Analysis

  • max time kernel
    145s
  • max time network
    145s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-08-2024 22:29

General

  • Target

    c1b902bef7bb555a52dc9c6ca29b6612_JaffaCakes118.html

  • Size

    106KB

  • MD5

    c1b902bef7bb555a52dc9c6ca29b6612

  • SHA1

    618bdee7e4f31fdf7221d92d406295aff9695c74

  • SHA256

    00e3eea02a6bf0c474b7e1b74a24256bab16e10d5767d052c93aa294110e1658

  • SHA512

    b6535fc7d836e3e9feb403cb7bc604885390f74984c01e2d5b873c41cd5762e47c0fb076dc86bba016e0a0e4e4444952f812e97f70894917d106bc1a602c21ca

  • SSDEEP

    3072:lUZVYlAMYznpBgo559bLJwWMNgw5dAF3GNLzPh:+ZVMARznpBgo5MNgw5dA0

Score
3/10

Malware Config

Signatures

  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 10 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 12 IoCs
  • Suspicious use of FindShellTrayWindow 25 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\c1b902bef7bb555a52dc9c6ca29b6612_JaffaCakes118.html
    1⤵
    • Enumerates system info in registry
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:1836
    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8c31d46f8,0x7ff8c31d4708,0x7ff8c31d4718
      2⤵
        PID:3840
      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2128 /prefetch:2
        2⤵
          PID:872
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2196 /prefetch:3
          2⤵
          • Suspicious behavior: EnumeratesProcesses
          PID:964
        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2852 /prefetch:8
          2⤵
            PID:4200
          • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
            "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3216 /prefetch:1
            2⤵
              PID:1748
            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3248 /prefetch:1
              2⤵
                PID:2812
              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2336 /prefetch:1
                2⤵
                  PID:1484
                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:1
                  2⤵
                    PID:4372
                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5732 /prefetch:1
                    2⤵
                      PID:1528
                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5576 /prefetch:1
                      2⤵
                        PID:4328
                      • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                        "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5964 /prefetch:1
                        2⤵
                          PID:1428
                        • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                          "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
                          2⤵
                            PID:4592
                          • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                            "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7068 /prefetch:8
                            2⤵
                              PID:1936
                            • C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7068 /prefetch:8
                              2⤵
                              • Suspicious behavior: EnumeratesProcesses
                              PID:4840
                            • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                              "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6360 /prefetch:1
                              2⤵
                                PID:3352
                              • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1
                                2⤵
                                  PID:3552
                                • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                  "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6628 /prefetch:1
                                  2⤵
                                    PID:4868
                                  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6440 /prefetch:1
                                    2⤵
                                      PID:3416
                                    • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
                                      "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2104,16635469118485250092,15037043431361983174,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6560 /prefetch:2
                                      2⤵
                                      • Suspicious behavior: EnumeratesProcesses
                                      PID:6036
                                  • C:\Windows\System32\CompPkgSrv.exe
                                    C:\Windows\System32\CompPkgSrv.exe -Embedding
                                    1⤵
                                      PID:2008
                                    • C:\Windows\System32\CompPkgSrv.exe
                                      C:\Windows\System32\CompPkgSrv.exe -Embedding
                                      1⤵
                                        PID:2820

                                      Network

                                      MITRE ATT&CK Enterprise v15

                                      Replay Monitor

                                      Loading Replay Monitor...

                                      Downloads

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\2cff1120-45d3-403a-9054-de57326983a9.tmp

                                        Filesize

                                        10KB

                                        MD5

                                        cf0f2c981b9fe7356638b059400ea381

                                        SHA1

                                        0727987c9c70929350363716c0073215b0ce913e

                                        SHA256

                                        ae988cb80fc0b5086da3bfc1b8296f5c4db6fcf97b7d80fab5667633b4a0ff85

                                        SHA512

                                        231f7bb201583813858d5f66073c55ad6d8d92d42cc3ebbb6b6cec5b5305ff10590b6c3286e6460031033c011ae0479351b71288ae4e1b5a92def6910d303e4b

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                        Filesize

                                        152B

                                        MD5

                                        ab8ce148cb7d44f709fb1c460d03e1b0

                                        SHA1

                                        44d15744015155f3e74580c93317e12d2cc0f859

                                        SHA256

                                        014006a90e43ea9a1903b08b843a5aab8ad3823d22e26e5b113fad5f9fa620ff

                                        SHA512

                                        f685423b1eaee18a2a06030b4b2977335f62499c0041c142a92f6e6f846c2b9ce54324b6ae94efbbb303282dcda70e2b1597c748fddc251c0b3122a412c2d7c4

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

                                        Filesize

                                        152B

                                        MD5

                                        38f59a47b777f2fc52088e96ffb2baaf

                                        SHA1

                                        267224482588b41a96d813f6d9e9d924867062db

                                        SHA256

                                        13569c5681c71dc42ab57d34879f5a567d7b94afe0e8f6d7c6f6c1314fb0087b

                                        SHA512

                                        4657d13e1bb7cdd7e83f5f2562f5598cca12edf839626ae96da43e943b5550fab46a14b9018f1bec90de88cc714f637605531ccda99deb9e537908ddb826113b

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\0703b5d3-7a57-4860-af6c-c9090b56de6e.tmp

                                        Filesize

                                        874B

                                        MD5

                                        248d287c8dce15052d48259fd443751e

                                        SHA1

                                        3bf8a0c406a5cf5c6f7cfa630c48e8a58609129b

                                        SHA256

                                        e5db79c3eaa23891680a686706bde0deb405aa10724ba02fde4fb8055505b751

                                        SHA512

                                        81243e0f5efec44883e7c4dd9080c19a0583c1682c93404ba5dbd59b72e46e984ab240c1da0f1d5051e99499825d1276559e39ce57c0d626e922480e8642276e

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001b

                                        Filesize

                                        67KB

                                        MD5

                                        b4b711f3e747704ffe02b49791ce8cac

                                        SHA1

                                        ac7ce4cbd3c8ee66e3c8d9d209c1352c160c3b89

                                        SHA256

                                        f65bf40e2f0ce993b54772f703f72d53f0fa925457346fa8ec2031879ffa91d1

                                        SHA512

                                        b738deba57337a9147927f7dd35eab7c999dea6d2ff11f57fdc2e5b6f64326028a54778886548ba128a3f03ee333cc9e43de5162d8b578b85c290626577042db

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                        Filesize

                                        240B

                                        MD5

                                        9343af31b3a7d552362a544c03371ba9

                                        SHA1

                                        2d83dab2367a78a0df7cf9bffe5d8f3bd7fff9a4

                                        SHA256

                                        28863159d45085ea4072c0fc1b645563c03f91431cff2b55260fa67056b21c08

                                        SHA512

                                        ebc4b6f02ef61e62ed48550ab05b0607be71fa437c838c8bdc92d22033662ddff739d5a5e10961ea9feae29b579c5b91c863a5625276000d536bc23a0865416d

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                        Filesize

                                        216B

                                        MD5

                                        aa983eab3fd46c5ca2fef19d6dec1f63

                                        SHA1

                                        ecaa9e16cb723e1c608213bcbb8b7d1712e4a84f

                                        SHA256

                                        520419b57ecbda227ec00fba43a1fe6674e94d463fafe62c7d8192d9050b5102

                                        SHA512

                                        0d8cb3a2648610b8368d4b34acb57346cda103fba751ab564db0508ac44cc2d8f04449a5f46475a650840b824bbc6b7ca7a5b4a2ff903cb0ce72170ce6d659b9

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

                                        Filesize

                                        96B

                                        MD5

                                        29dcf6cae68629272a817f19b0f0d633

                                        SHA1

                                        9b1126b9dd5618ed084503edd716d1cd66e53371

                                        SHA256

                                        d4f6e6f7cbda22bcddf1ea097808ac177839d091f5a7dd92fc010d7696fe6641

                                        SHA512

                                        2554c6f2c3ff96719209cb4c2229ea146ec3043153ada8f2914d6ac55f4f70e58b29427071b6d7d2fba024c80e36b60531aa396516cf15f9a6ce3cd664400412

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

                                        Filesize

                                        3KB

                                        MD5

                                        046791b40f78584f26d8726b2503fc99

                                        SHA1

                                        254af6d69866c41c84298ba5fa1bed6967f02477

                                        SHA256

                                        06f5437cc693083b272807cc6253c422bf3d60282289cabb7b6dc73225e8f85d

                                        SHA512

                                        8fc803fac990d9eae99ec17e9fe35fd3e0335cd10c887f1766ac0ccaef7abd46222ef4d8c4cd2b7e9a0d0504dff5cc6fc12ff3b43864ae5844b32dbf826132a0

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                        Filesize

                                        5KB

                                        MD5

                                        3703ff38a2fa6600c3c6408c8d6a946c

                                        SHA1

                                        cfa18a7c4e5dfcce582aeea2360702107027a76c

                                        SHA256

                                        edb6f757e9af744803c0d840fd9ea10e8d7ff9766f6d4c891db5123a5a8e11b9

                                        SHA512

                                        2dac468c5c6567fcbe00d74698bd7b598be9a9e5288dabdfcc0df1ca9371a701a0ac9714d3bd31eabd20e3c08305509c5f33f4fc6ce062ab99975c55570a82b7

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

                                        Filesize

                                        7KB

                                        MD5

                                        d97cee87e0fb186ba54e6488786f31b9

                                        SHA1

                                        8582151f067b175648ba841c443339b9a68fc5bd

                                        SHA256

                                        57e8a81c4ba224112f30e2b77432220f5edce674e1b3b370a2d5563c4b3e58c3

                                        SHA512

                                        d3d02698963002ca30e385bb5487df6357f9238021c2254ccfb87d2bb75464bc92502c901cd771714c0a0d4313aebc5c23f71adc88179ed840df3a69fd4ca3a3

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5808d5.TMP

                                        Filesize

                                        540B

                                        MD5

                                        184a3ed751faa649764197cd906b1335

                                        SHA1

                                        7ab1548ed8405242bbc5458aea68a828ffb3217f

                                        SHA256

                                        d2e2715e9e25709315ea321d6c4f033af46391732b3a69ee386507489b967159

                                        SHA512

                                        d61093777ec0cebce090a92a2d4f3ebdd75a62a00ff6e5a57cccad92b5c88ee598592348edeff82bcda57cc208d8c0d4496fcc8e71c848d46c31c5f8c41152bb

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\bc895e90-da55-4740-8e35-f1708b830147.tmp

                                        Filesize

                                        6KB

                                        MD5

                                        dcadaa106ffd962d15f6da267e7a36fd

                                        SHA1

                                        fdb1777c9ac21346bd0e24d270a4c4127649ee11

                                        SHA256

                                        cdfbf8b11d06686bac1b22b9948a42e463a66de6e523971a63618be7fd933148

                                        SHA512

                                        49fe2dcaa8e492b5202bec922a6773d897d618995ffa7594a3076261fe7402a338e5e4311063cc9985860664b672ca2c204b083af8639a5bf018495c9e0078cd

                                      • C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

                                        Filesize

                                        16B

                                        MD5

                                        6752a1d65b201c13b62ea44016eb221f

                                        SHA1

                                        58ecf154d01a62233ed7fb494ace3c3d4ffce08b

                                        SHA256

                                        0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd

                                        SHA512

                                        9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

                                      • \??\pipe\LOCAL\crashpad_1836_SCCAQSGMQSWHHXIY

                                        MD5

                                        d41d8cd98f00b204e9800998ecf8427e

                                        SHA1

                                        da39a3ee5e6b4b0d3255bfef95601890afd80709

                                        SHA256

                                        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        SHA512

                                        cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e