Analysis
-
max time kernel
24s -
max time network
25s -
platform
debian-9_armhf -
resource
debian9-armhf-20240611-en -
resource tags
arch:armhfimage:debian9-armhf-20240611-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem -
submitted
15-07-2024 23:17
Static task
static1
Behavioral task
behavioral1
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
ubuntu1804-amd64-20240508-en
Behavioral task
behavioral2
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-mipsel-20240611-en
General
-
Target
4bd599176fbaab489642f3fafb083862_JaffaCakes118
-
Size
23KB
-
MD5
4bd599176fbaab489642f3fafb083862
-
SHA1
0e04611e74f58029492a2df576844dc8c4529e4e
-
SHA256
c7d3a16ba29abcf5261b66af753f44124fcb3a303059f7cee04334983a3b6d16
-
SHA512
d2be3727188dfffaee6b96296f0404e8e208a83cb83fbcab4d6eb833b9305b844dffdf73af61c6c63ab607d38df6dfe43c83b1935d2fb28039320cf6bb780645
-
SSDEEP
384:z7WoIqPIkK+slvwzUvEEa2cC/bvynigxz9DYnY2c68:5IqAkK+slvwzF2CDYnYhf
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
Processes:
ttyloadioc pid process /usr/sbin/ttyload 775 ttyload -
Attempts to change immutable files 22 IoCs
Modifies inode attributes on the filesystem to allow changing of immutable files.
Processes:
chattrchattrchattrhostnamechattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrpid process 848 chattr 860 chattr 902 chattr 932 hostname 765 chattr 830 chattr 843 chattr 855 chattr 812 chattr 849 chattr 854 chattr 842 chattr 774 chattr 789 chattr 807 chattr 829 chattr 835 chattr 837 chattr 903 chattr 814 chattr 821 chattr 823 chattr -
Enumerates running processes
Discovers information about currently running processes on the system
-
Write file to user bin folder 1 TTPs 1 IoCs
Processes:
4bd599176fbaab489642f3fafb083862_JaffaCakes118description ioc process File opened for modification /usr/sbin/ttyload 4bd599176fbaab489642f3fafb083862_JaffaCakes118 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
Processes:
catdescription ioc process File opened for reading /proc/cpuinfo cat -
Reads CPU attributes 1 TTPs 1 IoCs
Processes:
psdescription ioc process File opened for reading /sys/devices/system/cpu/online ps -
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
Processes:
killallkillallkillallkillallpidofkillallpidofkillallkillallkillallkillallmvpskillallmkdirkillallkillallkillallmvcpkillalldescription ioc process File opened for reading /proc/26/stat killall File opened for reading /proc/41/stat killall File opened for reading /proc/274/stat killall File opened for reading /proc/4/stat killall File opened for reading /proc/28/stat killall File opened for reading /proc/19/cmdline pidof File opened for reading /proc/148/stat killall File opened for reading /proc/633/stat killall File opened for reading /proc/587/stat pidof File opened for reading /proc/625/cmdline pidof File opened for reading /proc/16/stat killall File opened for reading /proc/109/stat killall File opened for reading /proc/162/stat killall File opened for reading /proc/139/cmdline pidof File opened for reading /proc/76/stat killall File opened for reading /proc/21/stat killall File opened for reading /proc/filesystems mv File opened for reading /proc/303/cmdline pidof File opened for reading /proc/587/status ps File opened for reading /proc/303/stat killall File opened for reading /proc/4/stat killall File opened for reading /proc/633/cmdline pidof File opened for reading /proc/28/stat killall File opened for reading /proc/filesystems mkdir File opened for reading /proc/23/cmdline ps File opened for reading /proc/299/stat killall File opened for reading /proc/136/cmdline killall File opened for reading /proc/277/stat killall File opened for reading /proc/275/stat killall File opened for reading /proc/588/stat ps File opened for reading /proc/98/stat killall File opened for reading /proc/139/stat killall File opened for reading /proc/633/stat killall File opened for reading /proc/587/stat killall File opened for reading /proc/22/stat killall File opened for reading /proc/633/stat killall File opened for reading /proc/588/stat killall File opened for reading /proc/635/stat killall File opened for reading /proc/274/stat killall File opened for reading /proc/25/stat killall File opened for reading /proc/43/cmdline pidof File opened for reading /proc/22/stat killall File opened for reading /proc/585/stat killall File opened for reading /proc/109/cmdline killall File opened for reading /proc/762/stat pidof File opened for reading /proc/filesystems mv File opened for reading /proc/109/stat killall File opened for reading /proc/148/stat killall File opened for reading /proc/140/stat killall File opened for reading /proc/278/stat killall File opened for reading /proc/630/stat killall File opened for reading /proc/314/cmdline ps File opened for reading /proc/18/stat killall File opened for reading /proc/633/stat killall File opened for reading /proc/filesystems cp File opened for reading /proc/23/status ps File opened for reading /proc/635/stat killall File opened for reading /proc/98/stat killall File opened for reading /proc/filesystems killall File opened for reading /proc/274/stat killall File opened for reading /proc/24/stat pidof File opened for reading /proc/633/stat killall File opened for reading /proc/26/stat killall File opened for reading /proc/136/stat killall -
Writes file to tmp directory 8 IoCs
Malware often drops required files in the /tmp directory.
Processes:
4bd599176fbaab489642f3fafb083862_JaffaCakes118description ioc process File opened for modification /tmp/conf/hosts.h 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.init1 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.init2 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.shmd5 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.procs 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.stats 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/info_tmp 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/bin/.sh/sshd_config 4bd599176fbaab489642f3fafb083862_JaffaCakes118
Processes
-
/tmp/4bd599176fbaab489642f3fafb083862_JaffaCakes118/tmp/4bd599176fbaab489642f3fafb083862_JaffaCakes1181⤵
- Write file to user bin folder
- Writes file to tmp directory
PID:633 -
/usr/bin/whoamiwhoami2⤵PID:641
-
/bin/tartar zxf ./bin.tgz2⤵PID:643
-
/bin/tartar zxf ./conf.tgz2⤵PID:648
-
/bin/tartar zxf ./lib.tgz2⤵PID:651
-
/bin/tartar zxf ./utilz.tgz2⤵PID:656
-
/bin/tartar zxf ./sshd.tgz2⤵PID:660
-
/bin/rmrm -rf ./sshd.tgz2⤵PID:664
-
/bin/rmrm -rf bin.tgz conf.tgz lib.tgz utilz.tgz2⤵PID:666
-
/bin/sleepsleep 22⤵PID:668
-
/usr/bin/killallkillall -9 syslogd2⤵
- Reads runtime system information
PID:677 -
/bin/datedate "+%S"2⤵PID:678
-
/bin/sleepsleep 22⤵PID:679
-
/bin/hostnamehostname -f2⤵PID:702
-
/bin/grepgrep -v "^#" /etc/syslog.conf2⤵PID:705
-
/bin/grepgrep -v "^\$"2⤵PID:706
-
/bin/grepgrep "@"2⤵PID:707
-
/usr/bin/cutcut -d "@" -f 22⤵PID:708
-
/bin/unameuname -n2⤵PID:710
-
/bin/mvmv lib/libproc.a /lib/2⤵PID:711
-
/bin/mvmv lib/libproc.so.2.0.6 /lib/2⤵PID:713
-
/sbin/ldconfig/sbin/ldconfig2⤵PID:715
-
/usr/bin/md5summd5sum2⤵PID:719
-
/usr/bin/touchtouch -acmr /bin/ls /etc/sh.conf2⤵PID:720
-
/bin/chownchown -f root:root /etc/sh.conf2⤵PID:721
-
/usr/bin/chattrchattr +isa /etc/sh.conf2⤵PID:723
-
/bin/rmrm -rf /tmp/bin/.sh/shdcf22⤵PID:728
-
/bin/mvmv /tmp/bin/.sh/sshd_config /tmp/bin/.sh/shdcf2⤵PID:729
-
/bin/mvmv /tmp/conf/lidps1.so /lib/lidps1.so2⤵PID:730
-
/usr/bin/touchtouch -acmr /bin/ls /lib/lidps1.so2⤵PID:732
-
/usr/bin/touchtouch -acmr /bin/ls "/tmp/conf/*"2⤵PID:733
-
/bin/mvmv "/tmp/conf/*" /usr/include/2⤵PID:736
-
/bin/mkdirmkdir /lib/libsh.so2⤵PID:739
-
/usr/bin/touchtouch -acmr /bin/ls /lib/libsh.so2⤵PID:741
-
/bin/mkdirmkdir /usr/lib/libsh2⤵PID:742
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh2⤵PID:743
-
/bin/mvmv ".sh/*" /lib/libsh.so/2⤵PID:744
-
/bin/mvmv .sh/.bashrc /usr/lib/libsh2⤵PID:746
-
/bin/mvmv /lib/libsh.so/sshd /sbin/ttyload2⤵
- Reads runtime system information
PID:748 -
/bin/chmodchmod a+xr /sbin/ttyload2⤵PID:749
-
/bin/chmodchmod o-w /sbin/ttyload2⤵PID:751
-
/usr/bin/touchtouch -acmr /bin/ls /sbin/ttyload2⤵PID:753
-
/usr/bin/chattrchattr +isa /sbin/ttyload2⤵PID:755
-
/bin/pidofpidof ttyload2⤵
- Reads runtime system information
PID:756 -
/bin/mvmv /tmp/bin/ttymon /sbin/ttymon2⤵PID:758
-
/bin/chmodchmod a+xr /sbin/ttymon2⤵PID:759
-
/usr/bin/touchtouch -acmr /bin/ls /sbin/ttymon2⤵PID:760
-
/usr/bin/chattrchattr +isa /sbin/ttymon2⤵PID:761
-
/bin/pidofpidof ttymon2⤵
- Reads runtime system information
PID:762 -
/bin/cpcp /bin/bash /lib/libsh.so2⤵PID:764
-
/usr/bin/chattrchattr -isa /etc/inittab2⤵
- Attempts to change immutable files
PID:765 -
/bin/catcat /etc/inittab2⤵PID:766
-
/bin/grepgrep -v ttyload2⤵PID:767
-
/bin/grepgrep -v getty2⤵PID:768
-
/bin/catcat /etc/inittab2⤵PID:769
-
/bin/grepgrep getty2⤵PID:770
-
/bin/catcat /tmp/.init22⤵PID:771
-
/usr/bin/touchtouch -acmr /bin/ls /usr/sbin/ttyload2⤵PID:772
-
/bin/chmodchmod +x /usr/sbin/ttyload2⤵PID:773
-
/usr/bin/chattrchattr +isa /usr/sbin/ttyload2⤵
- Attempts to change immutable files
PID:774 -
/usr/sbin/ttyload/usr/sbin/ttyload2⤵
- Executes dropped EXE
PID:775 -
/sbin/ttyload/sbin/ttyload -q3⤵PID:776
-
/sbin/ttymon/sbin/ttymon3⤵PID:777
-
/usr/bin/touchtouch -amcr /etc/inittab /tmp/.init12⤵PID:778
-
/bin/mvmv -f /tmp/.init1 /etc/inittab2⤵PID:779
-
/bin/rmrm -rf /tmp/.init22⤵PID:780
-
/bin/grepgrep ttyload /etc/inittab2⤵PID:781
-
/usr/bin/md5sum/usr/bin/md5sum /bin/ps2⤵PID:782
-
/usr/bin/md5sum/usr/bin/md5sum /bin/ls2⤵PID:783
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/find2⤵PID:784
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/top2⤵PID:785
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/md5sum2⤵PID:786
-
/tmp/encrypt./encrypt -e .shmd5 /dev/srd02⤵PID:787
-
/usr/bin/touchtouch -acmr /bin/ls /dev/srd02⤵PID:788
-
/usr/bin/chattrchattr a+r /dev/srd02⤵
- Attempts to change immutable files
PID:789 -
/bin/chownchown -f root:root /dev/srd02⤵PID:790
-
/bin/rmrm -rf .shmd52⤵PID:791
-
/usr/bin/touchtouch -acmr /sbin/ifconfig ifconfig2⤵PID:792
-
/usr/bin/touchtouch -acmr /bin/ps ps2⤵PID:793
-
/usr/bin/touchtouch -acmr /bin/ls ls2⤵PID:794
-
/usr/bin/touchtouch -acmr /bin/netstat netstat2⤵PID:795
-
/usr/bin/touchtouch -acmr /usr/bin/find find2⤵PID:796
-
/usr/bin/touchtouch -acmr /usr/bin/top top2⤵PID:797
-
/usr/bin/touchtouch -acmr /usr/sbin/lsof lsof2⤵PID:798
-
/usr/bin/touchtouch -acmr /sbin/syslogd syslogd2⤵PID:799
-
/usr/bin/touchtouch -acmr /usr/bin/slocate slocate2⤵PID:800
-
/usr/bin/touchtouch -acmr /usr/bin/dir dir2⤵PID:802
-
/usr/bin/touchtouch -acmr /usr/bin/md5sum md5sum2⤵PID:804
-
/usr/bin/touchtouch -acmr /usr/bin/pstree pstree2⤵PID:805
-
/bin/mkdirmkdir /usr/lib/libsh/.backup2⤵PID:806
-
/usr/bin/chattrchattr -isa /bin/ps2⤵
- Attempts to change immutable files
PID:807 -
/bin/cpcp /bin/ps /usr/lib/libsh/.backup2⤵PID:809
-
/bin/mvmv -f ps /bin/ps2⤵PID:811
-
/usr/bin/chattrchattr +isa /bin/ps2⤵
- Attempts to change immutable files
PID:812 -
/usr/bin/chattrchattr -isa /sbin/ifconfig2⤵
- Attempts to change immutable files
PID:814 -
/bin/cpcp /sbin/ifconfig /usr/lib/libsh/.backup2⤵
- Reads runtime system information
PID:816 -
/bin/mvmv -f ifconfig /sbin/ifconfig2⤵PID:818
-
/usr/bin/chattrchattr +isa /sbin/ifconfig2⤵
- Attempts to change immutable files
PID:821 -
/usr/bin/chattrchattr -isa /bin/netstat2⤵
- Attempts to change immutable files
PID:823 -
/bin/cpcp /bin/netstat /usr/lib/libsh/.backup2⤵PID:826
-
/bin/mvmv -f netstat /bin/netstat2⤵PID:827
-
/usr/bin/chattrchattr +isa /bin/netstat2⤵
- Attempts to change immutable files
PID:829 -
/usr/bin/chattrchattr -isa /usr/bin/top2⤵
- Attempts to change immutable files
PID:830 -
/bin/cpcp /usr/bin/top /usr/lib/libsh/.backup2⤵PID:832
-
/bin/mvmv -f top /usr/bin/top2⤵PID:833
-
/usr/bin/chattrchattr +isa /usr/bin/top2⤵
- Attempts to change immutable files
PID:835 -
/usr/bin/chattrchattr -isa /bin/ls2⤵
- Attempts to change immutable files
PID:837 -
/bin/cpcp /bin/ls /usr/lib/libsh/.backup2⤵PID:838
-
/bin/mvmv -f ls /bin/ls2⤵PID:840
-
/usr/bin/chattrchattr +isa /bin/ls2⤵
- Attempts to change immutable files
PID:842 -
/usr/bin/chattrchattr -isa /usr/bin/find2⤵
- Attempts to change immutable files
PID:843 -
/bin/cpcp /usr/bin/find /usr/lib/libsh/.backup2⤵PID:844
-
/bin/mvmv -f find /usr/bin/find2⤵
- Reads runtime system information
PID:846 -
/usr/bin/chattrchattr +isa /usr/bin/find2⤵
- Attempts to change immutable files
PID:848 -
/usr/bin/chattrchattr -isa /usr/bin/pstree2⤵
- Attempts to change immutable files
PID:849 -
/bin/cpcp /usr/bin/pstree /usr/lib/libsh/.backup2⤵PID:850
-
/bin/mvmv -f pstree /usr/bin/pstree2⤵PID:852
-
/usr/bin/chattrchattr +isa /usr/bin/pstree2⤵
- Attempts to change immutable files
PID:854 -
/usr/bin/chattrchattr -isa /usr/bin/md5sum2⤵
- Attempts to change immutable files
PID:855 -
/bin/cpcp /usr/bin/md5sum /usr/lib/libsh/.backup2⤵PID:856
-
/bin/mvmv -f md5sum /usr/bin/md5sum2⤵PID:858
-
/usr/bin/chattrchattr +isa /usr/bin/md5sum2⤵
- Attempts to change immutable files
PID:860 -
/usr/bin/touchtouch -acmr /bin/ls /tmp/utilz2⤵PID:861
-
/usr/bin/touchtouch -acmr /bin/ls "/tmp/utilz/*"2⤵PID:863
-
/bin/mvmv /tmp/utilz /usr/lib/libsh/2⤵PID:864
-
/bin/mkdirmkdir /usr/lib/libsh/.sniff2⤵
- Reads runtime system information
PID:866 -
/bin/mvmv /tmp/bin/shsniff /usr/lib/libsh/.sniff/shsniff2⤵PID:867
-
/bin/mvmv /tmp/bin/shp /usr/lib/libsh/.sniff/shp2⤵PID:870
-
/bin/mvmv /tmp/bin/shsb /usr/lib/libsh/shsb2⤵PID:871
-
/bin/mvmv /tmp/bin/hide /usr/lib/libsh/hide2⤵PID:872
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/.sniff/shsniff2⤵PID:875
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/.sniff/shp2⤵PID:876
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/shsb2⤵PID:877
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/hide2⤵PID:878
-
/bin/chmodchmod +x "/usr/lib/libsh/.sniff/*"2⤵PID:879
-
/bin/chmodchmod +x /usr/lib/libsh/shsb2⤵PID:881
-
/bin/chmodchmod +x /usr/lib/libsh/hide2⤵PID:883
-
/bin/psps aux2⤵
- Reads CPU attributes
- Reads runtime system information
PID:884 -
/bin/catcat /tmp/.procs2⤵PID:886
-
/bin/grepgrep named2⤵PID:887
-
/bin/catcat /tmp/.procs2⤵PID:889
-
/bin/grepgrep smbd2⤵PID:890
-
/bin/catcat /tmp/.procs2⤵PID:892
-
/bin/grepgrep rpc.statd2⤵PID:893
-
/bin/rmrm -rf /tmp/.procs2⤵PID:894
-
/bin/catcat /tmp/.stats2⤵PID:897
-
/bin/grepgrep 4432⤵PID:898
-
/bin/grepgrep http2⤵PID:899
-
/bin/rmrm -rf /tmp/.stats2⤵PID:900
-
/bin/mkdirmkdir /usr/lib/libsh/.owned2⤵PID:901
-
/usr/bin/chattrchattr +isa /usr/lib/libsh2⤵
- Attempts to change immutable files
PID:902 -
/usr/bin/chattrchattr +isa /lib/libsh.so2⤵
- Attempts to change immutable files
PID:903 -
/usr/bin/killallkillall -9 -q nscd2⤵
- Reads runtime system information
PID:904 -
/usr/bin/killallkillall -9 -q xntps2⤵
- Reads runtime system information
PID:905 -
/usr/bin/killallkillall -9 -q mountd2⤵
- Reads runtime system information
PID:906 -
/usr/bin/killallkillall -9 -q mserv2⤵
- Reads runtime system information
PID:907 -
/usr/bin/killallkillall -9 -q psybnc2⤵
- Reads runtime system information
PID:908 -
/usr/bin/killallkillall -9 -q t0rns2⤵
- Reads runtime system information
PID:909 -
/usr/bin/killallkillall -9 -q linsniffer2⤵
- Reads runtime system information
PID:910 -
/usr/bin/killallkillall -9 -q sniffer2⤵
- Reads runtime system information
PID:911 -
/usr/bin/killallkillall -9 -q lpsched2⤵
- Reads runtime system information
PID:912 -
/usr/bin/killallkillall -9 -q sniff2⤵
- Reads runtime system information
PID:913 -
/usr/bin/killallkillall -9 -q sn1f2⤵
- Reads runtime system information
PID:914 -
/usr/bin/killallkillall -9 -q sshd22⤵PID:915
-
/usr/bin/killallkillall -9 -q xsf2⤵
- Reads runtime system information
PID:916 -
/usr/bin/killallkillall -9 -q xchk2⤵
- Reads runtime system information
PID:917 -
/usr/bin/killallkillall -9 -q ssh2d2⤵PID:918
-
/sbin/ifconfig/sbin/ifconfig eth02⤵PID:920
-
/bin/grepgrep "inet addr:"2⤵PID:921
-
/usr/bin/awkawk -F " " " {print \$2} "2⤵PID:922
-
/usr/bin/cutcut -c6-2⤵PID:923
-
/bin/hostnamehostname -f2⤵PID:924
-
/bin/unameuname -a2⤵PID:925
-
/usr/bin/awkawk "{ print \$11 }"2⤵PID:926
-
/bin/catcat /tmp/info_tmp2⤵PID:927
-
/bin/catcat /proc/cpuinfo2⤵
- Checks CPU configuration
PID:929 -
/bin/grepgrep bogomips2⤵PID:930
-
/usr/bin/awkawk " {print \$3}"2⤵PID:931
-
/bin/hostnamehostname -i2⤵
- Attempts to change immutable files
PID:932 -
/sbin/ifconfig/sbin/ifconfig2⤵PID:934
-
/bin/grepgrep eth2⤵PID:935
-
/usr/bin/wcwc -l2⤵PID:936
-
/usr/bin/headhead -1 /etc/debian_version2⤵PID:937
-
/bin/rmrm -rf /tmp/info_tmp2⤵PID:938
-
/bin/datedate "+%S"2⤵PID:939
-
/usr/bin/exprexpr 33 - 132⤵PID:940
-
/sbin/iptables/sbin/iptables -L input2⤵PID:942
-
/usr/bin/headhead -52⤵PID:943
-
/sbin/syslogd/sbin/syslogd -m 02⤵PID:946
-
/bin/rmrm -rf "../shv5*"2⤵PID:947
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
725KB
MD5c119e30e6cf65d40abec2ebdc4f1e9cb
SHA167fd5fdf3161a0c086932074844a8bbf444b8911
SHA2566b66d1462c569b1fd6de35d4a4efc7dfbd8bfe59a20c9a17b506ac468abf098b
SHA5122d8e1a6820e206e43c0449bbe4b613d19d63853270b3d0bdc5be12d4bcab89dcd4f5def8a81126d51984a9e8169526d1b44996a2c0a18bfb1d764040c865fe89
-
Filesize
340B
MD58c053b4b674ebfcf6d38503608c5c8db
SHA19927d232e5bb15e3b6bbe461e0041d74649b963a
SHA2566bdd745ccb67873f8e05c871ea6f153bb4daa683d7873e22c93fa716f53f61dc
SHA51235320ff6eed384649f02262a46bf9fdabdcf1f9808738b7c6af3fea01a1b54c963d038c984c3d794445030632ab1ae38c8d6bbf319a362233a40ac9314a55222
-
Filesize
24B
MD5ba6ed6a3d425270d5374b0c2b54b3008
SHA158635a2e5fa938e55f777cb55a6df5fe44f6b4ec
SHA25691c48fb19d87c95033df44d44e58474ab5e2a7176d231c11bb5e45c7d52fa359
SHA5126f2ecc0fe867ec1cc575dc8cbba8566ac32dea4252b355f4267afb18d15dd759baecac3d8b74656a6008b7d20be3033ee4650f8b9cece8c2eb2466dc6fcecd0c
-
Filesize
54B
MD50dae4739f83623a59236ecfabe00007b
SHA14b2b361ba9cf76213d2c4d6ba67e80099405f810
SHA256513dfa0b7341549c6141df2ebdf1eedf72f1904d47725a17213b3bcb80916ac0
SHA51212ab203d1434f29cf4b5f81d72a0790d9ddacd20df5d71e2a0d429b2bc8c80cff5c4a4c1332452deb9d84817088a1223f55ef2411f0605cfbe00eb2fe8aa1d74
-
Filesize
55B
MD521df30feebe94d25ce99e861e3642895
SHA13624439d7e9ac4463f83f1658205367ef27a2234
SHA256d3bfdb3e0f63a093f8e9bff6925ddc52429fe09fe4de521add28b373d44fe0f5
SHA51226fbc52d5c2984a74673397e6edce3bf8a14e4d52a1abc7ffdfbf1bae9768b2583512632625d01bac896c623b0ec10fa24f6aa3c54ec2a70450b02d9bb37cecb
-
Filesize
70B
MD574e8461d4c9dd715082f15ef51e3ecac
SHA10504be0510ac79c4f7c8d5477032408f9b63a651
SHA2569fff95a586ab017f278fbf2f579d424e29164b5fae02f509176b9a600c4091de
SHA5120682c5966466f49b1f53b872e5f10a4264f11a65f198f8e780365e6c683899815f90613cf8cd900d7b8d47247c343ab6002183a405313ac07fe026a2f634e02c
-
Filesize
5KB
MD5aef0778609d12066a26732722ab63f42
SHA1f6d97eaa94003ea3f70907c9d4a3fb50ffb57525
SHA256eca3253479966699a6377c78df0e2934915e571658fa3b5788230582d9c3d8ae
SHA5122925512da6c5728fb73e62d88cc9f8da9377be2d396d69d181e532730f3daebf188cd70818bb27003960e7d26904bec5b18240fde40d711ca89da3650ed8f69e
-
Filesize
42B
MD5f0a2dccf108969338c829700d2dedbea
SHA18daa48f1b0d9fe0f5204e5fbe53219ec3bd6bfe4
SHA25618883af5bb7d532b29d96a5f574180b69a2e717cec2d9bdb7281121b0c7b88a6
SHA51267ab595bdaa10dc47ea3cb479d3a4741eef538e4088726bb9e64988234d9a5cf9d0df876e1ebbd00fb79615e1aefeb8006bba4026a76e03f75aa5f3039d12f49
-
Filesize
84B
MD5dc1735d96a90ff69ba41bf58c3bc2f39
SHA1b5cbca6a62f9acb5c098f8f86a24f91412fa394d
SHA2567a8ab94bbac31a0f8ccbb76d7be88081936d23850927e34d75fc0c2e9b7d0f24
SHA512b176b66ff17fed27df65261beb14a1539079bf36e8bebcce894852296612088f0bcc69ad6d153936060289a35f3408a65b44578fd62b1da7db724808398ca0f6
-
Filesize
132B
MD5857c3956d4a1a4582e141faffb4b1779
SHA1e8a492beb7474ec753feb22218ec80ef225fba48
SHA256240ff5077cf70e5bdd3db05117b6616220b5fb640204e7f09098ba2533bb71b1
SHA5128dd66b41ae1cf9779ddeac7d6ec965e505632c5d68151a029d349416930953f900959aba8b2f77d4a2477140ed3ec3422c9fa43d164efb12ca6cca465711b2a3
-
Filesize
179B
MD5fa8d0415321078ae192da3f4126ecce8
SHA175cf9b5aecb0801f6a4d9f5b9a7b8276c6f72cb3
SHA256b0a80b13087310fd54ff6ae57345a499cbb2b3fa2b0e6dd0e5cbe5c63bc3b21d
SHA512941c83e63e1fbd481a2928a0e1f4e02deec4434989d7b28796203d5417de9a0fe7adee44d857136dbb0961209ef349ad6667600a83a8fc6949dda138aea1cc87
-
Filesize
229B
MD5d1220027882f8ccaf610795654f25b77
SHA1e03d19c941c886cfc84e0644acf4ca65647c2b92
SHA25693163ae54ecefea14f7c701c15e9c909582036b8fd8f61a94ff3c91dd90bf0de
SHA5123b4cde3abc06e2d571fac45d3f270e944e8ef235e5fa7a8eb7b16163f6c6f9624484e637fe2373d869a553e1c5786dbe8150abc4f317347aa569782d3aef47a4
-
Filesize
1B
MD568b329da9893e34099c7d8ad5cb9c940
SHA1adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
SHA25601ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
SHA512be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
-
Filesize
134KB
MD5138a27d6fe52fa1132760a4fa48922e0
SHA1e0250e4d7bf33a5a1064344224148b889cb15138
SHA25681a10dad907b23521461bd3fc83c2cedb2218933a328d9a05e3c9f6a9a1d42aa
SHA512ee0078afad63fc2aaffdebb7127d1c7d4459287fee75358f57c82d397c39b7bf64338fb6996dfb1747cd9a896d714b3c76f0948727be91550f1affa1c0298a9e
-
Filesize
86KB
MD5fd8041181f67149d6b84bed1401c0f3b
SHA16824b1ee73a9f50a97369a674a009ec687a09cff
SHA256e83717a87080eae8bd6772e08fe4b83c54cc1c5672cc02edf0e60de227118a95
SHA512a58ab85e69dd41f4c8d79c07eede01e240d0201957a96a386a6256a1474852fde4dce850f0237e664812a03801e57a50fa70a4b0da05e6ab65d1fae2e6277a75
-
Filesize
29KB
MD58e89133057a1152e19e05fcfd5034aae
SHA194301c22a1137deef4797a26eb04a4f68b814d96
SHA2567eb9347d691bea01ec8fcce0f055d0b94e36a9615bc69c203f764540b32047eb
SHA512f43d2b23033ff34d6bd9dfcb3a88a45fd59195638961b5192be4fc0d4d8304520e870bea1c9689f1ce1c84506b5e1f296a88961d1c88fca0a62d52cddffb0700
-
Filesize
81KB
MD5c93283a1ee71686a4c9c1a58495d61aa
SHA1e3a549212766c446f419cb20b627406a7c9cb372
SHA2565268d4cdcb0b1988dd8e1a549d3f68af322242ed05f0d7d46f263590fe138f95
SHA5120306a45375926837688073f0408e11a9236c143381aa9fd98c998feb523daa1f1f7ca1cb27ac3c62749b53149115315bba3527f06ef873e9416cd7a68537fcf5
-
Filesize
18KB
MD5d326548ef8d6a8cb14b495115c6e9c73
SHA1fee8b30669dc67e207bf6fcb2d36838f65a5c69a
SHA2568af3af6bf27f219619ca657f86e124fb5ee85d779df8af79a78eaf19a930224b
SHA512a5b6b1744da59b5531dd644ee318febd7588a7e0e8aa8b4543106ef0b00a4318a8fe2e6bd11c7ca85be61e59c9ff5643067e076ff9af19f4d1c663d7e3408c57
-
Filesize
84KB
MD516f0b6ac13b75fb60b9177800b730cc0
SHA1601e899aa19be08acc6965a17013807465757b9b
SHA25655d4baa5703049edd1091ab97e845ffa50af06427480c09637219751ab7517b2
SHA512f94d34cf451053146736a13cfb3d1b93ea22660544baa495e828f7d7dc01276bfcff8985cc35035b672655efcbf1607cdcd879ffe4ffe311b406ca22cc70df47
-
Filesize
33B
MD5b46702355aecfc0bd14c525655eccb8b
SHA185ae2258fdf63f04130470356e4d0ba13cce49b4
SHA256d4fe551995b5a5c5c71656ad1bf102c790f0a8a8415e1331ee9948e451a23db7
SHA512db411c4f553c0eefd8672bf395679d48fe7dd9ad467d2ee5e738dd62815b2091c191c32db87bf88ae1aad3689a020c2e565091e1086f5fd1733c75847091f151
-
Filesize
62B
MD553e75bf7964b0fb15cbe3028a151ed65
SHA1116589e3b65166f73be2c6e8bb3b09c07641a762
SHA256550618b776401129e1bf6000bc28a7891ab0a6431bac3382be1ee1a585282805
SHA512ec2f45bc08e02e16db6db32bb71daff158c4044ed7268b696a62bf0efe9de59c331d6afb0b9101b5686e41cc701c491d75b0617c18bb68fb3393bea2ba702316
-
Filesize
16KB
MD5a6bf94354cfeba3dbcd11f945c9675c4
SHA1a27339c994e7b65ef52ae9dc38a625b8d2241bf6
SHA25613eaf12dd225106747bd57c2bdc230e109038d83a2feaff34ab1148dbf9d9c28
SHA5120e495be99718139c7a8bde0b4f73fb995465c31d74ecc6ec696d7e8e17f0f6767950f94e6d5962e1541902ef93b6c35e4d90bdae38eb13327f1dfb830188a1e7