23539d0bab8799e9d6caf81f2a798c037fc6f9931bcb4dc40fe0b394633b8fd0

Analysis

max time kernel
120s
max time network
108s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
18/08/2024, 14:18

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

b15799dc752fdbd6b274d73fc1556410N.exe
Size

191KB
MD5

b15799dc752fdbd6b274d73fc1556410
SHA1

d297a6d8dddf7251b7fd54d8d60d6b71fc350e3d
SHA256

23539d0bab8799e9d6caf81f2a798c037fc6f9931bcb4dc40fe0b394633b8fd0
SHA512

6f2a81c572c91434321bd6b1c24401ca126d5868658fbaf6f60c8b8f73811d61b58f100b3f326a04b884bc424dd460123903c9d3e8058cbd9829d5b4dbf18997
SSDEEP

3072:6pWpUFpEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFslEhLfyBE:PqFF2Ie+efsLCqFF2Ie+efsLrwP

Score

9^/10

discovery ransomware

Malware Config

Signatures

Renames multiple (4401) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware

Executes dropped EXE 2 IoCs

pid	Process
4556	_desktop.ini.exe
2756	Zombie.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\Zombie.exe	b15799dc752fdbd6b274d73fc1556410N.exe
File opened for modification	C:\Windows\SysWOW64\Zombie.exe	b15799dc752fdbd6b274d73fc1556410N.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019VL_MAK_AE-ppd.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_Grace-ul-oob.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\ipsptb.xml.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\System.Windows.Extensions.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Subscription-ul-oob.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp3-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_PrepidBypass-ppd.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\tr-TR\tipresx.dll.mui.tmp	_desktop.ini.exe
File created	C:\Program Files\Java\jdk-1.8\bin\ktab.exe.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeBusiness2019R_OEM_Perp4-ul-phn.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\Professional2019R_OEM_Perp-pl.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Client\C2R32.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\client-issuance-ul-oob.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusinessEntry2019R_PrepidBypass-ppd.xrm-ms.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\WordVL_KMS_Client-ppd.xrm-ms.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\7-Zip\Lang\zh-cn.txt.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\de\ReachFramework.resources.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Java\jdk-1.8\bin\api-ms-win-crt-locale-l1-1-0.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Java\jre-1.8\bin\api-ms-win-core-localization-l1-2-0.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\PowerPointR_Trial-pl.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\PowerPivotExcelClientAddIn.dll.tmp	Zombie.exe
File created	C:\Program Files\7-Zip\Lang\sr-spl.txt.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\it\System.Windows.Forms.Primitives.resources.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\it\UIAutomationProvider.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Java\jdk-1.8\jre\lib\security\cacerts.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Runtime.Handles.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Client\api-ms-win-core-synch-l1-2-0.dll.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019R_OEM_Perp-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\VisioStdCO365R_SubTest-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp2-pl.xrm-ms.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\api-ms-win-core-debug-l1-1-0.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Globalization.Extensions.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\pt-BR\UIAutomationProvider.resources.dll.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\es\PresentationUI.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Client\AppVDllSurrogate64.exe.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProjectProO365R_SubTrial-ul-oob.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp4-ppd.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\fr\System.Xaml.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\zh-Hant\Microsoft.VisualBasic.Forms.resources.dll.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeStudentR_Grace-ul-oob.xrm-ms.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\O365SmallBusPremR_SubTrial4-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Common Files\System\ado\msado26.tlb.tmp	_desktop.ini.exe
File created	C:\Program Files\Common Files\System\msadc\es-ES\msdaprsr.dll.mui.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Console.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.PowerBI.AdomdClient.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp4-ul-oob.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\sl-SI\tipresx.dll.mui.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.IO.FileSystem.Primitives.dll.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ja\PresentationUI.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\Microsoft.Win32.Registry.AccessControl.dll.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp3-pl.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\PublisherR_Trial-ppd.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019VL_MAK_AE-ul-oob.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\BORDERS\MSART4.BDR.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Security.Cryptography.Primitives.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\it\PresentationCore.resources.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\ru\UIAutomationProvider.resources.dll.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\MondoR_Subscription2-ppd.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Java\jdk-1.8\bin\api-ms-win-core-namedpipe-l1-1-0.dll.tmp	_desktop.ini.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProjectProR_Retail-pl.xrm-ms.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Threading.Thread.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.IO.FileSystem.dll.tmp	_desktop.ini.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ko\UIAutomationProvider.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Google\Chrome\Application\123.0.6312.123\Locales\ru.pak.tmp	Zombie.exe

System Location Discovery: System Language Discovery 1 TTPs 3 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	b15799dc752fdbd6b274d73fc1556410N.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	_desktop.ini.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Zombie.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 3512 wrote to memory of 4556	3512	b15799dc752fdbd6b274d73fc1556410N.exe	84
PID 3512 wrote to memory of 4556	3512	b15799dc752fdbd6b274d73fc1556410N.exe	84
PID 3512 wrote to memory of 4556	3512	b15799dc752fdbd6b274d73fc1556410N.exe	84
PID 3512 wrote to memory of 2756	3512	b15799dc752fdbd6b274d73fc1556410N.exe	83
PID 3512 wrote to memory of 2756	3512	b15799dc752fdbd6b274d73fc1556410N.exe	83
PID 3512 wrote to memory of 2756	3512	b15799dc752fdbd6b274d73fc1556410N.exe	83

C:\Users\Admin\AppData\Local\Temp\b15799dc752fdbd6b274d73fc1556410N.exe
"C:\Users\Admin\AppData\Local\Temp\b15799dc752fdbd6b274d73fc1556410N.exe"
1⤵
- Drops file in System32 directory
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:3512
- C:\Windows\SysWOW64\Zombie.exe
  "C:\Windows\system32\Zombie.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:2756
- C:\Users\Admin\AppData\Local\Temp\_desktop.ini.exe
  "_desktop.ini.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:4556

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\$Recycle.Bin\S-1-5-21-2412658365-3084825385-3340777666-1000\desktop.ini.tmp

Filesize
97KB

MD5
68a1d46fb88d3730f9f0a822cea13b54

SHA1
0b4e8843deaaad4218774d27a1dafc176b8f465a

SHA256
27a1a0ab2381310edc4bebb93114ce843b4f530ea600659ea169388f05a8566b

SHA512
d92bbfe82a362a84da753a45cfce9ccc918f4014c8c6f815e7ce387f4685c9b105b80bece90679e200d2100eec4eca3989ecd18b2fee6b674570abdb6b61ea0a

Download Submit
C:\Program Files\7-Zip\7-zip.chm.tmp

Filesize
209KB

MD5
1114b6f0e403136e25d54af3c45849b0

SHA1
96aa02971a97f74fbde1af29b9b5c1703e33c04b

SHA256
71b2f9f1bddb445878400df1a1890e8dbad278c2097e1a243401f35cdfd56f18

SHA512
a44107500f0375cfec5c9616fc8a9d8c5ac39cf1292abfe244c0e3f9e8e1cafc5e4877976643d497c50bd7635942634ce78a9108a7cc392188a12aa69dc75fd1

Download Submit
C:\Program Files\7-Zip\7-zip32.dll.tmp

Filesize
159KB

MD5
d29d4c5557dfde6f19c6cf419d292873

SHA1
854f5762ddc036f054ff92629bb2cc95f3d3a9c5

SHA256
add229b98b49d7cb56bc45573d1c9b42fda859e8b7181e97a9a3c447ef4cf18a

SHA512
cd8e7120ecf72fa172c0759e395711be2cc440bf8d385c6fdcd41967fce362eb74b1e7ebad684c111ce0dfcf32622fcbd9a7e85498d91435a950f718d9bab40d

Download Submit
C:\Program Files\7-Zip\7z.dll.tmp

Filesize
1.1MB

MD5
3bb25c1e3d180c14dbbc9f813d7d6276

SHA1
04e1bc77b7f9168127522c34651f50035e7b49a6

SHA256
a3805822ac6c0fa857257f763fd8983221448d85d3938fada3fd148074e1490f

SHA512
26ecbe66f9163b04e579c45a174f96fdc6f559a1b7db47a64531cbb848d0baa78586c34ca275fed74eeb04b41c30585d1a3f154df13c31334c4b46a1a448e036

Download Submit
C:\Program Files\7-Zip\7z.dll.tmp

Filesize
1.9MB

MD5
dc78de71990bce9994de207b566def96

SHA1
6f3aae23e90281d70cb07c5643b18965fce24f40

SHA256
0c0599d7c5b6b13c2d76a7875cd7c9daf8e345592e55cd6efc5e5da65425cbfb

SHA512
e4c0933e9919bed93ffaf825188da5a29909f312c4f135a5ca4af58046fcae79b6c53451e61c340f89e6d834a573b1cb9a22a9b6189ef64e499fc532cb2d1803

Download Submit
C:\Program Files\7-Zip\7z.exe.tmp

Filesize
641KB

MD5
421544f0c3a790d5e140baa00ae02bc5

SHA1
1ffdcfedf483d731f0249fefba80ea8aa9d42642

SHA256
8a79e861a4e7b2bd2768fba419d900b59b38cef658b8f15d8631eb89781c425c

SHA512
69d0b92007e8c13b960caf1e56f051429f9402bb4c8a91f1f7e800a7386dcac514612aa3f856a6155705698e3eab0026a855c9497d771ce899cae22d7941865d

Download Submit
C:\Program Files\7-Zip\7zFM.exe.tmp

Filesize
1.0MB

MD5
880afd862d1455d7da585aa5968ca0f3

SHA1
15d815703adc6f0bc613132a8c7285544dab53d6

SHA256
aad4a637eeb770bd7075309ac3d4e96a47a5ee25125038829291c82129ef5e17

SHA512
c8a7e7d870878cbf6f7d3bf838a232e4d78f5624a8724bc90a125f7c543953aeeda79368561a172b8572ba2c65eca025971566ad77432ff6695e799fdd959220

Download Submit
C:\Program Files\7-Zip\7zG.exe.tmp

Filesize
781KB

MD5
b4b13005f6ac25a92384d5baf350fc8c

SHA1
f4c158d5cda0f7a96c8b622aa55fd90f6f3710fb

SHA256
933c4e48855bfcecf9cf3397ed3e1daf85c26870a40fb72fbbc396088ac8385d

SHA512
19c81af1a7c104206fd18edbff481efefca5fd3af1edfb4c8c9b951a3858e00962cbb92f50342b04fb3772fde8092ca1ab88fb4dc75851f5f0e9d484ab0722e9

Download Submit
C:\Program Files\7-Zip\Lang\af.txt.exe

Filesize
107KB

MD5
a1d042cfd9d2cb37ec7c6d6a3d85cae9

SHA1
cda6dbb7a95cfbc6e0db285edb83ccc1919362c2

SHA256
3bfca4c234da4fed161c3f81bf4bd8f2197e0b337736dc991d6fa482cc522881

SHA512
85d7079327b13601566700ea55b862450fd13e458cf408248316322c1d0e8539b7995ab2227b05f1571c6d6a0593fe4a0a012848a6c42ec6f8a0cb8019a04b7d

Download Submit
C:\Program Files\7-Zip\Lang\ar.txt.tmp

Filesize
109KB

MD5
9c50bf56bb0d8a0b82fa514c81761044

SHA1
bee3a4d7590e135eca6366f9c305f0a065902eeb

SHA256
427cc90516575d4e62d6cda203dc37e50c85e120da8f520ac3f5e322bec483d0

SHA512
5e2b0fb605cf3ae5aba9e1fada455772e63afca9875759f6f7b218f7d1b4d4d9bcbac0c063886104c55023ae87d2d072c8eddef96827bd423d119ab79eebefbd

Download Submit
C:\Program Files\7-Zip\Lang\bn.txt.tmp

Filesize
111KB

MD5
aac7c5a9b20d78e6cf436811862b86fe

SHA1
03a15c5895f587d29cc10cebacf6301f26b7ca8f

SHA256
5ef9a1ad45461dcf772cda303333eb18f4f54cd73b48d12d46fde0db721efc63

SHA512
15d6c54add69ea56590c3b1a217c3ee577fa11dd8b276a586ac2ae9e485ebf4316af81c7d36e6ef962b26a3e903914e2516535b32283ac839775ca7ad65eb3ea

Download Submit
C:\Program Files\7-Zip\Lang\br.txt.tmp

Filesize
94KB

MD5
d0a76d05c3b9f3fd6e3e9ceecbfd4f94

SHA1
c317b72aae1b34718c75d863432dc0817c3776ff

SHA256
59ae864983aedf4bba3e54a1990e86bcd6a26876e2792745e82075181e333cef

SHA512
0349b9336152a3495036a24cf0194a9f65876055027502e0ae818830784cfca92f833393e895fac282b31f4caaa858a51c03034f3043a4cc71a6d3c62b2da15a

Download Submit
C:\Program Files\7-Zip\Lang\cs.txt.tmp

Filesize
106KB

MD5
fe11bded94f14d04e1bdfe56536b586e

SHA1
76d040f32f16c8cca2b67151ae88ab07c25d3732

SHA256
de565fba813dacc7955bfcb0c49b6bb8a8fbaab1a083f240888bc3b6c015b54b

SHA512
7f97856c7f0f7efa08ac2b77c47954fc184aa17d8dd4e4878b9a5b52a03682cf77533d41efa1f78022e62987c5901d8393ed3a6029d2d3d27aede068444eee42

Download Submit
C:\Program Files\7-Zip\Lang\cy.txt.tmp

Filesize
102KB

MD5
595893e7706ff1416f313a89ed9acdff

SHA1
0e5b4338673ae21bd11be55fb984ffab914791a9

SHA256
b87adce11133b95adbe270c1923261ba442b9c9a3bb00977e257dbf22b045c10

SHA512
8b190c552f202549ca2475e9e1de937128b89fe0650c245731b45a71731b766426cbb82837222be0f22687d551be592bdc070d11ae6715444294e3aff963be4b

Download Submit
C:\Program Files\7-Zip\Lang\de.txt.tmp

Filesize
106KB

MD5
1a99eabc59ac02f9a59492f7f23e5e0f

SHA1
c07cc4829bdf194ca1dc82eac6bc586b8a18e5f5

SHA256
a22227de4f8b5e724dae95522ce6b25b3cf0178573c5675cc764b315126701a4

SHA512
b80c67a37ee8045841bcd09bb0a40d0404ad2740cde871b81d80bb5c0814ab5e47609d5b0639c8af9a09f24fd2c9f562d7610bf34851084c7a36af131d7beeb3

Download Submit
C:\Program Files\7-Zip\Lang\el.txt.tmp

Filesize
113KB

MD5
94c08d811a5488e26496d967151b348f

SHA1
73ea35afdda96ad5400daa4c0d81f60bf24b00b4

SHA256
e28f374f135c1cc9371e9335df380271777aad97c874a47a31efaea93124d8a0

SHA512
12fb713a6e6f253b5a21146d424660470e45845024dca202fce1139409e84ae6a20711cea3c76710e5224b2ff0860d365fed72b047bbeab6194d7b36a04e884e

Download Submit
C:\Program Files\7-Zip\Lang\eo.txt.tmp

Filesize
102KB

MD5
f90bcbf05b185388cc69178376d3adf1

SHA1
897d0f5a0571d90be2e26112f50738c2d62a5cac

SHA256
7f6c996f24fc694ccd9edb61a0430fd0b9d927e663c59dbdbb7a20294315c1e0

SHA512
98335f7886c671fd4aa45da26bd71ab7da1335bb8076314356a6be163705fef296e38df88881fa9e1819bcc8190b45fc87602a1e2424dd08d611e2ebb9021e6e

Download Submit
C:\Program Files\7-Zip\Lang\es.txt.tmp

Filesize
106KB

MD5
358789b3739954248221876eabf9102b

SHA1
242e7fd2f92e89cad7cc1b0b328147351963945c

SHA256
34c02c40974f7aa76d8830958077b251a3f482792ab1616f41e8ccb2d1823945

SHA512
e51bd1daf98038aac47689192840df5939fe0b5d49b243eb635f2bf863b26d97dfeace091ed6918fd663cb03b93e425dbefad030ded4ab0965889124eb4f7fcd

Download Submit
C:\Program Files\7-Zip\Lang\et.txt.tmp

Filesize
104KB

MD5
fa3d0f1e3b8fb16d286fe526bde1a2eb

SHA1
dd53660b8613fc56a2f4b9e5409ea7c799f4a7ce

SHA256
db97e2449c960e1b68d9f1a4f3e307574987b22dd3a8484a91c59b92c5fa821e

SHA512
24390603cc74833556c1b4d19e39282b1eaa66cd168fee3c94e7436a78a64716f48e7adacb9eccfa621f5ffbc579ca851c5f2ae2f51a8d34e658a12bc7d920af

Download Submit
C:\Program Files\7-Zip\Lang\eu.txt.tmp

Filesize
105KB

MD5
d33109c1f9114e6579d5abc9bcd7eb2e

SHA1
e26b54e9480910e292cfea723a5a95c3fda64a80

SHA256
83c6a3b0daccb322a550589a46b0d6930fe428f0ecd083964e7840cb7c99e7a7

SHA512
4312783849fc70a817cbbb49a9f253e24450b8f42096b19dbbe3c737febe10cd98753ce381829b20411abf51d93196479af2d82f84a10bd2fc16d2098ceb7f55

Download Submit
C:\Program Files\7-Zip\Lang\ext.txt.tmp

Filesize
102KB

MD5
d3a061bcfccd4c941b6a863316e13566

SHA1
95e91a3301057e640b99f684600a423f348a4dda

SHA256
2de7bf432bf4e9737984d74b1843bf17e0bbacf55b0695057140334c58c30b28

SHA512
09eb0788ba754c017426b950572f271d8b3c7518207a6c911405c878ba424b2ad18b1bbd1133c897a03b6511d2af9a6f6b3e75c162c736b474cebcb9d676fab7

Download Submit
C:\Program Files\7-Zip\Lang\fa.txt.tmp

Filesize
110KB

MD5
09eebd2ee3355dea99b07c272ef1511e

SHA1
7c019724cc178394bcf3829bec2955f03a5327b2

SHA256
32a6a0fbe1bec3fdae97342fd09af9c5693d134b424092ac3d6009dd8be1a275

SHA512
4f828b5d0102b8de654bd197a4a759560b513ddd4b859da4e2f6379880254ac12f0a87c46a364ee2b7c9eeaaeb6fb8336d150d03b06856aa786d9b437b9f53f8

Download Submit
C:\Program Files\7-Zip\Lang\fi.txt.tmp

Filesize
106KB

MD5
d2bf3220f8b4fc96f7543ca0c70b8b94

SHA1
d968e010f25c126d2e4232931b9885197ee670d2

SHA256
5246800384586cb65e3c2c1e7a4beed5e6cb50ee6b4d325f59fc9e649db1e23d

SHA512
700c088091f7a5307d229f0993f1edac50ce69cefaf10ab629b0eba1c9730c9e6189c22c3c39ed4641571791e2967b23c94a8d5758c6129409ec9e88c8415d2a

Download Submit
C:\Program Files\7-Zip\Lang\fur.txt.tmp

Filesize
104KB

MD5
8ae69647d40bae21de9295ed4ecd887f

SHA1
eebece9cd735e94b08fc947e4a6498065e27a6ca

SHA256
c12fc04a68c278ad52df57e5c53e6eaa7783fe77ff02f9a0c829994c2fa539ca

SHA512
3b3d47ce9acdb936d856b5b72b3cb8958bdad7eb2dc9aff76212460e221e81002b7bf9b5363f92e2786289693dab4f68ff790359d2582397b453e7f354b3e041

Download Submit
C:\Program Files\7-Zip\Lang\fy.txt.tmp

Filesize
103KB

MD5
47f58d7c100aaeca76dfeccdde15ec41

SHA1
a3e211a85a0bb6261414f8960653c80c7c733c4b

SHA256
beb47649615d40366ad8316a62f5784434394d5f18ae14b405523e52f061d58e

SHA512
50c3e8f474b12f3f9d0a2a4a372d22ebeabfd22249a3dcbc59c4612cbf1c7e4a0e78138daf53965b7dc13c33f7a76039f8d8689b9772ad714a02d1f15f59ca3c

Download Submit
C:\Program Files\7-Zip\Lang\gl.txt.tmp

Filesize
103KB

MD5
e8984d488cdd3c7a1360758c2241601a

SHA1
5e594dc3ae75052d8db9cc30fd6cc09aec7e62f7

SHA256
1c671bf0051ff0946ae3c01a7ae1db6f2bf122400ebef4bef6b575b6ff58162a

SHA512
01fe14a326d197eada8b07aadcb2abe596d5de828db3b884c3fe5df39536b9e0b86ed7b02d25d372c47cdb72f2314695f1cdd130108871828f6b678dc2a8f589

Download Submit
C:\Program Files\7-Zip\Lang\he.txt.tmp

Filesize
108KB

MD5
cc7b1a9a2d0d3c0e6966c4fcc655adc1

SHA1
8411b02187433c6529ac45eb07ecf0bbc8d33b74

SHA256
cfed49ce04b6e1df970d28542b7bb9f975ea2494156b7351619c2b5ec6f66258

SHA512
66dfc3c56799534a3e858ccf99dd1c4329e0daf2c8e404a14b3a38622cc7da833bb1a2e3459b1a0d0058aa98c52b605483d27cfa4efa32c80e10743a299906b0

Download Submit
C:\Program Files\7-Zip\Lang\hi.txt.tmp

Filesize
111KB

MD5
9f4124515a00047240925b556b6c5d67

SHA1
ac424cdc0320dafd786e387044ad2e45bec86ff4

SHA256
6882a4ca3b9a61edce9123a6edf46a32ac4b99d9dcd1fc831f552cfdb9600f47

SHA512
96fe175c1e73cebd8561853b9ed36c50bc433612534ff69f03982629b7f2b3847d0e1ea5a948a42625ddfea082dec1207a52abf42f64121fc6493acc02ea9a0e

Download Submit
C:\Program Files\7-Zip\Lang\hr.txt.tmp

Filesize
102KB

MD5
a89dabf2db256501df8ff4193b8cb123

SHA1
e0feec6296a139c3a9b71ad5f64ae1340221a534

SHA256
619a8cab5509b701c1ad44665739f7a0e8690e01208bebbd93b6f4f13afc104e

SHA512
b2d19ac01a2b96b66aa70fb087cbeb30e771de37d25060236fbd71da8c43c41167d8ec6f4b56371c0afc047e4d7b53c3f7e393a2774cf8b975df815b739efd0b

Download Submit
C:\Program Files\7-Zip\Lang\hu.txt.tmp

Filesize
104KB

MD5
5c3c50ee91e00744640dc66b9751c0b2

SHA1
867b04b476e65e5af82c24e1d4a097c84ddbe569

SHA256
aa7812400c12d70fb52a2e5232662b42728b2f4a3cbf4e58dd6a1dc700c8e1d8

SHA512
16bb7cfa00c8a46e78919d4e5d236e0011f61b0845dba10acae79f95c915cd80e36ae807ab775f89c7e650787cb9ccdbf7bea148294c10f20233b1b0238b7433

Download Submit
C:\Program Files\7-Zip\Lang\hy.txt.tmp

Filesize
108KB

MD5
bad3d2b999ada7872dc4cfd7962c47fc

SHA1
abf89aa11e43b9a020df32757c4c082ace12f4a6

SHA256
3782ea0334ae70ff01537b9aee9e2c3fde2fa08a1f74972a11f2eb0828ba70a0

SHA512
af5b7e3c782d6d97c46f7c481a835c19436350f0b375ed1a4f6920ea0c1867c00c30ed0b2ff01abca6dfb8bbd976969f6015796c7af286049202fc11fd928667

Download Submit
C:\Program Files\7-Zip\Lang\id.txt.tmp

Filesize
102KB

MD5
4f924e789876f55d800ef1059e62083d

SHA1
3ab8279315225240a41309d4157c59f2867b1f8c

SHA256
b7c8a879f80cfb7c7947936d72f4144d93a30bd719aded64e1f2136c05305d2d

SHA512
7d061e9d7f87060fb247aba6a43c3087afb962eee3f2b6269efdeafe15dcad17bd5fc280b051cd37b4145c492a6659f905f0d4c13a5edec7af3953bd0e705842

Download Submit
C:\Program Files\7-Zip\Lang\io.txt.tmp

Filesize
106KB

MD5
adaf76e1e2f9da78bf47f6346af4b4b1

SHA1
22d5ba95595957c2e8e4e178a9b5d1ef1b62e67a

SHA256
eadd6fcc7fac5a1bc320758aa869055bac8f108f8eb4d6627bc164500b1089e7

SHA512
38f67f8dec76a3051d770a60764f459bc9d1f35969c3209af68d6f7dbf94c10a0c1e3cf1a1a2a41d105adfb2b5100842be2b76625c7e29e151697e2f91e19b1a

Download Submit
C:\Program Files\7-Zip\Lang\is.txt.tmp

Filesize
94KB

MD5
6aa91e2d59e6c98b5b70aa34f91eb57a

SHA1
8883559b94c145e0ae2c3f2837d43d81c7d9261c

SHA256
acc6ee68adc026341be4b43ccc9d77f1b0d62426c9c6fe64ede6087cb3ec36dd

SHA512
285070f4cc0cf3d6b7dd007618652df7aec43f49e62ad88690cd649f1455a075bd47c47c3a54cfe552b6732bf57d118e24e3b7520b67551b6beccc0da0d42330

Download Submit
C:\Program Files\7-Zip\Lang\it.txt.tmp

Filesize
106KB

MD5
ad32b050dbffbac81342c9d2e687283f

SHA1
ff31d734dd82b801c277227029d53287eb2e964c

SHA256
fab6734833392daf518bf858e5e8eba0742c016c1c39e539b62bb991483f15b5

SHA512
b1b390495658404416d382beb3a3ece7f843bf9c08872c01d97061826e912a2e68f272d96b5d88ffccbaa38cc55f6ca34cb43289ad398509499236d3918a523d

Download Submit
C:\Program Files\7-Zip\Lang\ka.txt.tmp

Filesize
114KB

MD5
8a022840b76cee1556d2e914926903de

SHA1
7076af02b7531f8e5a651ffdd39395a4d5a7bdde

SHA256
569cb701cdbf6de6c41e86b0246501c1a62095c48f4c53a5f9edb765dc23c660

SHA512
8b50818279ef050ba41d8186eac3f7676a2cf39cab0ecd0899d1bff977982878b5fd270da3488704e4042f9ede2736f9ec5bc163c22e540c9d44d9c078481bbf

Download Submit
C:\Program Files\7-Zip\Lang\kaa.txt.tmp

Filesize
105KB

MD5
ffb66c2f5258384876a1127eaa09b06e

SHA1
a27204ed7b0f861705180ee82b8a4dabe4f94f56

SHA256
3d0eff1d328da78c5dd501c1f839b75657b270598b9ce1e3596dba7ac6992ab2

SHA512
892aaa4216d7467a886be024ecdad134c151e6a5fad92c9d80da83f3646c6a7e6c06d5e31af3ec34075124b653a4e1a905752606c1bffb59d8ffabb1eec1f793

Download Submit
C:\Program Files\7-Zip\Lang\kab.txt.tmp

Filesize
105KB

MD5
1c1bfe983cf26e9f8fad1e6d35a5bacd

SHA1
f66c25e369a31fe2cd02bc820d809c931312a21c

SHA256
eee70d354c574edfee4f8ac23dc40959d02a969e01eae053f2559090d4f308ab

SHA512
0607350b2af5e2a838a8ac9d85e815e30485ae7e6664dc53d2b9ffa1cab5d9feb39fface2017197fe313632a818e779c88cfd8e5286df50d28f81b270aa95689

Download Submit
C:\Program Files\7-Zip\Lang\ko.txt.tmp

Filesize
107KB

MD5
e39c20df309a1a7c8e1430f6ac459a2b

SHA1
4f221bc2caadd0331e0e805cf0d081d11e0da447

SHA256
1054ba60b5d903dae1374814edd3515d154bf56d42f094b2f7320eb0e6bbd393

SHA512
df27fbab04467692051efc69cdd9e5bd21817d8d5909bb34dabe84327421d52fcbd34a12b3421a1abf40b09fb6b9b19593a15d0fa4d5d107b1d80e3c7bffffd9

Download Submit
C:\Program Files\7-Zip\Lang\ku.txt.tmp

Filesize
102KB

MD5
396a1b3bb5c661470a078160b3e272ca

SHA1
dfabe92e2850e113f5bc0f561a23b7a67637e103

SHA256
b8f711916b83882d7e38418fcd6712348fae4ac4bb5cfe9752eb44c3d5fcd5e1

SHA512
23066397ec37bcc754b97b830ead272163a3dfacde48d3dfba71b0bda7f4afd1173cd5fdbd2c08371bbb90d3c76195b2c0fc8ca2f01a5af516d5bd16953fa582

Download Submit
C:\Program Files\7-Zip\Lang\lv.txt.tmp

Filesize
102KB

MD5
7d90ef961ebd061a859c89a4b2ace298

SHA1
e3c26847d0b07dd40ca1dcaf1ccba9263af2c121

SHA256
678a2fca78aa6ef80ee9c5184ba7647825addc4827778da7ba63e02d38f11695

SHA512
d7681c68bdc9e98cc6039d4b3018b197ba9e5fe6ac5db29806c0697b17ca326af682849cd24188aa6630dff1d5629a73543c70a3e4309b96221830ddeba8a45a

Download Submit
C:\Program Files\7-Zip\Lang\mk.txt.tmp

Filesize
105KB

MD5
a27e04d04db0e5c29f3af9270e5c7883

SHA1
3765fc8e9c1161de12d749fbe5d2b776203dedaf

SHA256
ed16e27eca5de7ebfb83f800fe501c30d9cd459f7a5fae10e946ef0996fd7dce

SHA512
14f70661924f4c72e476d7a240025254eda51c8127cd9c45310985b8533527b04acf9778bf0d8566f13405887cac9e37f642bb84aa886ece86f15ff5f2f008f3

Download Submit
C:\Program Files\7-Zip\Lang\mn.txt.tmp

Filesize
105KB

MD5
f541bffe8ad797921da64a02344cb594

SHA1
7a4d0747d8040c41b6e1043ff7d848844d0390d1

SHA256
fdeed47f23baac268c417ba99c603a0010813776a73165437c035a7c588d1fa3

SHA512
98feaa57b6539851d22c2a4d0b67b3c0b5aa46a13fd15c391ecd554ccfa59a095b05e7dd0a719072841c809172704f5c0ef0be0a4880b3a3186d2edbefbc8184

Download Submit
C:\Program Files\7-Zip\Lang\ne.txt.tmp

Filesize
94KB

MD5
935dbd73f20f109baff27374b07a697c

SHA1
b60b4795705bb694eef63b40283178b3ed990ca3

SHA256
dd8856cf757ea2880d3f4b0423e44c31704b63eb8a1451b4d9c220a7ab389257

SHA512
b30b1e4fbe49a9bf5f33ac70b498264e6d766017ec70433abca29a5a862cfddce9543bd35e78db51b0610cd174fce7beb2dfbce104f121d9f647f231a3435707

Download Submit
C:\Program Files\7-Zip\Lang\nl.txt.tmp

Filesize
94KB

MD5
bc34b7b45b15ac6545c2de0f2c646fc4

SHA1
12e3107140cf97310b4280e5cb49de49345321f8

SHA256
f02047cb7df0dd16a8069e9c07f27c87415ab49501ba9844a9ff43d07db6a97d

SHA512
6b2be53127e30bd328f500ebb7991aee69cd72a21fa32806eca332d3820237cc2a3c80d6d2607809c4c8d57e4bb615e33761292358cfa9b0aea8fbaa39aad8ad

Download Submit
C:\Program Files\7-Zip\Lang\nn.txt.tmp

Filesize
102KB

MD5
de50278b50d6c12db19a3544cef70bd4

SHA1
035e8a9e8b240cebe4f518abbc8099dec2b3aa38

SHA256
72ae4d07bd6c0a9ea506edb1c824b63ab813ba7742d1224a0f6436028c9edfe5

SHA512
82dfd7bcb0ad3b5bf91ff90fb4cc8c70f6d50236ce65a41e71f1055862f2aa1863d707e3a7fb03d73ccebaf36c866cca07f991e3f61a0c3cb2aa6bed196b4c66

Download Submit
C:\Program Files\7-Zip\Lang\pl.txt.tmp

Filesize
104KB

MD5
f4e649e6739e55a797a4bde96c52774f

SHA1
7b77fff94ccb2af44c8195c9cdff93d5ced77466

SHA256
876dbbb4bdf20a50882de38a62ead554382aeda36af8a529ea16a7198a66d2b4

SHA512
dd981ca0a298e9e0fdd7720ae3d2cdcb068ef3dc9aacf69f78bf674455c231490bf3aa7a0de625b01c13dd4818ac65e31b177834ca0a8fdf68fea75820a5f887

Download Submit
C:\Program Files\7-Zip\Lang\ps.txt.tmp

Filesize
105KB

MD5
791aa02f9604151291d78414cdadd2eb

SHA1
76d882bb87f660640c26f2eabcc845e9c87891c4

SHA256
b257731078a3d958c26bef8af6b2b52b50f8597e38910edde40ded02e0e42b6b

SHA512
b26ef804427709184137769f6e2ef6fb8ebac83639efbc808fda1928cab4dd9989307b9a838505972a3830431f1350cabae3df2b8dcada8ef794cabd1bbdbfd6

Download Submit
C:\Program Files\7-Zip\Lang\pt-br.txt.tmp

Filesize
106KB

MD5
b541ee66d9808e1278f3cebd83e21bb0

SHA1
7e1659f5344bb71c74d8fc4deae5d453c9a8a8f5

SHA256
8e652f8fc3b2f993bf0c3de23fedde1ab502a8fae37e20b8df39c924e653f51d

SHA512
c6c0ec34312cfd54100822c255a0d9fa747f541db41e82abbbb5f971cddc6ea86d5ea325ed74f65912c381b569447e6ad751e48840f485443777c4dae9b6907c

Download Submit
C:\Program Files\7-Zip\Lang\pt.txt.tmp

Filesize
104KB

MD5
ef1daaed6b4bb5a4a8dd5827b68d6337

SHA1
6da2ac33458649817e2d06adaaf4a4f8ae947312

SHA256
d8558985af645021bf2a6dd13b7866c528e5b868fe3bb57f5762bdfce9d206f3

SHA512
b269c0fb2601ec6625e10dccedd8b8a11a5df5e3b15466f2d95408436a0c1599819ce7842c7d93072e2466e813b3741d418e72f51edb8dbb627c771b2d138ea5

Download Submit
C:\Program Files\7-Zip\Lang\ru.txt.tmp

Filesize
112KB

MD5
59ff855d9b8d99350c0f34aa82fe5eaa

SHA1
8322d749835a17a5be804dd761371df506386023

SHA256
bb37435814e8f0464b4bf58bb0f6888048168912d19f024867f3843b4cb7b5e2

SHA512
677eb0ae8d64ed5258ed4cae5072cbb38912cf6341aea6a975963ab1401efbcc840f63c67764eadc82b523549414989e07565c6c313bc4a3a119272a785bc55a

Download Submit
C:\Program Files\7-Zip\Lang\si.txt.tmp

Filesize
113KB

MD5
f625d0bc062857554605171a81d00c0d

SHA1
01aa2e1100b9c3629ee61500380014961fd05e88

SHA256
bc902b6ae9e64ea9041f03219c0e706e81853910dcb90d9a9ad1135a1538ea25

SHA512
0ed8f2189d7304200bfa2e1bb0a4e50964c9ebc84226fe4a8495ae5a3a1b51dd4a46bdf19cc74765bb7277e1608dd79f6fe294891d0af6de9bd9be6bedf1bfc0

Download Submit
C:\Program Files\7-Zip\Lang\sk.txt.tmp

Filesize
103KB

MD5
c3c073ad6469c37e497f20c31907aa9a

SHA1
e12326e7fe35265f6daf365a2b4ecaa2157bf074

SHA256
1c6dd4caedd9d79c897be2a5fecb2537c8ed04c797831c4771cf96f3dc0d60de

SHA512
03c8364aac1e087b8e61caf0cbfaf206460739dac37661a645e04fff4bd242c1a8de158ddd9f7302cf2e24072c63850da4932a007ab9382c32262f378b92bca8

Download Submit
C:\Program Files\7-Zip\Lang\sq.txt.tmp

Filesize
100KB

MD5
9a37ae724b9a47b8adc6d6675cf2af37

SHA1
55abec88a7ce37ad4060fef6ed159ef86745fadd

SHA256
5151c43749ebc5d190956cf5b5896d82df007d6afecd5a73aeb7225b48b33c5b

SHA512
90aeb9a16c5757b4af17cf44cdb5e5c67ebcd3409d84acbf242395cbf8be6e77998716034b53542108944f3d299cd113b71dad14cc226f4c3458b1b15ca04ac4

Download Submit
C:\Program Files\7-Zip\Lang\sr-spc.txt.tmp

Filesize
106KB

MD5
c6641ef45b5540fe502e53198e0b98ad

SHA1
3774eda601f476969094a1e0688fe4a8bd048ec9

SHA256
3cbd2ec53e2f86f2776e1fd44dee6b152ddf64e4496b1315ee071960d4c1786b

SHA512
4496ff9d3d9f3ea1a85ecdd323d905731f86c8c48161258ee7afb42d23579899855ed79102fbf1f13188062fa3ba44fec6ca9868cd9d87c2cc4313de09ee9265

Download Submit
C:\Program Files\7-Zip\Lang\sv.txt.tmp

Filesize
106KB

MD5
9a9955ca75f897173842156fc532dbda

SHA1
380749c6acd2c0e149dc0da9a8c5b944d6a28660

SHA256
1f364a57ac12164c00a5f4bc0ca3178b3348ba7fa884fe3d304cc52cf2e5fbf9

SHA512
05e50fdcfd073db8484691565204d0b44bc3d229bd2a5a321ec788e2ddb281b901c88330b83fd9f9fc8812835ce5c312e480e54cd3e353473b58291dd060d732

Download Submit
C:\Program Files\7-Zip\Lang\sw.txt.tmp

Filesize
105KB

MD5
24ed01cc9916ebe41be6e1267ff35b6a

SHA1
2f792eefcdc36e2c7c5ed333d10b40cf375c1a70

SHA256
ac28902705d9a2483683949cb5d25189dc082825dea983dc5b762bc1c20a9d87

SHA512
809414d6f30d5f488e75d756a32cd9571fbadbccd8d030704d95258b5a4da0e76b9c0090d143a20ee0e0bba0289833c0a73cff3b8213462c173e5338e318a103

Download Submit
C:\Program Files\Java\jdk-1.8\jre\lib\deploy\splash_11-lic.gif.tmp

Filesize
102KB

MD5
86d3616b84c43e2d446845635595683a

SHA1
80beaa28524a8c2ad462eef8b036e5ba6c760440

SHA256
278461808d9969e99f86a9ed0395558f1760f6a73e616cac907b586c3cfa1c54

SHA512
41351c61f076b4359d414429708a4db852ea30a4a288818f5b204bc21d8ef3c81defd611658b1e2267e645a471a7543a946fc8a537f6b794fe9ddb679c2d66f7

Download Submit
C:\Users\Admin\AppData\Local\Temp\_desktop.ini.exe

Filesize
97KB

MD5
1733ab1eb6a83ee6810d7099b53ebbc9

SHA1
a2cd95cad21baad9e296b823523284c1fdd430b8

SHA256
b83c6f9332b9bf6ed3e11bb72fad7c93f952df0df3b491085f8544f866fd31a3

SHA512
d7d7440dc7ff897bf512f4cf7cf1d63fecddd94e8c14cdd03dfafd7f2a8ac78b70c39b9eed2e7a4755ee47e6af4d42f61026dc5a6b82d015da779fa7cd0668b8

Download Submit
C:\Windows\SysWOW64\Zombie.exe

Filesize
94KB

MD5
8fa452db0aa2d006d8c2031fecd55be1

SHA1
07eea5563f673226bf4f589ccb1508d0e0ddebe3

SHA256
ff235c53282fddde4509ce80f6ed3866547e2647ef3abef983688260df7e8d4d

SHA512
6a889f3ee3800e0a20790d9839560a065a86a24dffa4fb7ba94849e211c80d8bc73d584e1d75e070627dc6bc1680d8bfcb9b73b7e45d50f54f81cad78bc86c49

Download Submit