eb86a1c8c3cdadca587d843dccc8555ca38af9f330babf4ef6563f7c5dc87d69

Analysis

max time kernel
138s
max time network
139s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
14-07-2024 23:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

473643f2081777b42f59f9dc71c24dbf_JaffaCakes118.exe
Size

264KB
MD5

473643f2081777b42f59f9dc71c24dbf
SHA1

5ae407baa2027cab62d2696d040d2392897e7ce5
SHA256

eb86a1c8c3cdadca587d843dccc8555ca38af9f330babf4ef6563f7c5dc87d69
SHA512

b3ad6d0b9c5bac62b2d9d7095cbd06a75ff732279b8e92629178901351351e15634780a1a6cfd75a01babdce3c2174917a7870fad9f1f05f39c1a0036e778001
SSDEEP

6144:cdYwYnARrVid3pr9oj1mazmJDDJDyIYnARrVid3pr9oj1macf1:UJVZ0MIazmJHJWIVZ0MIaa

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 55 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000043174f1aa2314a47aa677ebd5ad1f6c70000000002000000000010660000000100002000000069babdd706d9094d8ad030f67227ea259495e192d435e7917fe302b764c648ab000000000e8000000002000020000000e059b7829ece8ff5a6b99cf751f04830164d98f11ac6de5a947c683a96a548a9900000004a69fafa23f251af3bd178f42b28254e925562af94abce1557d5b08d68b45364638a72bcf3cc745e7dfc7af3edd2a9f0a301eff8319ec407fd36c40dbe4e6476ac78ba1a220a2a2bd57ce8be6282e55d0a5996aac4af674100baf4733c2daf32cfaa08fe46641b01561b300145f08acea54d59128db676fd8f290d6dddf51ae47dcf5fab686402319960dd013115b2b4400000004de67544b523b236337d969bd74b3be1112f960e0c57f029fd599980cb72bbf5ca8042c078eb37cb0a97c5112852d74202d568900bb488546ec5c9007f5843b4	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com\ = "97"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\Total = "53"	IEXPLORE.EXE
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com\ = "24"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com\ = "42"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "71"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\Total = "97"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "24"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com\ = "71"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\Total = "42"	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{542D5411-4237-11EF-9994-C278C12D1CB0} = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com\ = "53"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "53"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "427160955"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "97"	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000043174f1aa2314a47aa677ebd5ad1f6c700000000020000000000106600000001000020000000ca838fbbb30ad46110de862cc5034381b1048254786098ed8f9f8a3b6f4238c5000000000e80000000020000200000003bbf350a5d14a7f52c8c678f41c08aea8c7578ad9887dded484fd0ffd85df3c920000000c017928d42ce7a8bc3adf133573794c7186b1c9f16454d45de6b20cb059c832440000000301fc0082ee861b91e9eb8f045c8aa3254d43e436aee81c73ab0f260dfbadb0384d87491eb32de6eed954a21b9f3b912dfff25753cdc4d12d68ae6b08bb39c90	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total\ = "42"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\www.4tube.com	IEXPLORE.EXE
Set value (data)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = f00d1c2b44d6da01	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\NumberOfSubdomains = "1"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "3"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\Total = "71"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\Total	IEXPLORE.EXE
Set value (int)	\REGISTRY\USER\S-1-5-21-3294248377-1418901787-4083263181-1000\Software\Microsoft\Internet Explorer\DOMStorage\4tube.com\Total = "24"	IEXPLORE.EXE

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2796	iexplore.exe

Suspicious use of SetWindowsHookEx 7 IoCs

pid	Process
2656	473643f2081777b42f59f9dc71c24dbf_JaffaCakes118.exe
2796	iexplore.exe
2796	iexplore.exe
2832	IEXPLORE.EXE
2832	IEXPLORE.EXE
2832	IEXPLORE.EXE
2832	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2796 wrote to memory of 2832	2796	iexplore.exe	31
PID 2796 wrote to memory of 2832	2796	iexplore.exe	31
PID 2796 wrote to memory of 2832	2796	iexplore.exe	31
PID 2796 wrote to memory of 2832	2796	iexplore.exe	31

C:\Users\Admin\AppData\Local\Temp\473643f2081777b42f59f9dc71c24dbf_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\473643f2081777b42f59f9dc71c24dbf_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2656

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" -Embedding
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2796
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2796 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:2832

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

Filesize
1KB

MD5
55540a230bdab55187a841cfe1aa1545

SHA1
363e4734f757bdeb89868efe94907774a327695e

SHA256
d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb

SHA512
c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\75CA58072B9926F763A91F0CC2798706_645BC4A49DCDC40FE5917FA45C6D4517

Filesize
1KB

MD5
6e036d885e5d87821dcfec6ae7fd8880

SHA1
fca96dc6eb261b21911d0a4a95e24d5a8faef9ca

SHA256
c7a9e5a49c05d54f1d697f7aace21474a1f7b9c504c726581b129d0c9fd4deab

SHA512
782106b20e7cd6641278d46b70c384e5758dd884d57bed2498921fa4677a0497e6ee915bf6fed35d5f0d80a52dba45e912a040d72bf0511c1a751fbb84af7d02

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B66240B0F6C84BD4857ABA60CF5CE4A0_5043E0F5DF723415C9EECC201C838A62

Filesize
2KB

MD5
b23fe9f1848095ca5aeb0c67d52c8103

SHA1
03c9d07a64a704965b20c0b645b84e3c8796a284

SHA256
4db8c7dc6b68f72f8d6f2c01ad5822d51fd20ae03c745cefe265890b95eba410

SHA512
8e7517f19bf117ccd100a805073fc9d4a0ac9587c9ba062f55033e5e870103b05b3c894f30b162a6d78d5613900b52eb11f4035fbb77d4f7ffe7056e2318645f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BAD725C80F9E10846F35D039A996E4A8_88B6AE015495C1ECC395D19C1DD02894

Filesize
1KB

MD5
b4944163534b78563db0bcfdb96d2224

SHA1
97476ff24cfcf22daa4638638d8c6c1592c20264

SHA256
594d0360b895d52159831486643cc908517a7c3bd6ec58527bf93ce81ab945fb

SHA512
7d1b3f49c0f0c734de2c4b31c61d033ce1b5fb5c26129d21660021b88b8294d3b92f4307bee5e1aa1af14ac7276278073d76ebb63f8c52fa88427c68a4ee4118

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199

Filesize
170B

MD5
7294f62311013e45970530a93346105f

SHA1
7cf2b7accbef9023cd6d483b9711eeb1e4c9e28f

SHA256
d015030c260ecec563c1588a75bb70f4489d0052ea3c2c65ac03281fc666944e

SHA512
6d4bc1e72217cbd7de2fc3996cbd182c3cccc4a65dbd35c548d1e4a35a195be32234ee1765e3bffbf9f2248272add0d5944a9949c64b09f8f4dbf2511225617d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

Filesize
230B

MD5
c366d6f3cb6a75dd9f0d72b3b4ba229a

SHA1
a2ad3da46650af18c8d1a31b1c504cd58241e09e

SHA256
8f7e9f1f863fb324e397522099f5f94ee2a4673ca86363cea5c6086bbe56fe22

SHA512
943172bd03bb9b14b28b60eab33b627e270a3f4d4f033268a6ac82d870a297f60c683d24d0bc053036e2acfa716ed17b83094e1069585c9c49267e2049e6a96e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

Filesize
410B

MD5
37b4aef0634c72073c42f03d9d3ba00a

SHA1
1ebb7fdbf5727795d4e77d2c6b23c1015d21f952

SHA256
3d9c68bca02d2af9bf672e3bb0144e91706c72e4d9d260fb453c232ac4160e15

SHA512
0d90ec460488bd7d593ea3a5f203dadac740f942dacfb032e2e77c447033f511f383e37ce6a6e09e5a863bcafe545f0b4a4d66a64f4d760d160c235b0c275623

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\75CA58072B9926F763A91F0CC2798706_645BC4A49DCDC40FE5917FA45C6D4517

Filesize
434B

MD5
99ed86ef48c76056b226b1d5d314cc99

SHA1
1d4c476132e63973d9badea31e68b26d8211aef8

SHA256
5a3fcfc34e2f845a0f0d849b0e3e6a7448bceda924ba88bc8f07065da2de0b57

SHA512
d4b2114d72f8213d045eb1ce0bdfc542d2a112754bedf711e9252f0f0ade7ee4bd4faee6546b4fe9cdb0bffc0d53354843587d7041fd71ef352bfdf1c5885454

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\75CA58072B9926F763A91F0CC2798706_645BC4A49DCDC40FE5917FA45C6D4517

Filesize
434B

MD5
e6ada06b5b70d98717d3cee60669a254

SHA1
16b8d48b823c17434490d00220afe9f86b3b995c

SHA256
941bd27a2e2f1d0dd236c3896a04e6fa877af722ce520505a2173e585ea9444a

SHA512
04db67239adc840dbeaff9fbbd15a93752bc8b7dcf91f14784b799d34cbaaa4c3b3e0f10af4cae4dc1e1eac51bbb211b4e4b64ec19b025a263acfe0a12dd91fc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0a1e387a08802a1b1fc0e52e62018a6f

SHA1
27f74228e7aa3d0f391d95143933bc2adb828a93

SHA256
13e64a6c2d488100c54bc640568ab7b8e71288e5f5dc4757357d11e1337cd4ef

SHA512
9c3fc9b4748de52c540209f356e2028868da8b16b8971c5be38554b8f0863f8d28415668eadb872416195e8b2e825e1f03737b56956f89c98265ca9abf2605cf

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6e3b53bb458acad3636c8baeec0d686e

SHA1
d98b21bd6113f646bff6cee6772ffdf23704f5f6

SHA256
5772053443a09da1222970494d102637d7c84d14e4dbbb8d55495a66ed03532d

SHA512
70ae52bca63cef28b322e9ef927c66b55853a80229d0ae85803f6eedec151ce0efe9e2587ec78e1d88a4c1c19429fe4d6d33af2e562e1196baab8c5276da1a92

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
5d1a5baff493c8c1553a90d273eca859

SHA1
252ea191cb08088ed5f97509b4713ce10e2f7417

SHA256
d9b9de79dfd85ceec266db2df28c48b27aa98ca9434fe72d7896cad88497d774

SHA512
51fd72ef8da6a07314231453d32e343a0bc976db658fa015341335be7f1aa53f7dcb954b5323ae858992c8a06417350cb729e161021c9b6a80e8409205e088d6

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
c7e0f43a16dd365c5a0e468aaac99abe

SHA1
635565d9319322847d1426e22c5082f4582a2eac

SHA256
c01690a6f3244f0222b6df495ab02ec6b50e7b51552d763d9ae840896f490de2

SHA512
acf595ad0828bcab8948b7990d45b03d22529f64ab293d50223fb00311ef01fbb0f56711aef5b22eaf9302e1ba8edf5b9552fe028f13b464005f46f74f2252d4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
17c813f86b06c887d1e86a99ce6d8423

SHA1
32ea54fb0d3155df2c40b4449a3ab3d2bde054aa

SHA256
cafac883522a405378721bd9cbce3873043cac60d601c4a291aa5dcb6cb02365

SHA512
471696a82c58f60e6fd3d318dbe8e5ef0058a64c5cf6731a6a77c53112b75a67b09a21f28fa14da10cb200870e45884c668481cf3abd48d0bf1ce312177bf78a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
08e59a8bbe1c215e6f9b8ad6f24bbc1d

SHA1
c9207b6b4caf4f346aadbf86325d31fa10a59d30

SHA256
aaf62d684ebe2a6ab8501083d95cb3743352e8bb65daeb5b4ed97681d650460c

SHA512
cb3ad4e580f784223693c2efdbba285b16c15a969c110831c71d0a1eaa3b8bcd62177113af3c90b3ba764f25ada914974e83fba1f89c6203cc5bb1b487d74168

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6476f99c524d563d362a9cb7ec43bd02

SHA1
4009a71fd92fdea9668006ab47872f3dd84538df

SHA256
68ae9bc849d59e2e56f793ecdc85cb2df7394690e72ecb7ebe64a11f2268e2a6

SHA512
082fa33515ea64959935b7dadaabc51376e7b5bee4e09f9c559d40dc0b56be19ada216ecada3567b740399530202cc3933d15c9f1c0a883850a90c8edb5989d2

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
42aab26bad8301cfb9958f2cb0a1f8e1

SHA1
70f68060a466b4d891d4c2eabe7476036997f613

SHA256
c62f5ba9986cd6c3d8c02dd214c60b0ff172f47871d1e4a50380e86452c09455

SHA512
5a8b02007778b41b6c69a89640edf57d75173e7c43581e7b97665f3fb1c5afe24b888b003f3f836588a52289a5e9dc4dfe6185ca77c171f8247ee00fe6e18008

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
07689042939a148f90590cd49efc5d6d

SHA1
5463b152fc233f537206dc5f30721578f54c94d0

SHA256
2d23d33211581c98ab70409cc35a5813d0ae1ac8f29a5232cc00dde485bd4d51

SHA512
6818a3a2c48170cc1596b255485988d823d998124511ee154744ad01d3bdfd62efe109fcbb4c6ae3eec9b8b409e2ef1adf1165449d42597ed12444967d63a70f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
354302aef9215e129d5620120eafa508

SHA1
ba7929a7952a340a23c2cf4a7f3bb25bb7fee274

SHA256
bd717216506c7d384dbf1a645dfb74823b455f9730c30913c62faa4edb470c66

SHA512
d5f7e13796b42c8a5c252e9150eb3c94c577c889e7db76374a82e72006cdff8985a67d3b9e5717d3406b6ad612aef8ef5b4546fbb36ed2d1cdd60426925cd4ac

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
aabb930448b2e9494535f94e4082ab2b

SHA1
2eaf8a5b5cacd919fd000f8c22e788586175c538

SHA256
4bc95f14c2c513c0e226ea0e63ed120cec699dda96abfdc0af21ee099e87ba99

SHA512
7151db963df0d46c092f15fcff7b92c808696a93b4c50b688c694cf36c6f2db33bb0480b5335e378a9e9e13af9f7a55a5d096c0cd53e23d4798a42a99f60da58

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
11e0d2aa49201df2a4e04d92e6e706cc

SHA1
d21def1e45cbe0d1bd9d1c5f109048fce57eb4f2

SHA256
4a22714e78ed86711796a5a70ca0ac997ec54e35e34b11f79e614ff04e8ab6b9

SHA512
e27171b7ed728efc5e2cd0a7292098d4fe30246017115017d1206d139b432f2876f5fdb58d3404f495459adac12642234c9d33dde00089803104a59556711db7

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
b4f5880cbf276357ba948e563ac880b5

SHA1
69043de748e4efab2738d55a463db80a5cd67db8

SHA256
b32b24cdf6119dd60dc071461fdfd56fb2543ecdd45b06a1dbbacb85259eb882

SHA512
81a7fd9919a1744b8d327cab799cc994043559f99f9171567129a0fa6ec4275ed67c6cf94330a697f5d4425065ab57a75578afc9e54d3597882573ae88604d19

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f5051f3174c83f0129e7bbf69d77fc9f

SHA1
95cb069f5d03db2dd48c54768d48d87ed5f61f9c

SHA256
5d781633e0cdc99746e36dd21446fb55d5a792d9a634855b275b25dbb2d1078d

SHA512
9901a8989e83cd5c83b0e95b49795b111021c8b6d95e2df200c8b66334e47e6b36d806e976c43b7a5df47c6c2d9f290d9a539cc77a59dac1d838f5d6d8c7a2e8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
53d784241807c8636627c1156a8f554b

SHA1
33452b0999cb44425fdbc75a761e853b7c7ca7f2

SHA256
3bbde12e1d1bacb922bf37f4925225c5e8ff81dbcd9acc6b4a3b586bb42ae1cc

SHA512
11242cbfd090885295aa3252e76fe3bfb1992444052e3a4ebbb78a616eb1c04a7e34bb12097ef5020d62c2a9c65166e86b28b79175f5a5e1caf2f2d029925e2a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
90286fd10b04a08b363dafde8dab83a3

SHA1
373aa252d546d9e7c031b9ae0def672a7e51a715

SHA256
846d0c3a90c3b8b99707b0f27d8c8b58dc61e87852a2b3c94a3368e9c07d82c1

SHA512
d24fa6d8c3b798b10a2001c1fd5ff7feaab30e507d532829f2429fa42661b85a36f5327071c88257cc004e2c812348c0a2278b51c8b4ceb930bb396a74694859

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
88edf47a48f6ac461cf91411714932f0

SHA1
22b95a3a8363f929a931fcf51bc3dc14479c6984

SHA256
413440e0ef742ccf7fd03d4c2e87f3c4ca5929f821ac9ab247c26993ef23e85a

SHA512
953d8bd8038a404cd4968728cf3d4965a580a63476d32cfc29d80105dc4d15a63d122f669186a99af5842177a2ffc6561b3d56a3021c35f105c0cf76b6cce778

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
986f18b94c0ac30e2e8af33520c9b53f

SHA1
3c7a769f8993ae614568f39cb6d45ef25a868a89

SHA256
00aa8e36e67834ade4f5be0c424021d0d9c61c7412778bab4bede563c5cacdc9

SHA512
e3185291f94ddc4490d9bdf412eccf064720ca70230ffc9613160d051ecbaabe3f9fba5e45ea99fe38308da8ab5ad78e6ac1b11651bf8f243162550c35deec26

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
11cdbf817e74da5f3da44d8ddb0b2c19

SHA1
9038357b93a5dcac00d5292fa69857be96218618

SHA256
7524a3ed0c50ed17d06ec1039eb7936951948f6c67c24bbd7fa879d24fbcfdb1

SHA512
4b2f0d2197c356217cb81bbfe38a9df842de50718b43fdfbd3a962717ec46c41efb34460adf1d4c6cfe775b9a6063bc3aae170ba471aca8f26adbd9477c1688f

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f160e2bf35ed17ec9cbe844985e9edef

SHA1
71f965f4c6617184293eaf52c8f6aa925ea71bb0

SHA256
8afc9f18376efe56d32e716e897a1e7bf284cf6361c46b5818b3b807e10a5913

SHA512
12e5f3219663953c2af6fdbae6f114792356b8cdbfeafad8e88ab59d5e451d15ef9301ac3ec68e6ea530cbef3dccc7e20c6ee65cb89b87eee8b3733d20e23ec4

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
271bedb33798f6a7aca080902d02f8f1

SHA1
96a8be7ed3018b989fb665afda8da3d0d87beae0

SHA256
0e0ef1a7d4a2116e6f8f54494281fa0d939d663ffa05d84c908b56a38c2f8c2b

SHA512
7ebc35adc40493eb283f65c768c208a3436e2a61003703a432f113d7da03d994b1627895fbaa21b15e9327167d73f4a63de55bd7513118ce751b5002c97acdd1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
ddc8af69a967c3b5de700edbe909176a

SHA1
8e3a8e7050c50d20ef9c3628d8cd4fcbe0704b0f

SHA256
349753475c00d3b2bf82e3cef15856d1359c4ca49397fc03c6e3669f10e74ffc

SHA512
6b0cd6d7dcc307733d521dfea8f817b5d6989acf612f41efad7bf664db17c021c2460f21643c9eb76ba57361d2bf491ef30e9f0f8d94d2dc888832bace997703

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
0fbb80da38e68fce3917d2a9bfa0e373

SHA1
f08bc96dff89cf7d2396bc1cd0ffb2a09d6172ea

SHA256
a120e1ccd725f960fbba86f84db189a754ea2fbb3617f70a00199682079ac039

SHA512
644484fced2b0a403cf34b62f23f9bf9c95fff3a2030d7633056611e49b541eece24fb6403ba7ca52c97ceb37b9447b36c3786f0b3a251853a4a3df2f61fa5ef

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
d67a6d223b3d78476cfb29792ec38334

SHA1
10159a25b805f7ab55d1a860abea30fa3cfc82f0

SHA256
f1426bcdbffa1bc6b6f4fab38a44a1fc95970c2083cbe5cdcf2aaf71eebacd0c

SHA512
2dd37e2dd79d664c2d76203ef62965ca79c6abb404f8018591682d18f30600b38c53d12049eade3a1bfa71f6e5a6ac78a77499a3f2e699d49f0bac7349682f73

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
68a09845674211d898d74354bb03a162

SHA1
2594d402470144ac82137a8a75d4f3a3a7e48aef

SHA256
d5f624b4d1ccdf65b9d47425769f0452b7230bb6bfdb3cf6df1111abc26d1924

SHA512
e72667884d2fd8966cc64b2a674948903eaade5dd242ab5fbc8e7a083b17dd9d37946c782786375b982863457051df9cd0a7e49b48b9a0f81bc5e5db5f6c8436

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
f28566468db19c13e6211172961491f7

SHA1
09a530303c7ae62c07bea88bb21ecafb0fa8c0fd

SHA256
354ee7e03e5c896d35c8e15b91b14a8845b56dee8462a7a530a932787d147c81

SHA512
172b928ab456137c5da46f07433c2e2b3b8b9e4f15d86c6078822ef45e70532b3336d967f11a55fb766b9b586c61875590187fc57e84e7c9cb1a5096d6979fb8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
13721cec7a146c8bb23a0959065ad9fa

SHA1
fb2caaa6ee1f68d0f14e43d612241634a0078b2e

SHA256
150fa5b9abb2a4ab897cff6a580ba64d42890e6c443884fce568a77d84174284

SHA512
7ae2093ff35d4e36d94472c3a869d45f6bb72cf962cbd2d03c2ec74fc09acebf17cf96de3eaf17feeee4c8aff6fbc1173bc4b607c43ea9250bea6fbc7b0b4a56

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
6f7288f1824602d43dfc3ca6c7dc842c

SHA1
1440906df05d90ad90c6c16e602862db7c9f9179

SHA256
7f16dd8ef54fc47392cd9216c2807a83899b63b2436df5493646ee5ae0ef5fac

SHA512
ee44fc47bb32e285f25a06130aff502997807f1cded6ceed9ebfd035c8bb7647cf9ea7a4f9bb9c54049fd5654c2abb8f6993ff86c88459d437eb5a71f2ceee24

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
985b8c449e6f37f4883f2b4c6f81917b

SHA1
a92db9b4f298706a5aba7f01402b9e160e3ea077

SHA256
d3af3a09608cc7ba9e084b1e16583820c8800f7ea1138426dd4e3bbc2f8dbe95

SHA512
d313ae80ee316aae88678f1a9523fe3b6d1cb158afb76a26333d1433e0c92503572c343e86e92b0f06a7bb8e016ea102e2173597ff3a876648306b36018e0a22

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
fd1eae2244826fb2480af4e06c6279f6

SHA1
0b4b64480604c8ca4d220d727a8b2e25eaae59d3

SHA256
58f32b1de1d9fbdae499fe5819f63446292517abad5d5fb4145f59c8fce01db4

SHA512
2d598f951d477ed5367d9e7269054c4b592b241c746dcf729dd7b1e49095c8a6c85e775ef8b9c62b9e55b7894ff0e879bb8b83d44e1de09a2125fdb0a5976454

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
8e4ad624ca85a518feb7bd0348b01f15

SHA1
ac7325319ade4844d399da2628f2f3a67f6aebe8

SHA256
069fa47a56352e83e677fadf567b7a0b0b50daeabd06f822bc7995660e1dc63a

SHA512
0f52f9817e3545cc46d89411ebec4f0c1421b5e0c4c6ff442761cb7035d415c236208bc55c8dacccb4363d847a7378d6a5da1395a2db5d8b6b34d07718829aea

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
91c050f24431c543d95287925f39a7b8

SHA1
e60c760b3ce6c6741ef459ca863e142781beee51

SHA256
5af843e6b16ff79cea1606782bf930fde9540c1e34aa23a940e64c3ec9483f44

SHA512
d185d09dacca666adfea50c65c6654a9df4ceb70ef641036c808a4096ca4bbac321121b78c22f2ccfe7896cc1635400f5b5d42bdc93136eef301d8c04d807816

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
342B

MD5
9f105772164df1acef003cb2cff9ec77

SHA1
450f96c3f35b41a0b79fc9e479ba793dbc063309

SHA256
6ceb126883856253a168f8b4c8eb38cfc0ec70d71d9d157717106765048e26fd

SHA512
834e4e2f6b304b6dc1695ff8abd9d24d828a75f65cc5524b54b0a7d86bf67c185bb2418d4a815832606d90c3fb6103f2fa54525ad286d4b44ef2a9d7d3645a7c

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BAD725C80F9E10846F35D039A996E4A8_88B6AE015495C1ECC395D19C1DD02894

Filesize
432B

MD5
383e8c48f31c4ce8914d72cccf66021d

SHA1
818e4a4159c58d3d566b9ad2b3cd1e856ccfc09d

SHA256
7c7dd9c4030ea5c4f214e729a13e59c3f30faf31ec52e2e824f899359b067ef1

SHA512
189e4c0af16f78290381c3ed4d8e0b88e7a55eaa77750da1d5cca106c0dc4925a4c432c461f29db61d095fe28e778a912016b9c01b8a47a1178607b7b920de9a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\DOMStore\ZQM5WGC3\www.4tube[1].xml

Filesize
324B

MD5
ecaa6c5180202eb5fbba30043c12aba7

SHA1
dd06b206afd914ca428594e19c5a7e1093facf5b

SHA256
e4945f4ea17702c88eeeb2065a487d89f15f3b0f5453e55e055e1652041c8f26

SHA512
caef3062491ccd8bc3c081343ac0c01e659583581c0c0bf7e02706e43fb86f68c9a6a3ec07715f0f81de64820c7572665676abd807d1d3d0f7128cf1b42fea47

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\imagestore\5f5nsah\imagestore.dat

Filesize
3KB

MD5
37fccb853c6ce13324e95025c486c2de

SHA1
4c3408d45dd9c0cad50820c6b1e30e3da1bd4eb9

SHA256
ffa9e7ca290a73b8a195592a512eb93d26c8d21c44a0fff9361a4482b1a00088

SHA512
c2645bf8bb4b8710ed2e23caca2554f01634cc14b0b9427b7c2c3087682cf1015f7d20def59c4ccaf804ab883abbcc951fa11d99145d192fa76546d0f4710709

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GA43GQEJ\ad-provider[1].js

Filesize
162KB

MD5
710721b64ea5e3867ccff5f3de8ef294

SHA1
18483d80947e14cf49f8c9ebbe3391e1f48fd0bc

SHA256
bc0563abe13d7d9aa2d4b78a528f19ab616341e43dbf486aabca10559ae58e64

SHA512
c17a8c9e51c14d5f0fdf283f2049ec128753630f1a41e5a9f89007c2c0f973bd8cf4213091469ca494387912a3a6374af21756b35716b0dcf04b9c36e9fcd92e

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GA43GQEJ\favicon-06b7221b58[1].gif

Filesize
3KB

MD5
06b7221b583655a4b7e7659118428298

SHA1
2ca646b8b27e5c1743c6924c69c43de4bc5413aa

SHA256
907ad1ebbd2992e37c7ed51cc1e26d6f5a9e48039de03bd1e8d46b46101977e4

SHA512
c3a28f8f6e6898c559a3fd94fa9dda27725d77ef8bdbad63cd0c220ef08eec5afdc626a9ee829937513c406595be92078cf0e7f60be49a7b1281b6c13a92a93f

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VCY0HBA7\ad_detail[3].htm

Filesize
3KB

MD5
54e3bbd40379c4688aea34601db2701d

SHA1
868da5810ad26f56c5281a5e8ef8d360d0ad89e3

SHA256
09524e8022ef6a6aea469d327550df91b74186f157f64b60703368eaf6df8937

SHA512
fadb63ec1d7a8e4401285e2e129b6af5b06605b274afc84d74de46657dbf55e7b4a770d55c1c7ca7462f32ff496b6bdbddd93f684b5f99e1091709b5cedd2d58

Download Submit
C:\Users\Admin\AppData\Local\Temp\CabF5D6.tmp

Filesize
70KB

MD5
49aebf8cbd62d92ac215b2923fb1b9f5

SHA1
1723be06719828dda65ad804298d0431f6aff976

SHA256
b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

SHA512
bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

Download Submit
C:\Users\Admin\AppData\Local\Temp\TarF636.tmp

Filesize
181KB

MD5
4ea6026cf93ec6338144661bf1202cd1

SHA1
a1dec9044f750ad887935a01430bf49322fbdcb7

SHA256
8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

SHA512
6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

Download Submit