Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
148s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240611-en -
resource tags
arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system -
submitted
15/06/2024, 08:16 UTC
Static task
static1
Behavioral task
behavioral1
Sample
ad7e500fca82c86038ec30dcdfb18b08_JaffaCakes118.html
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ad7e500fca82c86038ec30dcdfb18b08_JaffaCakes118.html
Resource
win10v2004-20240611-en
General
-
Target
ad7e500fca82c86038ec30dcdfb18b08_JaffaCakes118.html
-
Size
6KB
-
MD5
ad7e500fca82c86038ec30dcdfb18b08
-
SHA1
b09b24e1088904d882994b3ff51a606a14d04c4d
-
SHA256
12aa69b0d4be7abae1a57bdced0eb197b46bb46a774d41164c93936b7f22ac06
-
SHA512
8834d9981b0c25b6219cf802247ef21fe360be2ae9098c3d1ae6c2eb54393d1b0633b52b5ba6271c22237923395b46453b13752e9410b07152b6f7c171b30aa8
-
SSDEEP
192:7QfyHp3k3ZxQeqA4PuNYLwMaOxLw9Hp3k3ZxY:7/HUZIPu+ZwHUZS
Malware Config
Signatures
-
Enumerates system info in registry 2 TTPs 3 IoCs
description ioc Process Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName msedge.exe -
Suspicious behavior: EnumeratesProcesses 10 IoCs
pid Process 1552 msedge.exe 1552 msedge.exe 4464 msedge.exe 4464 msedge.exe 3472 identity_helper.exe 3472 identity_helper.exe 1000 msedge.exe 1000 msedge.exe 1000 msedge.exe 1000 msedge.exe -
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 6 IoCs
pid Process 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe -
Suspicious use of FindShellTrayWindow 25 IoCs
pid Process 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe -
Suspicious use of SendNotifyMessage 24 IoCs
pid Process 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe 4464 msedge.exe -
Suspicious use of WriteProcessMemory 64 IoCs
description pid Process procid_target PID 4464 wrote to memory of 3888 4464 msedge.exe 82 PID 4464 wrote to memory of 3888 4464 msedge.exe 82 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 4380 4464 msedge.exe 83 PID 4464 wrote to memory of 1552 4464 msedge.exe 84 PID 4464 wrote to memory of 1552 4464 msedge.exe 84 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85 PID 4464 wrote to memory of 3676 4464 msedge.exe 85
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\ad7e500fca82c86038ec30dcdfb18b08_JaffaCakes118.html1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:4464 -
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffd9c4646f8,0x7ffd9c464708,0x7ffd9c4647182⤵PID:3888
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2132 /prefetch:22⤵PID:4380
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2188 /prefetch:32⤵
- Suspicious behavior: EnumeratesProcesses
PID:1552
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2928 /prefetch:82⤵PID:3676
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3264 /prefetch:12⤵PID:1992
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3284 /prefetch:12⤵PID:2512
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4184 /prefetch:12⤵PID:736
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5240 /prefetch:82⤵PID:2044
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5240 /prefetch:82⤵
- Suspicious behavior: EnumeratesProcesses
PID:3472
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4388 /prefetch:12⤵PID:1744
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3504 /prefetch:12⤵PID:3484
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4944 /prefetch:12⤵PID:3564
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,6718557117660994037,14043374400526236116,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3184 /prefetch:22⤵
- Suspicious behavior: EnumeratesProcesses
PID:1000
-
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:1984
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:4248
Network
-
Remote address:8.8.8.8:53Request84.242.123.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request69.31.126.40.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request240.221.184.93.in-addr.arpaIN PTRResponse
-
GEThttps://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90Remote address:23.62.61.97:443RequestGET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/2.0
host: www.bing.com
accept: */*
accept-encoding: gzip, deflate, br
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19041
ResponseHTTP/2.0 200
content-type: image/png
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: GET, POST, OPTIONS
timing-allow-origin: *
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0}
content-length: 1107
date: Sat, 15 Jun 2024 08:17:02 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.5d3d3e17.1718439422.a8b2cd
-
Remote address:8.8.8.8:53Request97.61.62.23.in-addr.arpaIN PTRResponse97.61.62.23.in-addr.arpaIN PTRa23-62-61-97deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request26.165.165.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request15.164.165.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request57.15.31.184.in-addr.arpaIN PTRResponse57.15.31.184.in-addr.arpaIN PTRa184-31-15-57deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request144.107.17.2.in-addr.arpaIN PTRResponse144.107.17.2.in-addr.arpaIN PTRa2-17-107-144deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request11.227.111.52.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request200.131.50.23.in-addr.arpaIN PTRResponse200.131.50.23.in-addr.arpaIN PTRa23-50-131-200deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request226.162.46.104.in-addr.arpaIN PTRResponse
-
23.62.61.97:443https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90tls, http21.5kB 6.4kB 17 12
HTTP Request
GET https://www.bing.com/th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90HTTP Response
200
-
72 B 158 B 1 1
DNS Request
84.242.123.52.in-addr.arpa
-
71 B 157 B 1 1
DNS Request
69.31.126.40.in-addr.arpa
-
464 B 7
-
73 B 144 B 1 1
DNS Request
240.221.184.93.in-addr.arpa
-
70 B 133 B 1 1
DNS Request
97.61.62.23.in-addr.arpa
-
72 B 146 B 1 1
DNS Request
26.165.165.52.in-addr.arpa
-
72 B 146 B 1 1
DNS Request
15.164.165.52.in-addr.arpa
-
71 B 135 B 1 1
DNS Request
57.15.31.184.in-addr.arpa
-
71 B 135 B 1 1
DNS Request
144.107.17.2.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
11.227.111.52.in-addr.arpa
-
72 B 137 B 1 1
DNS Request
200.131.50.23.in-addr.arpa
-
73 B 147 B 1 1
DNS Request
226.162.46.104.in-addr.arpa
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
152B
MD5c5abc082d9d9307e797b7e89a2f755f4
SHA154c442690a8727f1d3453b6452198d3ec4ec13df
SHA256a055d69c6aba59e97e632d118b7960a5fdfbe35cfdfaa0de14f194fc6f874716
SHA512ad765cddbf89472988de5356db5e0ee254ca3475491c6034fba1897c373702ab7cfa4bd21662ab862eebb48a757c3eb86b1f8ed58629751f71863822a59cd26c
-
Filesize
152B
MD5b4a74bc775caf3de7fc9cde3c30ce482
SHA1c6ed3161390e5493f71182a6cb98d51c9063775d
SHA256dfad4e020a946f85523604816a0a9781091ee4669c870db2cabab027f8b6f280
SHA51255578e254444a645f455ea38480c9e02599ebf9522c32aca50ff37aad33976db30e663d35ebe31ff0ecafb4007362261716f756b3a0d67ac3937ca62ff10e25f
-
Filesize
6KB
MD538dbc44bb6b8ac7c459e6faf893883ac
SHA136c790d19c447338fb8e475e3beb6b35b8ad284b
SHA256b9e128c3d9e8e42750fe0273054a567e17dfd7dfb461347cd202848f57a0480f
SHA512e7313f5442aeb6ef3e9b52a47bdd42b793f61227be26f9caa0e195bf949abb80fff43c9aef0c5f8622f8cd11b0b9a3d3ea8d891c2aa9bc16f2ba6067bd238874
-
Filesize
6KB
MD5b22f6b9f3d25bda306ba8e00be319b20
SHA19192bdbbd76ef6bc9e316cbe335f1e88d91702cd
SHA2564ca5e4ae8d6c06a53e5d39f42ef48289fbd1da797748e5f9ebc9b9842b2fa8c1
SHA512439931957686c414ca8c9e9998edcc725b0fc9b474aeb968bcb1342b6054f537dd25fd2177d164a1439e8fd86ecd5f95abb363cb14f83b9075aa2ef3e166a89f
-
Filesize
16B
MD5206702161f94c5cd39fadd03f4014d98
SHA1bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA2561005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA5120af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145
-
Filesize
16B
MD546295cac801e5d4857d09837238a6394
SHA144e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA2560f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA5128969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23
-
Filesize
11KB
MD522a342dbeb4745a48b5d170b4d149ad1
SHA1e496656a78e8abb17b0eaac93ddc5894e97c4a0e
SHA256360105e09bd78be4d59f960fd75cfb0d5c19fde287d7d8e335664e90579861e8
SHA5123440472c1c1772e496a62bdac2fcac0c8770f1c19786cfe1c84f695a1b63774c4611c6ab1224d00a43fd4e37744b8bd9e3189c1777a85759270662b5496031c7