e35d3ee4b217c1ac7794fa358cb8e588e6fb2428f

SHA512
b31eb420284a09047654c9b22808541a152123cf769ad049d598cc1595842e7d7406c4f489c1e007e43da5c76826bcc70e9c888cc62a7580ff131e7708c0bb1c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
eabac8aa7b642a527d53b115e88590e3

SHA1
eafb6e8173a5580164b231f074d0966b14eabf13

SHA256
6c859c7b46cb6fe297d5c8e20de15ec9edaa23a7309cb04144368789ccbff625

SHA512
5c491955b1e5d096ac0466ea2c7e85ab373f8331e9e8ac11c4bbf2f03ad85d9800a199d1a3ade5a91db424072a91d4fa51538677e8457285c91b0a143e598a55

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f664f9eb98e594c1d5a769d32d83989d

SHA1
264b36fb81f138e9787a6a1e2895a8bd5968dd73

SHA256
53f75944ec5d8d3405b0e2bf9c23eefb8531d95467dad5c3556a1af7733cd1ac

SHA512
b74069d8efc6006f5eaf93fc440b61e35445c8c371346b365468858d223eebb83d1ac8f3af56c4e7c31b6fc77508b528458289ce331b03d5d317b2d08e09164e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ac6d00449dd8ebeca53452ddfd40c628

SHA1
8a2cf5ae76975d47bdaa69408576184622d9cc64

SHA256
52a392ea1f084da5d38ba6b6079b52f7c02d083b8dfc0ca6bc9af92609b4e404

SHA512
f8be9c65b0fbf5ec6ffb5dea36f717754ee9b959340e756e872358caeb3f886e5c9841738df56af5ea0c592fd708768434ea960883653640cc2af46fb6a42a60

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
26c3cc82229afce6ecf7ac6bd8631d0d

SHA1
50f23c281cc19a43c3737a49f753ef45e6866ddb

SHA256
240b69ebb82670ab79006885f425b04c513e69b6b93084bbe31df4341759d0db

SHA512
2552ad959e52f91a1f773e5219e90515173e90f9131fc3ef4ca00be7ee9d0c454a4798715d0c2fded4f72732922bbfa742837f375676ea4b7e849d0bd17c1370

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
364b7ebfac0cd9c7835e91c197158e19

SHA1
91dbc9a5b0ffc963d4bb174febd224ae743b0972

SHA256
7becd34c04a26d58e625aa1ef693a1d505b611c803055b80b806029edc2c49d0

SHA512
1dee27514bd47933500d98fdddcd485e911dd439d3727fe131525f59265e4897f559ac7bf54b66e0f987cbe6a090e068b0a0b66a7ab0a6c99c7a9d39bf07f818

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
a1694ad6817a825f584cdc4a29c5a29e

SHA1
02443ef5a5fcd5a9605488456be6edfa54ff5755

SHA256
d7b88ee304c6e5c4e19b84a93ab239d77c73b9afbda50ed51118e57226d27c7c

SHA512
2bf46d989964f4ce7552d79b46eb5157c21af2c629d2f61c591581a05e2eca5bce47c22fec334cab2ad6820b097a21f296701dc794e427612fa08aa2593645e0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b0adee96dab0b58d8f0b43009aa4e280

SHA1
8f8e46a225f108e6d38390c00230e44dfe0783d7

SHA256
94476b303140e55ffa0f24cf4e730b7dd32c895e04f750656619821b3355cc87

SHA512
90780cf41129a3641c80f9bf1fdad4a2c461a6bb0ff6341cbef2026ba8d4cc0344089e09e7f6a297765c6ee400ceefadfe9d0912a90304d3c9fc991536396365

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
215b48f4a980c2372764d3bb90cee734

SHA1
acfa06a2dd0d429e782dc32ca1ddb5015fc1bf27

SHA256
b3d91800d6a50a0159d9907ea0e343112f6de287aa1ee36e95c1e674e8a6abc4

SHA512
858b96a8c4e153e87decfa522748632c5ac86320ae571ae4a2fcbf6103869e4159e8a57ba9c83dd1cfcc2ba976ed005fbb124e5d4b0a3dec51e8d0ff6df8ee29

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
bca123b1dd0e913da7d1ea902b734601

SHA1
6b3edd31753e14a43043f2573151d4527de02379

SHA256
6b44436dd84c1a8acbcc53c8c8f394cd7af427aa9017f0981be2e29de4762370

SHA512
ad548cacd88d8fc99d05ad063d8b8312df8f2048a3326cad99dc1de5b8e3d3c2fa1c2759ace40b2053679ccaaaeef4a2240a4a0e049349e5132e3331b063133b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
15ab7df57b1537641829dc6cbcb4ddbe

SHA1
21479859b1cdb7a6e03c531e682a5b9ba526d433

SHA256
5ac04049c9a07316730a8a0ef16412a062dee380d807e7d9c999f0533c8fb928

SHA512
243097fe12dd0c5526eda1d170388c876cb983ad6ba3779985794a83f923dd6730a30a56fbf6f652e149494888fa48fc99858637c6fd0926c764decf9649258e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ffcb4fd66d169303d1d9432011f7b9ec

SHA1
d25c57b9ae1c6669a6da5c141b75d7d9170e9b8f

SHA256
7b2d6b929c37c49c532357dd744058b6c3a4d194e7ef09a675c73ff367eb2e53

SHA512
d0ef99a777916faa7cc2fa432e44ef717d5ce76a9c2b204f857397eedbfff5f90d7d48fbea9af849708d1090974747781a9e330eacc5c23c254008ed61cc5116

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
75d2461705161c83ac7148e4fed4cf0a

SHA1
82d1bb5d1e6db6b61f994e38cca2c477cf313e57

SHA256
9766cd28674c75f2a9397676a9832774303c6555499a63283d257e04bc6576bd

SHA512
491e8b1030ab978e3c2a5b295806c2690222cdd449a82704d25915e7f2b085b2354eaef905e2e9bce508395afd9bab9449742938a3c7248bafa4dc5da9b13be8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5762ce081f3a69381a6c694c8afd198a

SHA1
0ac38ed8f89a5e83e7165616403f9a8067127df4

SHA256
43d84e4fe9d2fd933852581a04275ae84e4ad39addd7e968a2ace73504e4ea24

SHA512
ed4bcdf233ff5b5816ca733172be1b9d2ed9846b3ce82de961d21c1f68540c977149bb025ab5142d090aa406f3ae3546e272a10e338228b291d7620bc7554516

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0226b534038cba12a31fa6f5aa7ddefa

SHA1
ea8d543074da60d263fb94611a1a1b76bfa5c21d

SHA256
7e7afa32756eafc5d1311731abd10b3777af7aadbc6fd7bb3c44bd41870b85c9

SHA512
df86e57755511a00883bf3162481a2e5265f99cc8ab31b9a3d8c1b04d62f6436b15397fa048e3144ee1fe9b71773a04e7f3774346008619eb4b88d20d69026e9

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab512.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar5A5.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit