Malware Analysis Report

2025-04-14 02:58

Sample ID 240613-c6x3bsvfqj
Target a391892974afa0633d15a94b5fe4b471_JaffaCakes118
SHA256 47074cdebc86213c21a8b72318e1cdd882f95ae8aa7c23c3bcb9739a32337015
Tags
score
1/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
1/10

SHA256

47074cdebc86213c21a8b72318e1cdd882f95ae8aa7c23c3bcb9739a32337015

Threat Level: No (potentially) malicious behavior was detected

The file a391892974afa0633d15a94b5fe4b471_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.

Malicious Activity Summary


Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-13 02:41

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-13 02:41

Reported

2024-06-13 02:44

Platform

win7-20240611-en

Max time kernel

147s

Max time network

148s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html

Signatures

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "331" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "12801" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "22453" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "19036" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10061" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "13590" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3908" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10257" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "331" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10175" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3824" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "325" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{8120B6F1-292E-11EF-9EC9-FEBBC6272832} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "6" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "0" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "233" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "325" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "3826" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "19036" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "3826" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "410" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "10257" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = 903476593bbdda01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000b2968c6cf60b74b94229c882944fb81000000000200000000001066000000010000200000007e4d70708dd50c9d87060a6959116a518a4027916199674489b29d1cce0874be000000000e80000000020000200000005eb24cdfcabde9ffbd06a2f0a0c5d7f548a55ff621bc5d4272f818f7cb50fd05900000001576fd69dcbd6b7c09b3518cf5dd3ea662e7594ebe3fd9e3f1babf92ba147d2c23f06c7f635a16151293a33ec933b7fb4226790e15d0e3042c47d486edb1a3a9c68a652c737add7cd81e6267e9f82db13101fa9e3661e0e33cacdb2b2ae82709d0bb0173fffd5fc12d5cc531423d245dd393a629303fd3bee902f87910816c012fcce225625fa9d717829f2cac5592b1400000009204faf8f66cef0716325007614d22667bce9e5a1d6fb4bfdd2b3e7b38b04cd6b39d61e9163da5db7d6a0cc57c27ff49c71f213e6cbeba88ba0f1bc78974c428 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "10061" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10257" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (data) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000000b2968c6cf60b74b94229c882944fb8100000000020000000000106600000001000020000000ae7bd7cd1dcf789d9c58852915b66e0e3b5fee67fe3d85ee67e995e5c81e9649000000000e8000000002000020000000141f77f6dabc038bc4216083124c314fa0ad19f9d2108016d42577557d41a8b52000000098802b940d32e5fc4a125c3be09b864ba5819a9b5cb091a69ac3e274f01f670940000000e0f69a2245d68aebaf3e1cd596a3c5414132347bd2ff649723100e98aa94faa3b4651a5add641a9ca54136a7f35b1c74375b3c14bc272d27d365107e6f3e25c8 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "233" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "3824" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "325" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "3908" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "22453" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\youtube.com\Total = "121" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "492" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.youtube.com\ = "13590" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "115" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "10175" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-2812790648-3157963462-487717889-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "12883" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:1452 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 www.konthaiusa.com udp
GB 216.58.204.74:80 fonts.googleapis.com tcp
GB 216.58.204.74:80 fonts.googleapis.com tcp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 142.250.187.238:80 www.youtube.com tcp
GB 142.250.187.238:80 www.youtube.com tcp
GB 142.250.187.238:80 www.youtube.com tcp
GB 142.250.187.238:80 www.youtube.com tcp
GB 142.250.187.238:80 www.youtube.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 163.70.151.35:80 www.facebook.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 216.58.213.14:80 www.google-analytics.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
GB 163.70.151.21:443 scontent.xx.fbcdn.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 142.250.200.42:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 172.217.169.22:443 i.ytimg.com tcp
GB 172.217.169.22:443 i.ytimg.com tcp
GB 142.250.200.42:443 jnn-pa.googleapis.com tcp
GB 142.250.200.42:443 jnn-pa.googleapis.com tcp
GB 142.250.200.42:443 jnn-pa.googleapis.com tcp
GB 142.250.200.42:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.180.1:443 yt3.ggpht.com tcp
US 8.8.8.8:53 fe0.google.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp
GB 142.250.187.194:443 googleads.g.doubleclick.net tcp

Files

C:\Users\Admin\AppData\Local\Temp\Cab2030.tmp

MD5 2d3dcf90f6c99f47e7593ea250c9e749
SHA1 51be82be4a272669983313565b4940d4b1385237
SHA256 8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4
SHA512 9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 6432b11941a982c236f3c374ec7b4290
SHA1 22a73acedbe1a5b73d8fabf3ac478230afb7da8c
SHA256 12cf7fcc74e2c4e1393024d89dd3e1859cf168c7f39644a85404016564a1d7b2
SHA512 1028ac95274219c888c0e8473ffa991eafe0f9abcb96554ec44e7a212378c22ba45bd7265eaca7be3cee87011efbc3a1cf8e36183492dbcfacde5f0fe5a812e6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 d3049f1a4b143f13261e38abab901109
SHA1 1810917619ef7b98f40697c12f35a75575665f8f
SHA256 69df6863aa24aedecf107a7e2e0353d592c52a5905cc2833d824c2298733e9d6
SHA512 6af844057e960d6f4165f297891b676492281fc4abdd7346a220b1972124fabe2a9e0f7b3825c9f67c1ed885262cf6fb994c4dcd607c1981005291a240b6e958

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 b4c2ac1eaf72e9f870f51e941d1e6bb9
SHA1 34f98aa0a7bf79bf861867feb088ea5e3b2a5b7f
SHA256 249301367eabd7172098c90495c12aee5036d4a81568d312f2e0f6cea87d9c4a
SHA512 794c6f06198b8fcfd3a686b0acd908f4dad49e1c6229a06b5d032497b4ceb352efa4850ce2c917d58851887a0bc0875bccd40977c7724f20d072fee3415fdc27

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

MD5 ac89a852c2aaa3d389b2d2dd312ad367
SHA1 8f421dd6493c61dbda6b839e2debb7b50a20c930
SHA256 0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45
SHA512 c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

C:\Users\Admin\AppData\Local\Temp\Tar20A4.tmp

MD5 7186ad693b8ad9444401bd9bcd2217c2
SHA1 5c28ca10a650f6026b0df4737078fa4197f3bac1
SHA256 9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed
SHA512 135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E

MD5 a72eacae1098a27d1662901d3788d8ca
SHA1 0beac6090a21b14e7bac7d49990f7a8c628a2a72
SHA256 de98daae474146a4a09a2dc77c8f1ce063a16e3a79e69d800d4d03d3a5c7dde9
SHA512 a58317ebee6284ecf0c12adb9e66f481adf7a06ed18e40ccf4b36a62b5cd5eed846d2cad75b05a6b34b0149ad80e3c27fa04816270f3d3f75514e21dfef766a7

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A16C6C16D94F76E0808C087DFC657D99_89FBEB9EEBFF8AABF1EBFA20B87AFE7E

MD5 60c593c796591612a55accb66d6448da
SHA1 816aeadcd13ae6c0829aee7c247b5dde70c7af95
SHA256 0a7ef74ec7fbf8eeee4907e58fe82af1928e84c8585a1684c3257db3ba58f40d
SHA512 fc0b1b8d6d428ecdeb395894b6eda967b75f1835a81fa436abb6fe8b3a0d89b5bbd45292bad2eb5531155b4da048ce579b57b59c94338bce58501d60c8f4b176

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\www-player[2].css

MD5 d32700adacd5d982244c69736b87bedf
SHA1 813dfe8ce4ee3608ed3580113e3b82730ff03c85
SHA256 2c7426a5c6bf00c328c96fb01c89c3e23ba7791e87455cab5aa3b546942f1fc8
SHA512 bbe35704822e0a82de2da2890da6c06138514070fe93978823601079a9371386915431f98e613adaa9566112d728f5f0274b3864e8a0c7da538833383ea5d342

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\www-embed-player[1].js

MD5 8940a491297381a0ce25360e21b39bb5
SHA1 43d7a4157e78777fc024415969c3a7bd550a4322
SHA256 afc766cb1c4a339c40d24ad926f05e8b4927eed7532b876291d0bd19adc9cf3e
SHA512 5772d7e7485db888676e69cbaf4c88af01872997338bc61e8e0344d5dba208c2909e167d54d8edcb782e17d1a2b4e9dba955baeb0ad0e43ba932b3bf25ae7dde

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1M46YZP1\base[1].js

MD5 cb463df0a090cdfabc77af2691141830
SHA1 e3dde6a1f5c4803e69839154013496a781137473
SHA256 e09e2e8a3cfbcc88eea12d0b17161e1f2c8c75f1bb21100829c09f9858db3f24
SHA512 099374f7b03a4635390b94525105884fa101d93a583eed0d92def7d2de3199d2bd57fc63d885e8e9af0863db40cf521d2fb770eb09400a4c6285f7c37ad88e8c

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FY3LN490\KFOlCnqEu92Fr1MmEU9fBBc-[1].woff

MD5 de8b7431b74642e830af4d4f4b513ec9
SHA1 f549f1fe8a0b86ef3fbdcb8d508440aff84c385c
SHA256 3bfe46bb1ca35b205306c5ec664e99e4a816f48a417b6b42e77a1f43f0bc4e7a
SHA512 57d3d4de3816307ed954b796c13bfa34af22a46a2fea310df90e966301350ae8adac62bcd2abf7d7768e6bdcbb3dfc5069378a728436173d07abfa483c1025ac

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FY3LN490\KFOmCnqEu92Fr1Mu4mxM[1].woff

MD5 bafb105baeb22d965c70fe52ba6b49d9
SHA1 934014cc9bbe5883542be756b3146c05844b254f
SHA256 1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
SHA512 85a91773b0283e3b2400c773527542228478cc1b9e8ad8ea62435d705e98702a40bedf26cb5b0900dd8fecc79f802b8c1839184e787d9416886dbc73dff22a64

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 c1ddea3ef6bbef3e7060a1a9ad89e4c5
SHA1 35e3224fcbd3e1af306f2b6a2c6bbea9b0867966
SHA256 b71e4d17274636b97179ba2d97c742735b6510eb54f22893d3a2daff2ceb28db
SHA512 6be8cec7c862afae5b37aa32dc5bb45912881a3276606da41bf808a4ef92c318b355e616bf45a257b995520d72b7c08752c0be445dceade5cf79f73480910fed

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 61f8187da35823b7c309246776f01dea
SHA1 b618b9c3cac0588eb6be3906ebba26c5e8d18d9c
SHA256 84cf7e9b42a9537c52a3d1797528f1ba8874942ea24c63c5eb5d671f6b935828
SHA512 fe584a13618e5fa726b494c921f9494ae2ccac61d2e96685961e03cb48cb6ba7f6f74f7d16a402c7afb65b20bd1d4d868555cb634fcf5344d3f8f1338155ee23

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 dc72b072247aee59db9493329a0b0339
SHA1 7c132018f65515811fe234cd565507a217c3e33e
SHA256 8118ab82b1930cb58070777833cb91b538ed7f2f220883c39fea09fef4cde7b2
SHA512 cb63c88f9093f2a1eedd50f0b0b587499d80198f0cb7494372644ec3acf60ff4cac45a61a5fd526dc1e7b77f4b1dbcb72a861aa6c60df8e1237f2152dd2ed975

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 9f73ec28f23c40c2ec6ae674001a7015
SHA1 a4ffec3a2406448d941f4b5576047c2eefdc8841
SHA256 f6253cd546a3e485afbfc2f08bb57525a550441d6c565a6268ac9de65b41d70e
SHA512 c1764799387f5b64b5ace1f8259e5f4ce31e006d8e86fe5ccd9d782b4bae28bffb1d941139d9750ccccbc364cd63c050d4b08a0e2598c89158867d780c75bee4

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 2dc243246164b20553e982dd140fe74f
SHA1 a3b4f9dcbed0d04c142fd4bcb2486bcbb048b0fc
SHA256 d8fcf09a9b97b7fce43f4f78fb463817dc61e941fc7c7ffdf6483503c1c254ac
SHA512 a5ef14619d949b2ad2bac8b068eae90801d090663f76a6b4f5ea630449e3b656c846a36e5236ffe71c7e57fe18036d1aed67fbeea0746d16026f66c9b27aed4f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 6a6b000c63a8b7ef82945f6ec92a2ac0
SHA1 5c4bf883c2084ed356d0ec4b767061f638b08f5f
SHA256 88e4fc8c392e939784ded4af228cd76e8468946231f274839ba423fa9b035812
SHA512 d9c945dd11c1ff52379e4ecdbfb4881c259ae22ccf9014139182fd1de4067aa16783a94788f73195fc859ed8b6de32e6ada27b19807d29752d745c68acb0980c

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\ad_status[1].js

MD5 1fa71744db23d0f8df9cce6719defcb7
SHA1 e4be9b7136697942a036f97cf26ebaf703ad2067
SHA256 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
SHA512 17fa262901b608368eb4b70910da67e1f11b9cfb2c9dc81844f55bee1db3ec11f704d81ab20f2dda973378f9c0df56eaad8111f34b92e4161a4d194ba902f82f

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R54TGSS0\embed[1].js

MD5 14d69fc9da4a63c8ad5013b3d3781842
SHA1 e0272f8403d95fd27df22dff5fc014e2ab5d8a3d
SHA256 e2a5632fec9da56d272ccdea5ecfa7000dc70659673c52a11966802e37a2140e
SHA512 0f85c67ae8969570f6cfa4d265013da7d4820ea11349b11b886d480d7d78df5c6aa1e7484724d6b21421db18678d22bae6d478d3d0e35506673fd609805d1976

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 30495aa31362eee4141fb1c9c1777b07
SHA1 ae897dac063a6b836bb4f42656a905870ac1d0f3
SHA256 d495117704255794ef99ef343b64acf0f2b46a18b972fb3a985b9fbca7b049bd
SHA512 c23961abd30e835f766c2de8fe7bbbd9ce701eda38f9902f9ea5b8bd8037d0932cdbdc6edc4f058eac3303373d2827d8952633eb6bfe05318be3f296daa2f77f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 82814224535a7dfc8002c8bc7b177f23
SHA1 283f163c0467159cd486e31e41cba54d5ae6f586
SHA256 c8ae46cbbb8eb3b6d942a5ca4b8d18b4b2721a7bf3ba1aa2d5473e308853b1d5
SHA512 4daece78eb1c4cbc09a2fad784ce23bb13c4d76794e0bebf2c20f3e1bbc9c9b2b1826daef9567ece52cd52266d10c88d1e3163a473886e98932a04a03eeef0a1

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 aaefd1c11c238e1d54f2e7a45e59da68
SHA1 b7c04593e7abca66aa0459cae2639c8cb8344a91
SHA256 e4f3cd77946ad27979c940f28e17b4c25e3178a5c8ad0f901b09c1dcbb1d6e54
SHA512 c66d746fd669b01d2e365a6988ecd8becb834236122050ae0d10a0f0a715501654c807e9597ae5e04cc0b91a14f701c5dc17cedb53bc231dcc6871a25610ae8f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 93b8c75d6f5bdd3467a881cf19c93d7b
SHA1 32d5687182045398f001715bd47cc9f1efddeb58
SHA256 5075d94f4ae945d2610217891f0c2f8a512cb6cd7fa024ad1afb46e39cbad7d7
SHA512 6be972d0546434c02acba10a0f63e9ff6a135e0c92f03edc8c15ed6e9d2729655f6b4cd350e30ccf693d200af2e4804ac5116b7f18b0cdc9b420ed9cb17d3ca5

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 d9507ba96dd1b717b646c93ce5e3ae14
SHA1 7e92550637270d9205a888b3baffc68ebec7ec62
SHA256 968eb827c1ee25ba66d69098a1f0486d876762d5ea7a8c2c81afb37e5c2b8f1f
SHA512 250ca7318bccc2d17abdae2cfeb6de63ff1310097917f846b595c71e57b42e0bdaa87c394cee8916a32b7509111fbc1087d751f7f6c94ad0c4530f9084616e45

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 30f3a6891e28c41a18157cb424a37466
SHA1 666a15cc644c6a848298d95e2a825185a6d11f3a
SHA256 3a9d802c2873d670c6fcdee313e8dcfeb88c8670e73b163d13d6773f537a19a3
SHA512 5b0e89a7098c52fdaeafa35b5159ea810a1562038d10d43b0b134af2c753d42e8c077f02cbf4bcfbd562085d63d8b3873327ef0d634008a2a1de0e3dfb6feaa1

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 2d852c1d259f9a76bf5811b16c343ea5
SHA1 36a10832b895c5f13ec26285c09b33ee48b60c1d
SHA256 c3d0d5219fc538658166a73dcae9848861acbf37a2545862d3efb259c27cf5cb
SHA512 c071ade5d0b182fbd117fad3fe28d1884c61c145a2362545c3277e3afb1d10670fd6c25212435874f3634957f99c3c9e5a620af850c93692f6085fba93bbef12

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 db4003d57d016714b3104ab665351648
SHA1 87f2952d75f7c537d391d4fc52b1c28653f553a2
SHA256 205b6de8631f0d059663d061e9d8b91f43d4ab60683f5866f389abe7f274d129
SHA512 0fb129440e8215e297f07daf7414051904c8fc8621f960eda4e0444d90d8e2814cebc4baff54a359518e362c11d3437f8164850b26639d28dfc6bae1cccfd02f

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 8acea9c3c80f7726c9acaf70c11711e4
SHA1 072c8035e6a6d3cc91f76d6cc9d83d198008273a
SHA256 a1b1602cd4233dcc7d495e15154ea7a08d6cfb5e4c29dc3fb2b910c5d768dbf1
SHA512 072aa7d5e6b5fcc269c99b3a48e05dd19057a9ef52ede84333cee38826a7c60af3c76cb75cb207999f6d031a7dd983b1c44827cd46dc0b7da292039042c84fa0

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 dc2acce652960fdb329bb3432babd9fa
SHA1 c15fdd4bb2be311c126ada2ac7523ae631fe8df2
SHA256 f0e8b67b93731d867183906ed6437a8b4eac12c2a4cd390d9bac170f60d6b96d
SHA512 71a50d59a3159c3cf2c6d4044ca0dce988675d2ada2d0d5da0debda98c72a1f392257edaa49eab8c3b88649bfd681320140197610129fe4896bcf531639a2d6d

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 7640bcad2f009eaa48d178797a13bbc2
SHA1 c6c7991ca49fe6d543e4e334c49b28b751754224
SHA256 30e47f6a89badc619f5ba2100ed8c9877ba5de7058a30b52bf83ea3a383a872e
SHA512 f8994e781976b899cadb0647e31b0d17e535bb3e91df1538f04c73375d6b1b68000c68a26f80552387821dcba67a9598688f32d4c76b6c59222ae245a814b621

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 23700339405241684280644369055920
SHA1 ee290f988ac98d28cd5c4a8d9ec47d3eac92665f
SHA256 38cc9661c7471647741c67ca9eb6757478b90484bdfd0224b836c0f78824b007
SHA512 a57aa56c3642263eeac4887efcfe1be4ebcd2c0ed5549ee5617127475bd3558d4a8da9d9a375977ce11c1b1e238f8a38b8f403e2e7067a372654d0ad8e318164

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 76bb82b6fd5b6da06900b93266013427
SHA1 cdf8569966859bd1db8a85859549abff3c994e6f
SHA256 542478542dbc59671d9728448f3a64745245f6848c0116ad466f571ae3acaeb0
SHA512 3e9bebc54c39a38cf9401b90fdb8cd48415beb615666bafdc10101bb1111d746698e156a30276d4e52f219157fbf28e4aef31da0ae6fe091a0959108e65cd120

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 dae8103428fa5af7cab515dff29d0885
SHA1 e838f0de2a451042be67e06279a666baf3d67b2b
SHA256 c938605cbc758d418191157524a3e7efc4f122d17f7842ae932073ed792cb1ca
SHA512 fc279544ac50bf0eb07f6387e490b3080f517e2effeea3eb3592e8cbfdddce4ff284dd6040a15ee5bfd7547a3347a4b16e92f0b1cebebe85b36e1e342dbe4e6d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 22dd7a93d81fc3a582246455e6ea2804
SHA1 365d5144cde29853235358d17f181591a01c6dbd
SHA256 9b172dbe72b733582974739dabe3c9f8a47dba8f84ce4ff1ea3f31fa9e3ce52f
SHA512 4268966f8ca5e893d3f028d6a76977e85dc73b6a24132211b79b750dfe673b695a1fa350b4c353a8a4b7f62feff86eb4694c9f0e49aeb4c679f5232b87760220

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2db5b8ea22566367690acc28d117497b
SHA1 788af7551bf0892a4f085d41a25ba2ddcf3193f8
SHA256 b5600cac2c86fa14751132678d7154433cf35703dd9b6bf51690f13e7bd0fed1
SHA512 dc1013b79b64b0371b2c18393200a2ea81182f0ed66476b802b90601af5049e92906387039ceaf0a89517c121b9f36f08dbfa532d1fcdc7c77bca205e62a13a8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8b9443c450c5adc59a73812a3f2f1d52
SHA1 1b33c1db12d6da572e9bb63c73ad76f3f9e488fc
SHA256 11ff10b78f3d968adf6b0aed5a91e4930ab919c46bdfd5c9ff6f7ccd4b25b234
SHA512 dcabf99bb6d32c881adb75e16d1ce8e920573b6134f703dc1fd463e649020327942997405f8848b9d693d305a6cbab567ae7aa66e30714f95292f4657b143de2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 cc9733d12a0b8346e57e9befe26cab6a
SHA1 c01f674acbf0d3b791d2b1e9bedd05bea55f56df
SHA256 46ece73c77397156fc4fda067840b9c6cf3be7ce4f04a1e9bbce364e3ed4178d
SHA512 2751b88a993073470f7c2b868228889939561a1afc0c037d93a9101d7f0b2e2492abed41cf76ae35e14f18645b6c7ff115ee8226522aa5126cddf08ada8a65ce

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 12c3edcda9fca151b9575526cd50db01
SHA1 75f410889f658ec9214867821d293f856e02f547
SHA256 990751fee207a71f002832961fe3a358a1f3614867bf521cd763276a0cf366be
SHA512 7b1e9a72b8b5227e0a1abce85f2aeca6830f1b96f2d2a3abde712cb97a54ea3281f8a95031e23f455f18d5d2329db32d373871d8332c7ff12c23c340e7021bb6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c03386f20a5a30bfe8b6016afb0240db
SHA1 195a575bcf8b500abe44b26ee8d4b4d9687038a9
SHA256 b7e16a03b14cbcd048bf7528770dc4f3acdf4679a5b810e7e8cab49da0c4d151
SHA512 db9e9933e7bcdaa19fb126f18d53f121d838865099df1812da13a5af0694e3c483c261cc8a3343cc7573c851d85a33a6a900a4af1ee4dfa0b88900b7679835fe

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f2d70d00e96287b18e87bcc523716116
SHA1 519c8b5f2f9df92b4649b4f80dbb18c0997e5afd
SHA256 41b7c7b52b34d8a6ffea2c8cb48e246e15360e653ae9b213a7e4fcc3fe514789
SHA512 9c7065c70da7cc8286dfad89f36165d9c248bbadc2659767052bfd1c2369326f312f494b44c486db6e5681fe053aacd497e071aa7dbcabf3dccda0b6d1c6bc2d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 959e3425c39eae43ce3f08773afe7efc
SHA1 f83d2e7a2b79e29d6cf559fb2614447156c4f0eb
SHA256 616a504a2090dcb25db6c94b5f1b90f464641997f8134bff89c84fcf8fff492a
SHA512 e35c1382cd211b93e2d49214364e984989c472c638a2f37956d296d70584939141fdd5a2379ad0fc0e20638ae3680f66f5fd4647721a530f6f88c595fe991326

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0a69917662bc396d34c0c2262ed2556f
SHA1 7946c841767cdfb64ee763a746702ce7fb5a3bb0
SHA256 489bcc1153a07ac0de499430d9cc6f3b93b8ed609a106459152577eaaec68950
SHA512 dc521679ef01cc7ea5b984962a75aa0f97926f859a9d5df5bd49848e77f2c9c901553fe7d9f34d7da99089381286562fdafe651aa6a7c8ee19dc46be8bc52c91

C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZYK2XPIU\www.youtube[1].xml

MD5 3e8407a4a8e2e914c61980dad92c65dd
SHA1 1d026251106f0f2ef4f2308e7b9e5973a002124b
SHA256 a78b267cefc49a090dced93e780b83aa2957a630877086179e5b7abd2722be1d
SHA512 60ae55e3639a0f2edcdc179d7019250470c076abbcbc3ae98162e295a4ddc695c771b0366cf034dc82cfcb3f05b1c15864af9ef0633f7110af3ea029259534f1

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 52c3dd97a9d2368c766b3c95859f484c
SHA1 d7329867e9b9adf3e9a7f3d36c467f5cdc6202a7
SHA256 31cd0367b2d2ddac60374bfa4eee8064f9295062852ff3597fb5dec6aa854aa3
SHA512 cdcb393fcfe264f6db5232284dc9ad3bc28e8b36bd62b6b549ba6ba5c2930ced8514ba110295cd7a2dd2bca97d8045e39b12e1c71647a02d9ed951e8c4928a28

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c85c31615cc0013382007d08ebcde2ab
SHA1 6ffd19102c0dd2bd7d52fb1223d29bb7f4d6de4a
SHA256 5fb65ef7bf4a55cd1c0a55c0c07a2eb1628eaf5c19b147cca6f32201c77a11d5
SHA512 0a8dc83920b47d88e5c587ce12f36080651a02e87a3cf4fca2ca0cd3c28923691d498f4eb6dcf24fd21f0c75c9a84a3ed6bde07c1b36f7e1682a15196433703c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 57fb33035f87b0485f2008d497188482
SHA1 5e6d4bdcd9183ace03357f3ce1b3fa021055ef94
SHA256 a8b192576d562ecebff09d187abbe164f862ce6b092005da54a8796f303ff2b5
SHA512 e09922f30237f7681b03ccdefb5154ef33c8eac8a53213a0847ac23f4dfd90a5764a6ebb324deab282c84cd41ef886a525be29889fe4439c82f27d3fca559f0b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a6f74513addb27c0a5bbd964173a1f28
SHA1 62d7a256644176438ca6e0ddb3330c6f0d29b583
SHA256 635d7bf93ae83594a96e9337c6916db941f2d38c116a76aa685c052786f4f2df
SHA512 aa150450e4e8e405e555209a68929890086869c35800ad9eee5b1e70f8dad00bfca8f4b030f31728e7eed4c10b4ba71bd7fea0fa9f0694e10654631d27fbc697

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 95a4b57aa28c6a09ad63fe0475b06c06
SHA1 7bffead00dbf2723cc15ddb82f958a2ee329655d
SHA256 f0ba525941097005ca0e3b271a95a03e5294f5b23752b576a3d398e3328d694d
SHA512 50f378d0d87bf500ff73ce1c38f510bfb4a98df2bffd03c25aafe0f74fba5d2b56a8dd51e6f3121d54267e78b884a36464db9be37c1a75f552021e0b6d32e53c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 90726836f58bd6f56cbc2c9b3ec16de2
SHA1 413c7ee493bd3b3e410a444484216114c417d1ce
SHA256 3150d8b726d976c5d6a38e0cb42b1cbdb0cce73c4512a1d942ee22514aa0618e
SHA512 42e1889d8912c2e902fb7f056bc416dd731f6c1aa2c2b7f32b7914c49341ae1a89c1b6ff28612da840ade5b20dc97132d9207a6e77af62fa3f02c16c149e78df

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 e15f273fd8bf4a19ac169bebccccd291
SHA1 d6179caab459e0b826d2a15d83d9048678b5b787
SHA256 b7156c40107a61f5cd0895d2b20ef7142254a8acef46b2f0b80947ee132e592d
SHA512 486ba8baf166016f1950a439a561326934fbbc7c02cb08fd2a5af1cc7ef629accc87ad54052f7823a21079b3534338363cd24571c3af5af36ccea1aa1e6f6a81

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ab03cc1bdb55ad00eb664e37298b8956
SHA1 df1c6e21e2aff68adc61fb0a9882ae77f5ccfd5d
SHA256 9bae340fe57208741ccd3149297b0f2c10f2bbe5830a012b7447fff39d928698
SHA512 dbd5637649fa20b1e81558cc5f00314115bd6537df3f4e4e368f86cab6b53f03d79c84bc9e777e3969b1a3da290af14f5a0c9cfcb6b1443f5b14addcc2c73e6a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0e26fdd3548376f026c17d1e6774cfe1
SHA1 4b79b5652e0d0556d15e19db705b548f9a514616
SHA256 798cf96734db8be669a0a6049e3ace6560be3f2f10f0f82f04c986c592cf8ec4
SHA512 3a28502a06cbc133a44f9c03c08bf25b4935968216e204417dca67441bad3500e0258d7ae8e1bf349434434ae5992bde336cfb1fa128f03e1af6d85889bb74db

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 bef6611a9052445e180d7b2515469c0f
SHA1 69473c627a4aa7bd791d944b910d415412c366f6
SHA256 df6aad4d7309bfb2c6648fcab5a805f614e74f28a6b76a62d0552fa84a3e28ef
SHA512 1296427f8dc440f4eb4265866c86b60b98b7093240e8b672d2187a09bf0d265f89a510b431f215c8730d84e876444251f33b41e915714d1bf7075ce4b6d774d7

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-13 02:41

Reported

2024-06-13 02:44

Platform

win10v2004-20240226-en

Max time kernel

144s

Max time network

156s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\a391892974afa0633d15a94b5fe4b471_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --mojo-platform-channel-handle=3868 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=18 --mojo-platform-channel-handle=5364 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5596 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --mojo-platform-channel-handle=5436 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --mojo-platform-channel-handle=5284 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --mojo-platform-channel-handle=5888 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --mojo-platform-channel-handle=6044 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --mojo-platform-channel-handle=6172 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --no-appcompat-clear --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --mojo-platform-channel-handle=6312 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --no-appcompat-clear --mojo-platform-channel-handle=5448 --field-trial-handle=2180,i,12780723798465539942,12010519452607841069,262144 --variations-seed-version /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 76.234.34.23.in-addr.arpa udp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 13.107.6.158:443 business.bing.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
BE 23.55.97.181:443 www.microsoft.com tcp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
SE 184.31.15.40:443 bzib.nelreports.net tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
GB 142.250.187.202:80 fonts.googleapis.com tcp
GB 13.87.96.169:443 nav-edge.smartscreen.microsoft.com tcp
GB 13.87.96.169:443 nav-edge.smartscreen.microsoft.com tcp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 158.6.107.13.in-addr.arpa udp
US 8.8.8.8:53 181.97.55.23.in-addr.arpa udp
US 8.8.8.8:53 40.15.31.184.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.facebook.com udp
GB 142.250.187.238:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
US 8.8.8.8:53 www.facebook.com udp
GB 157.240.214.35:443 www.facebook.com tcp
GB 157.240.214.35:443 www.facebook.com tcp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 i.ytimg.com udp
US 8.8.8.8:53 i.ytimg.com udp
GB 142.250.187.238:443 www.youtube.com udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
US 8.8.8.8:53 static.xx.fbcdn.net udp
GB 172.217.169.22:443 i.ytimg.com tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
GB 163.70.151.21:443 static.xx.fbcdn.net tcp
US 8.8.8.8:53 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 35.214.240.157.in-addr.arpa udp
US 8.8.8.8:53 22.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 www.youtube.com udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
GB 163.70.151.21:443 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp
US 8.8.8.8:53 144.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 73.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 nw-umwatson.events.data.microsoft.com udp
US 52.168.117.173:443 nw-umwatson.events.data.microsoft.com tcp
US 8.8.8.8:53 173.117.168.52.in-addr.arpa udp
US 8.8.8.8:53 104.219.191.52.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.200.2:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 157.123.68.40.in-addr.arpa udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 216.58.213.6:443 static.doubleclick.net tcp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com tcp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
GB 142.250.178.10:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 56.126.166.20.in-addr.arpa udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 10.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 www.konthaiusa.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
N/A 224.0.0.251:5353 udp
NL 23.62.61.194:443 www.bing.com tcp
US 8.8.8.8:53 194.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
US 8.8.8.8:53 play.google.com udp
GB 142.250.179.238:443 play.google.com tcp
GB 142.250.179.238:443 play.google.com udp
US 8.8.8.8:53 238.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
US 8.8.8.8:53 14.227.111.52.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 chromewebstore.googleapis.com udp
US 8.8.8.8:53 chromewebstore.googleapis.com udp
GB 172.217.16.234:443 chromewebstore.googleapis.com tcp
US 8.8.8.8:53 234.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 11.179.89.13.in-addr.arpa udp

Files

N/A