Analysis
-
max time kernel
72s -
max time network
73s -
platform
debian-9_mips -
resource
debian9-mipsbe-20240611-en -
resource tags
arch:mipsimage:debian9-mipsbe-20240611-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem -
submitted
15-07-2024 23:17
Static task
static1
Behavioral task
behavioral1
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
ubuntu1804-amd64-20240508-en
Behavioral task
behavioral2
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-armhf-20240611-en
Behavioral task
behavioral3
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-mipsbe-20240611-en
Behavioral task
behavioral4
Sample
4bd599176fbaab489642f3fafb083862_JaffaCakes118
Resource
debian9-mipsel-20240611-en
General
-
Target
4bd599176fbaab489642f3fafb083862_JaffaCakes118
-
Size
23KB
-
MD5
4bd599176fbaab489642f3fafb083862
-
SHA1
0e04611e74f58029492a2df576844dc8c4529e4e
-
SHA256
c7d3a16ba29abcf5261b66af753f44124fcb3a303059f7cee04334983a3b6d16
-
SHA512
d2be3727188dfffaee6b96296f0404e8e208a83cb83fbcab4d6eb833b9305b844dffdf73af61c6c63ab607d38df6dfe43c83b1935d2fb28039320cf6bb780645
-
SSDEEP
384:z7WoIqPIkK+slvwzUvEEa2cC/bvynigxz9DYnY2c68:5IqAkK+slvwzF2CDYnYhf
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
Processes:
ttyloadioc pid process /usr/sbin/ttyload 816 ttyload -
Attempts to change immutable files 22 IoCs
Modifies inode attributes on the filesystem to allow changing of immutable files.
Processes:
chattrchattrhostnamechattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrchattrpid process 900 chattr 904 chattr 979 hostname 869 chattr 877 chattr 835 chattr 862 chattr 864 chattr 879 chattr 884 chattr 891 chattr 906 chattr 949 chattr 803 chattr 950 chattr 857 chattr 871 chattr 883 chattr 890 chattr 898 chattr 910 chattr 814 chattr -
Enumerates running processes
Discovers information about currently running processes on the system
-
Write file to user bin folder 1 TTPs 1 IoCs
Processes:
4bd599176fbaab489642f3fafb083862_JaffaCakes118description ioc process File opened for modification /usr/sbin/ttyload 4bd599176fbaab489642f3fafb083862_JaffaCakes118 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
Processes:
catdescription ioc process File opened for reading /proc/cpuinfo cat -
Reads CPU attributes 1 TTPs 1 IoCs
Processes:
psdescription ioc process File opened for reading /sys/devices/system/cpu/online ps -
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
Processes:
killallpidofmvpskillallkillallkillallkillallkillallkillallcpkillallkillallpidofkillallkillallkillallkillallmvkillallkillallkillalldescription ioc process File opened for reading /proc/704/stat killall File opened for reading /proc/345/stat pidof File opened for reading /proc/filesystems mv File opened for reading /proc/6/stat ps File opened for reading /proc/402/stat killall File opened for reading /proc/73/stat killall File opened for reading /proc/146/stat killall File opened for reading /proc/310/stat killall File opened for reading /proc/5/stat killall File opened for reading /proc/5/stat killall File opened for reading /proc/81/stat killall File opened for reading /proc/filesystems cp File opened for reading /proc/21/stat killall File opened for reading /proc/886/cmdline killall File opened for reading /proc/72/cmdline ps File opened for reading /proc/73/stat killall File opened for reading /proc/532/stat killall File opened for reading /proc/313/stat pidof File opened for reading /proc/371/cmdline ps File opened for reading /proc/2/stat killall File opened for reading /proc/77/stat killall File opened for reading /proc/383/stat killall File opened for reading /proc/145/stat killall File opened for reading /proc/371/stat killall File opened for reading /proc/76/stat killall File opened for reading /proc/77/stat killall File opened for reading /proc/72/stat killall File opened for reading /proc/78/stat killall File opened for reading /proc/36/stat killall File opened for reading /proc/799/stat pidof File opened for reading /proc/708/stat ps File opened for reading /proc/77/stat killall File opened for reading /proc/146/stat killall File opened for reading /proc/3/stat killall File opened for reading /proc/384/stat killall File opened for reading /proc/496/stat killall File opened for reading /proc/371/stat killall File opened for reading /proc/708/stat killall File opened for reading /proc/filesystems mv File opened for reading /proc/70/stat killall File opened for reading /proc/913/stat ps File opened for reading /proc/384/stat killall File opened for reading /proc/223/stat killall File opened for reading /proc/16/stat killall File opened for reading /proc/14/stat killall File opened for reading /proc/70/stat ps File opened for reading /proc/483/stat killall File opened for reading /proc/23/stat killall File opened for reading /proc/17/stat killall File opened for reading /proc/483/stat killall File opened for reading /proc/11/stat pidof File opened for reading /proc/146/stat pidof File opened for reading /proc/312/status ps File opened for reading /proc/345/stat killall File opened for reading /proc/708/stat pidof File opened for reading /proc/75/stat ps File opened for reading /proc/706/stat killall File opened for reading /proc/24/stat killall File opened for reading /proc/384/stat killall File opened for reading /proc/372/cmdline pidof File opened for reading /proc/496/stat killall File opened for reading /proc/114/cmdline killall File opened for reading /proc/705/stat killall File opened for reading /proc/78/cmdline pidof -
Writes file to tmp directory 8 IoCs
Malware often drops required files in the /tmp directory.
Processes:
4bd599176fbaab489642f3fafb083862_JaffaCakes118description ioc process File opened for modification /tmp/bin/.sh/sshd_config 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/conf/hosts.h 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.init1 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.init2 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.shmd5 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.procs 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/.stats 4bd599176fbaab489642f3fafb083862_JaffaCakes118 File opened for modification /tmp/info_tmp 4bd599176fbaab489642f3fafb083862_JaffaCakes118
Processes
-
/tmp/4bd599176fbaab489642f3fafb083862_JaffaCakes118/tmp/4bd599176fbaab489642f3fafb083862_JaffaCakes1181⤵
- Write file to user bin folder
- Writes file to tmp directory
PID:707 -
/usr/bin/whoamiwhoami2⤵PID:715
-
/bin/tartar zxf ./bin.tgz2⤵PID:717
-
/bin/tartar zxf ./conf.tgz2⤵PID:721
-
/bin/tartar zxf ./lib.tgz2⤵PID:725
-
/bin/tartar zxf ./utilz.tgz2⤵PID:729
-
/bin/tartar zxf ./sshd.tgz2⤵PID:738
-
/bin/rmrm -rf ./sshd.tgz2⤵PID:742
-
/bin/rmrm -rf bin.tgz conf.tgz lib.tgz utilz.tgz2⤵PID:743
-
/bin/sleepsleep 22⤵PID:744
-
/usr/bin/killallkillall -9 syslogd2⤵
- Reads runtime system information
PID:750 -
/bin/datedate "+%S"2⤵PID:751
-
/bin/sleepsleep 22⤵PID:753
-
/bin/hostnamehostname -f2⤵PID:756
-
/bin/grepgrep -v "^\$"2⤵PID:759
-
/bin/grepgrep -v "^#" /etc/syslog.conf2⤵PID:758
-
/bin/grepgrep "@"2⤵PID:760
-
/usr/bin/cutcut -d "@" -f 22⤵PID:761
-
/bin/unameuname -n2⤵PID:762
-
/bin/mvmv lib/libproc.a /lib/2⤵PID:763
-
/bin/mvmv lib/libproc.so.2.0.6 /lib/2⤵PID:764
-
/sbin/ldconfig/sbin/ldconfig2⤵PID:765
-
/usr/bin/md5summd5sum2⤵PID:767
-
/usr/bin/touchtouch -acmr /bin/ls /etc/sh.conf2⤵PID:768
-
/bin/chownchown -f root:root /etc/sh.conf2⤵PID:769
-
/usr/bin/chattrchattr +isa /etc/sh.conf2⤵PID:770
-
/bin/rmrm -rf /tmp/bin/.sh/shdcf22⤵PID:772
-
/bin/mvmv /tmp/bin/.sh/sshd_config /tmp/bin/.sh/shdcf2⤵PID:773
-
/bin/mvmv /tmp/conf/lidps1.so /lib/lidps1.so2⤵PID:774
-
/usr/bin/touchtouch -acmr /bin/ls /lib/lidps1.so2⤵PID:775
-
/usr/bin/touchtouch -acmr /bin/ls "/tmp/conf/*"2⤵PID:776
-
/bin/mvmv "/tmp/conf/*" /usr/include/2⤵PID:777
-
/bin/mkdirmkdir /lib/libsh.so2⤵PID:778
-
/usr/bin/touchtouch -acmr /bin/ls /lib/libsh.so2⤵PID:779
-
/bin/mkdirmkdir /usr/lib/libsh2⤵PID:780
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh2⤵PID:781
-
/bin/mvmv ".sh/*" /lib/libsh.so/2⤵PID:782
-
/bin/mvmv .sh/.bashrc /usr/lib/libsh2⤵PID:783
-
/bin/mvmv /lib/libsh.so/sshd /sbin/ttyload2⤵PID:784
-
/bin/chmodchmod a+xr /sbin/ttyload2⤵PID:785
-
/bin/chmodchmod o-w /sbin/ttyload2⤵PID:786
-
/usr/bin/touchtouch -acmr /bin/ls /sbin/ttyload2⤵PID:787
-
/usr/bin/chattrchattr +isa /sbin/ttyload2⤵PID:788
-
/bin/pidofpidof ttyload2⤵
- Reads runtime system information
PID:792 -
/bin/mvmv /tmp/bin/ttymon /sbin/ttymon2⤵PID:793
-
/bin/chmodchmod a+xr /sbin/ttymon2⤵PID:795
-
/usr/bin/touchtouch -acmr /bin/ls /sbin/ttymon2⤵PID:797
-
/usr/bin/chattrchattr +isa /sbin/ttymon2⤵PID:798
-
/bin/pidofpidof ttymon2⤵
- Reads runtime system information
PID:799 -
/bin/cpcp /bin/bash /lib/libsh.so2⤵PID:801
-
/usr/bin/chattrchattr -isa /etc/inittab2⤵
- Attempts to change immutable files
PID:803 -
/bin/catcat /etc/inittab2⤵PID:804
-
/bin/grepgrep -v ttyload2⤵PID:805
-
/bin/grepgrep -v getty2⤵PID:806
-
/bin/catcat /etc/inittab2⤵PID:808
-
/bin/grepgrep getty2⤵PID:809
-
/bin/catcat /tmp/.init22⤵PID:811
-
/usr/bin/touchtouch -acmr /bin/ls /usr/sbin/ttyload2⤵PID:812
-
/bin/chmodchmod +x /usr/sbin/ttyload2⤵PID:813
-
/usr/bin/chattrchattr +isa /usr/sbin/ttyload2⤵
- Attempts to change immutable files
PID:814 -
/usr/sbin/ttyload/usr/sbin/ttyload2⤵
- Executes dropped EXE
PID:816 -
/sbin/ttyload/sbin/ttyload -q3⤵PID:817
-
/sbin/ttymon/sbin/ttymon3⤵PID:818
-
/usr/bin/touchtouch -amcr /etc/inittab /tmp/.init12⤵PID:819
-
/bin/mvmv -f /tmp/.init1 /etc/inittab2⤵
- Reads runtime system information
PID:821 -
/bin/rmrm -rf /tmp/.init22⤵PID:822
-
/bin/grepgrep ttyload /etc/inittab2⤵PID:824
-
/usr/bin/md5sum/usr/bin/md5sum /bin/ps2⤵PID:826
-
/usr/bin/md5sum/usr/bin/md5sum /bin/ls2⤵PID:827
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/find2⤵PID:828
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/top2⤵PID:829
-
/usr/bin/md5sum/usr/bin/md5sum /usr/bin/md5sum2⤵PID:831
-
/tmp/encrypt./encrypt -e .shmd5 /dev/srd02⤵PID:832
-
/usr/bin/touchtouch -acmr /bin/ls /dev/srd02⤵PID:834
-
/usr/bin/chattrchattr a+r /dev/srd02⤵
- Attempts to change immutable files
PID:835 -
/bin/chownchown -f root:root /dev/srd02⤵PID:837
-
/bin/rmrm -rf .shmd52⤵PID:838
-
/usr/bin/touchtouch -acmr /sbin/ifconfig ifconfig2⤵PID:840
-
/usr/bin/touchtouch -acmr /bin/ps ps2⤵PID:841
-
/usr/bin/touchtouch -acmr /bin/ls ls2⤵PID:842
-
/usr/bin/touchtouch -acmr /bin/netstat netstat2⤵PID:843
-
/usr/bin/touchtouch -acmr /usr/bin/find find2⤵PID:845
-
/usr/bin/touchtouch -acmr /usr/bin/top top2⤵PID:846
-
/usr/bin/touchtouch -acmr /usr/sbin/lsof lsof2⤵PID:848
-
/usr/bin/touchtouch -acmr /sbin/syslogd syslogd2⤵PID:849
-
/usr/bin/touchtouch -acmr /usr/bin/slocate slocate2⤵PID:850
-
/usr/bin/touchtouch -acmr /usr/bin/dir dir2⤵PID:851
-
/usr/bin/touchtouch -acmr /usr/bin/md5sum md5sum2⤵PID:853
-
/usr/bin/touchtouch -acmr /usr/bin/pstree pstree2⤵PID:854
-
/bin/mkdirmkdir /usr/lib/libsh/.backup2⤵PID:856
-
/usr/bin/chattrchattr -isa /bin/ps2⤵
- Attempts to change immutable files
PID:857 -
/bin/cpcp /bin/ps /usr/lib/libsh/.backup2⤵PID:859
-
/bin/mvmv -f ps /bin/ps2⤵PID:861
-
/usr/bin/chattrchattr +isa /bin/ps2⤵
- Attempts to change immutable files
PID:862 -
/usr/bin/chattrchattr -isa /sbin/ifconfig2⤵
- Attempts to change immutable files
PID:864 -
/bin/cpcp /sbin/ifconfig /usr/lib/libsh/.backup2⤵PID:866
-
/bin/mvmv -f ifconfig /sbin/ifconfig2⤵PID:867
-
/usr/bin/chattrchattr +isa /sbin/ifconfig2⤵
- Attempts to change immutable files
PID:869 -
/usr/bin/chattrchattr -isa /bin/netstat2⤵
- Attempts to change immutable files
PID:871 -
/bin/cpcp /bin/netstat /usr/lib/libsh/.backup2⤵PID:873
-
/bin/mvmv -f netstat /bin/netstat2⤵PID:875
-
/usr/bin/chattrchattr +isa /bin/netstat2⤵
- Attempts to change immutable files
PID:877 -
/usr/bin/chattrchattr -isa /usr/bin/top2⤵
- Attempts to change immutable files
PID:879 -
/bin/cpcp /usr/bin/top /usr/lib/libsh/.backup2⤵
- Reads runtime system information
PID:880 -
/bin/mvmv -f top /usr/bin/top2⤵PID:881
-
/usr/bin/chattrchattr +isa /usr/bin/top2⤵
- Attempts to change immutable files
PID:883 -
/usr/bin/chattrchattr -isa /bin/ls2⤵
- Attempts to change immutable files
PID:884 -
/bin/cpcp /bin/ls /usr/lib/libsh/.backup2⤵PID:887
-
/bin/mvmv -f ls /bin/ls2⤵
- Reads runtime system information
PID:889 -
/usr/bin/chattrchattr +isa /bin/ls2⤵
- Attempts to change immutable files
PID:890 -
/usr/bin/chattrchattr -isa /usr/bin/find2⤵
- Attempts to change immutable files
PID:891 -
/bin/cpcp /usr/bin/find /usr/lib/libsh/.backup2⤵PID:893
-
/bin/mvmv -f find /usr/bin/find2⤵PID:895
-
/usr/bin/chattrchattr +isa /usr/bin/find2⤵
- Attempts to change immutable files
PID:898 -
/usr/bin/chattrchattr -isa /usr/bin/pstree2⤵
- Attempts to change immutable files
PID:900 -
/bin/cpcp /usr/bin/pstree /usr/lib/libsh/.backup2⤵PID:902
-
/bin/mvmv -f pstree /usr/bin/pstree2⤵PID:903
-
/usr/bin/chattrchattr +isa /usr/bin/pstree2⤵
- Attempts to change immutable files
PID:904 -
/usr/bin/chattrchattr -isa /usr/bin/md5sum2⤵
- Attempts to change immutable files
PID:906 -
/bin/cpcp /usr/bin/md5sum /usr/lib/libsh/.backup2⤵PID:908
-
/bin/mvmv -f md5sum /usr/bin/md5sum2⤵PID:909
-
/usr/bin/chattrchattr +isa /usr/bin/md5sum2⤵
- Attempts to change immutable files
PID:910 -
/usr/bin/touchtouch -acmr /bin/ls /tmp/utilz2⤵PID:914
-
/usr/bin/touchtouch -acmr /bin/ls "/tmp/utilz/*"2⤵PID:915
-
/bin/mvmv /tmp/utilz /usr/lib/libsh/2⤵PID:916
-
/bin/mkdirmkdir /usr/lib/libsh/.sniff2⤵PID:918
-
/bin/mvmv /tmp/bin/shsniff /usr/lib/libsh/.sniff/shsniff2⤵PID:919
-
/bin/mvmv /tmp/bin/shp /usr/lib/libsh/.sniff/shp2⤵PID:920
-
/bin/mvmv /tmp/bin/shsb /usr/lib/libsh/shsb2⤵PID:921
-
/bin/mvmv /tmp/bin/hide /usr/lib/libsh/hide2⤵PID:923
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/.sniff/shsniff2⤵PID:924
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/.sniff/shp2⤵PID:925
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/shsb2⤵PID:926
-
/usr/bin/touchtouch -acmr /bin/ls /usr/lib/libsh/hide2⤵PID:927
-
/bin/chmodchmod +x "/usr/lib/libsh/.sniff/*"2⤵PID:928
-
/bin/chmodchmod +x /usr/lib/libsh/shsb2⤵PID:929
-
/bin/chmodchmod +x /usr/lib/libsh/hide2⤵PID:930
-
/bin/psps aux2⤵
- Reads CPU attributes
- Reads runtime system information
PID:931 -
/bin/catcat /tmp/.procs2⤵PID:933
-
/bin/grepgrep named2⤵PID:934
-
/bin/catcat /tmp/.procs2⤵PID:936
-
/bin/grepgrep smbd2⤵PID:937
-
/bin/catcat /tmp/.procs2⤵PID:939
-
/bin/grepgrep rpc.statd2⤵PID:940
-
/bin/rmrm -rf /tmp/.procs2⤵PID:941
-
/bin/catcat /tmp/.stats2⤵PID:944
-
/bin/grepgrep 4432⤵PID:945
-
/bin/grepgrep http2⤵PID:946
-
/bin/rmrm -rf /tmp/.stats2⤵PID:947
-
/bin/mkdirmkdir /usr/lib/libsh/.owned2⤵PID:948
-
/usr/bin/chattrchattr +isa /usr/lib/libsh2⤵
- Attempts to change immutable files
PID:949 -
/usr/bin/chattrchattr +isa /lib/libsh.so2⤵
- Attempts to change immutable files
PID:950 -
/usr/bin/killallkillall -9 -q nscd2⤵
- Reads runtime system information
PID:951 -
/usr/bin/killallkillall -9 -q xntps2⤵
- Reads runtime system information
PID:952 -
/usr/bin/killallkillall -9 -q mountd2⤵
- Reads runtime system information
PID:953 -
/usr/bin/killallkillall -9 -q mserv2⤵
- Reads runtime system information
PID:954 -
/usr/bin/killallkillall -9 -q psybnc2⤵
- Reads runtime system information
PID:955 -
/usr/bin/killallkillall -9 -q t0rns2⤵
- Reads runtime system information
PID:956 -
/usr/bin/killallkillall -9 -q linsniffer2⤵
- Reads runtime system information
PID:957 -
/usr/bin/killallkillall -9 -q sniffer2⤵
- Reads runtime system information
PID:958 -
/usr/bin/killallkillall -9 -q lpsched2⤵
- Reads runtime system information
PID:959 -
/usr/bin/killallkillall -9 -q sniff2⤵
- Reads runtime system information
PID:960 -
/usr/bin/killallkillall -9 -q sn1f2⤵
- Reads runtime system information
PID:961 -
/usr/bin/killallkillall -9 -q sshd22⤵
- Reads runtime system information
PID:962 -
/usr/bin/killallkillall -9 -q xsf2⤵
- Reads runtime system information
PID:963 -
/usr/bin/killallkillall -9 -q xchk2⤵
- Reads runtime system information
PID:964 -
/usr/bin/killallkillall -9 -q ssh2d2⤵
- Reads runtime system information
PID:965 -
/sbin/ifconfig/sbin/ifconfig eth02⤵PID:967
-
/bin/grepgrep "inet addr:"2⤵PID:968
-
/usr/bin/awkawk -F " " " {print \$2} "2⤵PID:969
-
/usr/bin/cutcut -c6-2⤵PID:970
-
/bin/hostnamehostname -f2⤵PID:971
-
/bin/unameuname -a2⤵PID:972
-
/usr/bin/awkawk "{ print \$11 }"2⤵PID:973
-
/bin/catcat /tmp/info_tmp2⤵PID:974
-
/bin/catcat /proc/cpuinfo2⤵
- Checks CPU configuration
PID:976 -
/bin/grepgrep bogomips2⤵PID:977
-
/usr/bin/awkawk " {print \$3}"2⤵PID:978
-
/bin/hostnamehostname -i2⤵
- Attempts to change immutable files
PID:979 -
/sbin/ifconfig/sbin/ifconfig2⤵PID:981
-
/bin/grepgrep eth2⤵PID:982
-
/usr/bin/wcwc -l2⤵PID:983
-
/usr/bin/headhead -1 /etc/debian_version2⤵PID:984
-
/bin/rmrm -rf /tmp/info_tmp2⤵PID:985
-
/bin/datedate "+%S"2⤵PID:986
-
/usr/bin/exprexpr 20 - 212⤵PID:987
-
/sbin/iptables/sbin/iptables -L input2⤵PID:989
-
/usr/bin/headhead -52⤵PID:990
-
/sbin/syslogd/sbin/syslogd -m 02⤵PID:993
-
/bin/rmrm -rf "../shv5*"2⤵PID:994
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1.2MB
MD559d4ddd8dafe5d32d364d3f079f9d047
SHA1123c130531cd265e7a4ed43ac71ea9b280ccf15c
SHA2560df0983446a29ee4a99d696871c53ff5346a282fdddb85779cd1ccb338bc18d2
SHA512433fb7514c3ea8eba49980a97004e19d104643a93df08fb28d9e6886c2ccf845b894b3dd7e42dccfa493b4f8d58dfa2056677e370dcba10096fe886c3d0545a9
-
Filesize
340B
MD58c053b4b674ebfcf6d38503608c5c8db
SHA19927d232e5bb15e3b6bbe461e0041d74649b963a
SHA2566bdd745ccb67873f8e05c871ea6f153bb4daa683d7873e22c93fa716f53f61dc
SHA51235320ff6eed384649f02262a46bf9fdabdcf1f9808738b7c6af3fea01a1b54c963d038c984c3d794445030632ab1ae38c8d6bbf319a362233a40ac9314a55222
-
Filesize
24B
MD5ba6ed6a3d425270d5374b0c2b54b3008
SHA158635a2e5fa938e55f777cb55a6df5fe44f6b4ec
SHA25691c48fb19d87c95033df44d44e58474ab5e2a7176d231c11bb5e45c7d52fa359
SHA5126f2ecc0fe867ec1cc575dc8cbba8566ac32dea4252b355f4267afb18d15dd759baecac3d8b74656a6008b7d20be3033ee4650f8b9cece8c2eb2466dc6fcecd0c
-
Filesize
54B
MD50dae4739f83623a59236ecfabe00007b
SHA14b2b361ba9cf76213d2c4d6ba67e80099405f810
SHA256513dfa0b7341549c6141df2ebdf1eedf72f1904d47725a17213b3bcb80916ac0
SHA51212ab203d1434f29cf4b5f81d72a0790d9ddacd20df5d71e2a0d429b2bc8c80cff5c4a4c1332452deb9d84817088a1223f55ef2411f0605cfbe00eb2fe8aa1d74
-
Filesize
55B
MD521df30feebe94d25ce99e861e3642895
SHA13624439d7e9ac4463f83f1658205367ef27a2234
SHA256d3bfdb3e0f63a093f8e9bff6925ddc52429fe09fe4de521add28b373d44fe0f5
SHA51226fbc52d5c2984a74673397e6edce3bf8a14e4d52a1abc7ffdfbf1bae9768b2583512632625d01bac896c623b0ec10fa24f6aa3c54ec2a70450b02d9bb37cecb
-
Filesize
70B
MD574e8461d4c9dd715082f15ef51e3ecac
SHA10504be0510ac79c4f7c8d5477032408f9b63a651
SHA2569fff95a586ab017f278fbf2f579d424e29164b5fae02f509176b9a600c4091de
SHA5120682c5966466f49b1f53b872e5f10a4264f11a65f198f8e780365e6c683899815f90613cf8cd900d7b8d47247c343ab6002183a405313ac07fe026a2f634e02c
-
Filesize
5KB
MD5667258594d37069bc1f95b03bdb26077
SHA10eba2ec0d782a02c19d073fa19e3f9236da34317
SHA25653df39dec9e2c3b170355ccc3b9cd4ecda72370fa77a1147eeb66a57617e141d
SHA512aa1fd900136effd8a8d2bb20933948fdfb988feb7da34a5ab8072ad3a871a25bb318364e8fefa8025818195ab27a31c55cd1081249c09611c94311c0c33eede9
-
Filesize
42B
MD5a142966484e4fa766d5b0ba009adcc4d
SHA1475312960c96053dbdcea844bd924270fa4d0d92
SHA25623754f3d7f436e41822bfdf2c84a1b26d9648fd63c00a051dadcb1add8cc8d38
SHA5124302144590ca1e72d10aea3737d868dfb3900325cc723bd5569c7c06d97d625522064944dbf24600a019466919c210a605a9669793951102d473b3167b30ef7f
-
Filesize
84B
MD57219d79f78b22bb838fa3aa91df8f1b5
SHA1d9f1e8979927bbbe01e6a81c1461b80d7d1e5dd9
SHA25672cd95262c9e840adacfd9b26841774bf1ccf108bd8bf90959014dca47e1826c
SHA51202acd3630e7aefbae724564145a4367d9312c37e7f51d35c05b41dc8c92e7dd121fa0baaa02308a83471c57a2355e9e5e2c5c8fd1ab8951c7b64f03c22ca00cd
-
Filesize
132B
MD50da64e6935b4052896bed0234ccf0638
SHA10cbe4411c422da3e6b067ab9cbe8cad571c394f4
SHA256b403c409b13822ee1a3de6bd2c77d211045bf9ac27c9cc8ee8c7435afa06d726
SHA51202f9e94f46f99d79b17a3c603884cdc1a4210086591f3f0257fadba25b85c54d3ae31644d4d7b1b6a6f8200cd26ce47a9e89b2c8a4a9e2c8ec1e3d24b0c2218c
-
Filesize
179B
MD53d8093ee63635cb0f62b6609a59468a3
SHA12ee12c85b4e0766268ef92f6dbeb12f74efa3a8a
SHA256b8acb3c4f4cb02911febe0342ccc8d152f025ce95c2c7bc9640482cf297e50e4
SHA512eae2d20f56ed699500a7ad0913ab9280ef43ce855bdab04db9c50562323867269b56d8b3d6b29d87b6e60557d08927f2aea7cce69f701b1c2699fcbe1f40efde
-
Filesize
229B
MD5c33172192a05f176033f7ef4fb6366aa
SHA144303d41fca5a06a360efa3ad384257d22118a62
SHA256403c3d73839b70e99a88f9d7005ad80685e3c54a020822d9ef9d3b3b8a7003ea
SHA51274cb4265d0ccbb06f61e64219002608fa6925235cf630dab81a0cb8cd233180f692557a0bd8ffd72f9b2f9700c11794a19cfadf8dfabd4e200120d7ae4c5dd4c
-
Filesize
1B
MD568b329da9893e34099c7d8ad5cb9c940
SHA1adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
SHA25601ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
SHA512be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09
-
Filesize
240KB
MD597b5c6c1b307114efc38193175a343c3
SHA124015d4f95c6878ea5027c134eddebb7126b610f
SHA256b1a89f313023b476fc826d8fac689679504e61ae8e650681fb966e810ed34970
SHA512e5359f3e082f54f5cfd7afa7771d8724d161d48d09372f203bdca222a47a63919fdfb76b6db7fb8ff61e92f8fd04fdec962e94331ff12705cf53ce5e23d33180
-
Filesize
151KB
MD526a61638b9adcf33bdf75aaf905f183f
SHA14447e881c94f6054d602099e504fadf13e32ba2e
SHA256c9fec147777ddab82f8e5ed3b4d8181686c291440cef7aa0d9336ab88d35fde9
SHA512db8f7b10bad548923974d91f3407a831802ce5595648f55af06e923fd7d1980f100bab85d6e088dd0f2adf98c63ffab42c590e733790fa37c9010dd6951fedcf
-
Filesize
49KB
MD5bc2ae3c09ce773bfb3e92d2bf8ede6ea
SHA16a590a62de47e308ec4bd0fbbc6b77e22b9cfd61
SHA256984b34e82702c1e1c967050f684d0ada601215451fa68ff6629e9e8df7258172
SHA512dcab4048eafc622f5be0cc0b28e95ccf7e2a8033b22dd996f01352fd437a4a8424d79816e6f88bee7fcbd7f78ee66145381acbd89d7f3fe4b9416b386283678c
-
Filesize
118KB
MD569a3710ded58f73be52a7044f657fd3c
SHA14fed31f8fb6e45a85991047817f071f4679f5e4a
SHA2563228f37325fbea367ee9c696f5d70b35e5039fca394b0710a250462cbadb7ce0
SHA5124564394a034eced894e72259ec86a52e1b5727bd00a48e3e36e3a507e5ecc20d1091360da3bd3890d4a9ed9f610251406b3c2a792be27083ce5ebf4937ed46d6
-
Filesize
26KB
MD5b50f49b8ce8dc659e3fc303e58194d98
SHA1e7ecfedde9c843eac59b78c52cbdf887f41c0148
SHA25610ff5e8257ca77c4543eed2324ff264d178ae0ce20c3aa00a36e7d45d636d777
SHA5129c8db125ba78f382811d7e6f7c6cb304a35ec97875b555c05179c906e153ef2c743205cdc1a6a1faf0a970dc15a7dd0bc2c7b3ef4711f4e83d7f1878d21f39c9
-
Filesize
116KB
MD5e7d7268ac21b933b811affa4085a6d16
SHA1fdd45ceec126ca49ce7bc30901cc21f1ec5ee59b
SHA256bc18d4c41b35f4b1f7e85b3c76a4dd00fd1b862ce07b7ed5fc3a6a97cde039ee
SHA512be56a771991a1d99a21560b496846cff9eb54a1036adfdaa0a37bbfe9adc148e2ca425ba9092d4d4e2a2323affe1dded974479d82fdd0c58cddb9e27868cf008
-
Filesize
33B
MD5b46702355aecfc0bd14c525655eccb8b
SHA185ae2258fdf63f04130470356e4d0ba13cce49b4
SHA256d4fe551995b5a5c5c71656ad1bf102c790f0a8a8415e1331ee9948e451a23db7
SHA512db411c4f553c0eefd8672bf395679d48fe7dd9ad467d2ee5e738dd62815b2091c191c32db87bf88ae1aad3689a020c2e565091e1086f5fd1733c75847091f151
-
Filesize
62B
MD553e75bf7964b0fb15cbe3028a151ed65
SHA1116589e3b65166f73be2c6e8bb3b09c07641a762
SHA256550618b776401129e1bf6000bc28a7891ab0a6431bac3382be1ee1a585282805
SHA512ec2f45bc08e02e16db6db32bb71daff158c4044ed7268b696a62bf0efe9de59c331d6afb0b9101b5686e41cc701c491d75b0617c18bb68fb3393bea2ba702316
-
Filesize
16KB
MD51a71e452a82883488b050dedec78788d
SHA17991d8edff285450d0ebd0bbb7ad5d4f79f803e5
SHA256ded190ca15a72591016d81b5405351ac765504cae0a578bdb4538ca3fc7239cd
SHA512cb3c8bae1d229e75201b9d2872a4ceaffdca54cf4da11eb6b50aac80219b037da58c264e9a4a511b8682d5e9987b33129bc495ab8ec0e92002c174180afa09a5