2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1

Analysis

max time kernel
120s
max time network
93s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
28/09/2024, 05:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe
Size

164KB
MD5

91c664ae8dddfaf98023582dde798a20
SHA1

1d5181d63fb526a029be65635ee90f7c2fb0bf71
SHA256

2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1
SHA512

e79c16318f943be287100346279ed8f5ad100fffab956adb389a2543d11e0800d9fa3ce365ac1a9780eea9bc1f220e8cd3a522230b2be740ce6999e0fbfd603a
SSDEEP

3072:6pWpkuK4+bE1F4c2LpWpkuK4+bE1F4c2l:PCeFekCeFel

Score

9^/10

discovery ransomware

Malware Config

Signatures

Renames multiple (4528) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
ransomware

Executes dropped EXE 2 IoCs

pid	Process
2892	Zombie.exe
2612	_Quick Assist.lnk.exe

Drops file in System32 directory 2 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\Zombie.exe	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe
File opened for modification	C:\Windows\SysWOW64\Zombie.exe	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File opened for modification	C:\Program Files\Common Files\System\ado\de-DE\msader15.dll.mui.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Net.WebSockets.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Runtime.CompilerServices.Unsafe.dll.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\de\UIAutomationClient.resources.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\VisioStdR_Grace-ul-oob.xrm-ms.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\TellMeWord.nrr.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\es-ES\TabTip.exe.mui.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskmenu.xml.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jdk-1.8\jre\LICENSE.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.Data.Edm.NetFX35.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ReachFramework.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jdk-1.8\jre\legal\jdk\relaxngom.md.tmp	Zombie.exe
File created	C:\Program Files\Common Files\System\msadc\adcjavas.inc.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Security.Cryptography.X509Certificates.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\zh-Hans\PresentationUI.resources.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\ja\System.Windows.Forms.Primitives.resources.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jre-1.8\lib\deploy\messages_zh_HK.properties.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProjectStdVL_MAK-ppd.xrm-ms.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\en-US\ShapeCollector.exe.mui.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\InkDiv.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\Word2019R_OEM_Perp-ppd.xrm-ms.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp3-ul-oob.xrm-ms.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019R_Grace-ul-oob.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\AppXManifest.xml.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_OEM_Perp3-ul-phn.xrm-ms.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\zh-Hant\System.Windows.Forms.Primitives.resources.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jre-1.8\bin\npt.dll.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\ADDINS\Microsoft Power Query for Excel Integrated\bin\Microsoft.DataIntegration.FuzzyMatchingCommon.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Google\Chrome\Application\123.0.6312.123\Locales\ko.pak.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\QuickStyles\bwnumbered.dotx.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlusR_OEM_Perp2-ul-phn.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ja\System.Windows.Forms.Primitives.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\8.0.2\ko\Microsoft.VisualBasic.Forms.resources.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jre-1.8\bin\fontmanager.dll.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProjectPro2019XC2RVL_MAKC2R-ppd.xrm-ms.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\OneNoteLogo.contrast-black_scale-180.png.tmp	Zombie.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\insert\insertbase.xml.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\System.Transactions.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jre-1.8\legal\jdk\dynalink.md.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\MondoR_SubTrial2-pl.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\ProPlus2019R_Retail-ul-phn.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ClickToRun\AppvIsvSubsystems64.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jdk-1.8\jre\bin\api-ms-win-core-localization-l1-2-0.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\LogoImages\OneNoteLogoSmall.contrast-black_scale-80.png.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\coreclr.dll.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\FPA_FA000000050\FA000000050.exe.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\System.Windows.Extensions.dll.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jdk-1.8\jre\lib\deploy\messages_de.properties.tmp	Zombie.exe
File created	C:\Program Files\Java\jre-1.8\lib\images\cursors\cursors.properties.exe.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\HomeBusinessR_Retail-ul-oob.xrm-ms.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Resources.Reader.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ru\System.Windows.Forms.resources.dll.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\de\PresentationCore.resources.dll.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\zh-Hant\System.Windows.Controls.Ribbon.resources.dll.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\PersonalPipcDemoR_BypassTrial365-ul-oob.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProfessionalDemoR_BypassTrial180-ul-oob.xrm-ms.tmp	Zombie.exe
File created	C:\Program Files\Microsoft Office\root\Office16\ADDINS\PowerPivot Excel Add-in\Cartridges\as80.xsl.tmp	Zombie.exe
File created	C:\Program Files\7-Zip\Lang\uz-cyrl.txt.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Common Files\System\msadc\ja-JP\msadcer.dll.mui.tmp	_Quick Assist.lnk.exe
File created	C:\Program Files\Java\jre-1.8\legal\jdk\relaxngom.md.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\oskclearui\oskclearuibase.xml.tmp	Zombie.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\8.0.2\WindowsBase.dll.tmp	_Quick Assist.lnk.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\VisioStd2019VL_MAK_AE-pl.xrm-ms.tmp	Zombie.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Runtime.Extensions.dll.tmp	_Quick Assist.lnk.exe

System Location Discovery: System Language Discovery 1 TTPs 3 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	Zombie.exe
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	_Quick Assist.lnk.exe

Suspicious use of WriteProcessMemory 6 IoCs

description	pid	Process	procid_target
PID 8 wrote to memory of 2892	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	83
PID 8 wrote to memory of 2892	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	83
PID 8 wrote to memory of 2892	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	83
PID 8 wrote to memory of 2612	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	82
PID 8 wrote to memory of 2612	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	82
PID 8 wrote to memory of 2612	8	2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe	82

C:\Users\Admin\AppData\Local\Temp\2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe
"C:\Users\Admin\AppData\Local\Temp\2ae2ca7979c9a7b3d434813e2f04630b53af34fcd37766c6f43380513e8bf3c1N.exe"
1⤵
- Drops file in System32 directory
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
PID:8
- C:\Users\Admin\AppData\Local\Temp\_Quick Assist.lnk.exe
  "_Quick Assist.lnk.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:2612
- C:\Windows\SysWOW64\Zombie.exe
  "C:\Windows\system32\Zombie.exe"
  2⤵
  - Executes dropped EXE
  - Drops file in Program Files directory
  - System Location Discovery: System Language Discovery
  PID:2892

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\$Recycle.Bin\S-1-5-21-786284298-625481688-3210388970-1000\desktop.ini.exe.tmp

Filesize
164KB

MD5
c0ee16696547071a0962c09ed5e28061

SHA1
299ea34f437a4de629faf5481350d19c98b726cb

SHA256
1c94596b19159f4249381d7a2a0988df883f17ca5969693c85f90b8e9a3b2122

SHA512
c1be1b6d9151b3f4392cdffbb5bb9ba57086f22985c083b1ee1abc1724f469d7ae02cc28f21433abce70f631b0df6cc9216ba518d055a90626794a139a06a25d

Download Submit
C:\$Recycle.Bin\S-1-5-21-786284298-625481688-3210388970-1000\desktop.ini.tmp

Filesize
81KB

MD5
80b5dd365402ecb9a7e5862a17ee4abd

SHA1
2a1bf6ac9243bbb5b980e1fc786d3290eeb64a36

SHA256
469c0cab2764aead47db04d1569ad2a1f02af3ec640bceb4f03ad5cd73e3e4e3

SHA512
2da1eec9231a34c3701b1031decfcba7bcc2d49a6a8da4ae7775b20a956db751d47eac460fefe52e3cce9207da2bf0b485ec9326c0baeb2e1da36709c7cde9c7

Download Submit
C:\Program Files\7-Zip\7-zip.chm.exe

Filesize
193KB

MD5
f7d83f5a98288c8d2bf20492865b4d45

SHA1
141e6fd21c13b94a4173fa7b3e912b30499fe3ee

SHA256
472b43e14b696bfca0b37c0fe0d6c7565c79d785c214d05c76ceabba04a5002e

SHA512
6f60e42cd44a63e9315d8d883cffdb1bded757d59a9c2dd0d223a0d7069f530049a96549e718a6625fefbdc44bdcc60035e18cb80f8d82b993bb76b8bb819c92

Download Submit
C:\Program Files\7-Zip\7-zip.dll.exe

Filesize
179KB

MD5
5197b2f3d209071b67181d6be769e1ba

SHA1
229e39110bfcdb2955f1752f45a0eb4475868f26

SHA256
038260e118cf36721a118765d275653a48277bd65fb516ea17ba8c68f3e96f28

SHA512
ceace7b1f1dbe527dd33ee61eb4761761e3864ced52274e339ee77d302f79da27daad636b143d6e22f1d9037cd3fb82d3f6f9fd6ad9ce215656350191f984b67

Download Submit
C:\Program Files\7-Zip\7z.dll.tmp

Filesize
1.8MB

MD5
f9b61779c6704cb11ea5a2923068bf27

SHA1
88955cc67a11692b3c515fc36343e6e5aa88652f

SHA256
53bb70cc44352b73a716a9541a2119766af7d32d5eaea90b2301478b69413cc8

SHA512
5a13f53bf4a9525fc10f3b622a558bfce9366101a699a608ad61b90c8d6f62647b628bc72fc52d2b632c918336649bacf15ad88e8ba286661dd2554bd98208c2

Download Submit
C:\Program Files\7-Zip\7z.sfx.tmp

Filesize
292KB

MD5
ca52f1313f0dba2542b918abed7de297

SHA1
0bf4f357fff0d388e50d221320bb862fd5e410a9

SHA256
18cff13b8d9240203ca1fd8cf5483b03f8c49214f7fe1b2cee3e0a1ce91f4639

SHA512
7785bc539d82a724a78c5f7d5dd40792c5d769f2598795f6b660ef9f1fc0fbe72fc8fc1ae6e21ecf13121564ed56a29f361c86c0855b24ed138cccd62b54a673

Download Submit
C:\Program Files\7-Zip\7zCon.sfx.tmp

Filesize
271KB

MD5
96ff4af46f24e2040960996106a77dca

SHA1
49bec98f6f670d24d2fda80547e8eaebfe81d1be

SHA256
39741c1804b803e43f6741e92144115807d2f60341a4aca69e09f60d972ecb75

SHA512
34e38e764befe324d6a994a583d87e32f25c2e5a765a2ff4949a0c2964db1b366568344a0283bf357c4a5b95a20f2dbe06f8bae18b0da8525260a6de3f53d98f

Download Submit
C:\Program Files\7-Zip\7zFM.exe.tmp

Filesize
1013KB

MD5
997c02a64c4fe0dd830e69d3cfd9461c

SHA1
a7756adcaf22240b3e336f236c3012a9080cf286

SHA256
6b3216384047a3f3fa82b53c6f17f5d6be87372c7b83f9dbf02ac1c5a1b5b901

SHA512
83122b5070e422466024254fbbf019463d72a6ee8010de7dd5339ad623256f3a30e9f56212758d48b7e1a4412f09c3a6161164b9599c48fd5cc2bdbbae7419f0

Download Submit
C:\Program Files\7-Zip\7zG.exe.tmp

Filesize
767KB

MD5
50f24d3c4c9942dbea200a3dcbdcdbb2

SHA1
1af25c8b068c59ea1c04de4ce41f08023145447e

SHA256
38a9c42dcd90c7b11b0cf0469613a3e9db79369f99cddf74e70e4f082d2f3562

SHA512
b68186e903bdcfdc4c1cc05f28fa6f4cab93ab01b6642429e2f9eb814ea7e9da2c53d7b3a84c86d1329816b3de75155c2d36e7e5cd599f49c729077af1bf690a

Download Submit
C:\Program Files\7-Zip\Lang\af.txt.tmp

Filesize
90KB

MD5
dd899e0fa3db3d69c4b55d9304fb4859

SHA1
3445217f1c9a7bfe33fa202b2e1aee8de8f6939a

SHA256
3a706efbe2c5d34538d2390fea689cda1ce201ccd72e5fc30f83b0e3c9605347

SHA512
a007db37ff85e93661d8616199e2ed0ac0f7e6198bd906ed0d218da03e3e766f379378cf536f9b0a82bc9cd8007b2c1788915dc7f091f394f6280f820af154fe

Download Submit
C:\Program Files\7-Zip\Lang\ar.txt.tmp

Filesize
93KB

MD5
242fe311d23e179345918e44969696a9

SHA1
11c3fb8a8e0c7a7ef6f95c0f51abdb6b67a0a555

SHA256
66feed22468d38f4aed5efa93ced100bd6aac5e3bc2a7c59715ba4b094e5a345

SHA512
56698cb3d8c5a59a004c133977a94ac26b7d2e6714794142a2bff5a685a3ada331fc4c46071fe8447ce07abb5c28716039ea7b0a1428fdbec78bc722fbc133dc

Download Submit
C:\Program Files\7-Zip\Lang\ast.txt.tmp

Filesize
86KB

MD5
e4558e79a85db06b1c7daef0746f6b24

SHA1
2bb7e7ac26975f1233aef646e4acdb4365f05b79

SHA256
f5edd8f1450c7b6d4dc2b375325f26733b082e198ac890c2a9936b1d7822c0b5

SHA512
3815b456522d170befb05493979ad28e2e9798602316b4ae8ae850a584749e034ff1267cd126e18fa13d44c6a682a2038a81fb5b30e6035f80a9c860dc69c345

Download Submit
C:\Program Files\7-Zip\Lang\az.txt.tmp

Filesize
92KB

MD5
9264a445d11bed46a853b5945d4ced81

SHA1
907d57a953798f01cc8d7e7c45a1b31f0986c6b9

SHA256
ecb26283a80f09bc2e8e28a7644b5cdaa901e6f12fb87aa44ea9348f52f6b256

SHA512
75ab26ef2ab2b20dd110f4fe411be8e86f989bd43746d6c7c9fc828d1a87e2fd883aff03e8dfc6c23a91544c5e8f86835b1c1e8e0b647d4a019da59e028f2871

Download Submit
C:\Program Files\7-Zip\Lang\ba.txt.tmp

Filesize
94KB

MD5
cb37e16e806a548d96696cb583b17002

SHA1
0746520e79946c3dd5e6fdb3111757214e72b188

SHA256
de0ddc1c8db7c7fcaee15ed34c74c802693e30ca6c4085f86dc3dada24446893

SHA512
b05403e4ec7532eb83e9e01611fe50da2d825def4d37fbd5097bde0b947490804aa96266a9d6a1773627ca02d335b5fe342cbc59f74867fdfcea3cadb5be55f3

Download Submit
C:\Program Files\7-Zip\Lang\bg.txt.tmp

Filesize
96KB

MD5
c0e427ba8e2a713b9e7ae14e6fed7cbd

SHA1
608d602a78df1f6f8342b592946fe1e68c3b44be

SHA256
1de7226a48be46dd8d6cb1c355dd6b13cb037661ba51175e3b754e578bf7eee9

SHA512
1bdbfd8fa375a72e34ab6f23d1ab765772c1c4407960d4bf123a8d9e83a9c18fe63ce0c2cdaef55888927a361187bd975d0570a6ce4313387dedd5b0d0ee96bf

Download Submit
C:\Program Files\7-Zip\Lang\ca.txt.tmp

Filesize
92KB

MD5
10efd0ddd30d1519be97d7f550d6238f

SHA1
dac3faaf33ae0fa4684f8c0425ca8328510fb4bd

SHA256
f3391e483c1b1ab9ea7e244e9051c4dfaae2d6b5bf347759b05b323d3a94f68d

SHA512
8d75f9023a923ef1f71f82c753a048453e79879eacfe4eed357c1acc409a3fd8e087e957d4c228cae13e4b89075b71c53c8d81882cb42f02954600fde1d74e90

Download Submit
C:\Program Files\7-Zip\Lang\co.txt.tmp

Filesize
93KB

MD5
d159a44ed935b730a78800f022c5f0c4

SHA1
de100a6649fdedea7a209ff599a434de02e3db0e

SHA256
a1b54db925bcb75405d6e03ebc7ee9f096e8497d17d32c221c6ab4b2b949e33e

SHA512
5660bc542ce15006f8daa1a2d2d095c40f9ed28aebfe33b80f6037e3271c5044a0c80c437cb5e5574af461544cf317b7de73e4ba20546028aa682117a66741c4

Download Submit
C:\Program Files\7-Zip\Lang\cs.txt.tmp

Filesize
92KB

MD5
19b7dc25db08f60fcceef5a5c16cb59b

SHA1
a0b0f3c81c92467fd4dfa38f314eb6b5a26b2624

SHA256
5ad771b179daa25dc0451c9e47bb2a36d8cb491a618080b415a5d39a0ae686c9

SHA512
e6c51925f5ed52b54179ef234abd22af43f38dc55ccdeb28b019947953b2a167264dd62e03230c3867c0bafe0635f7f9a5706b70269d32b8918443001248b861

Download Submit
C:\Program Files\7-Zip\Lang\da.txt.tmp

Filesize
91KB

MD5
fbe753b799784cf25c0a27a58a04141c

SHA1
141b90feca9c57c63f9e36ffea7e97922ebf9f3b

SHA256
43ada6395e3f6a49bc7da420360d47d7c45375ef8d510ee88acf854f380a5c1a

SHA512
ebdef5bbcfcabb1a0c30ea6480459ddfc6fb17bdbc7d0a2acf460571426fbbe09793532919c1cc624f245af0ba9c0a0790a79894ba5fff83dfd7d2b4bd33c957

Download Submit
C:\Program Files\7-Zip\Lang\de.txt.tmp

Filesize
92KB

MD5
53447b1d96ce0e2cf3b19bb4d624fdd4

SHA1
9fa2d57bebf80d620a6799b40dbb4fa7923fd19b

SHA256
67adc7b6ce7020c7d16a483c319b40ca18c7cf21fac4410de87e6ba7539cfb23

SHA512
995c1308433ef7e2617e5ba93f6720bc08516d25763b6d1d34430457d9c69cdb412c695fc12852872fd682af91533a18427f46d864c3e473b77b8ac12fafc793

Download Submit
C:\Program Files\7-Zip\Lang\el.txt.tmp

Filesize
80KB

MD5
951a43f1e12f8ebde9be0776aa38693c

SHA1
f2e1ac529f20d807d56915e64e4d976d65bdf4c7

SHA256
e7c7a3e2782b324d15e9978bc0c056888f7dd00f6752e28b56731111056e5faa

SHA512
b8b5e21c5748b8e5ce116737c1466b560be14f27410b146849bc50dd98efe07828eb1eff4f684683d33e80ae90191abd295e027029fd235b58d1d906e6e771f5

Download Submit
C:\Program Files\7-Zip\Lang\en.ttt.tmp

Filesize
90KB

MD5
ed1570a6dd57f5fbadab324085fc2122

SHA1
d1a4d4398aa17c45258c40809bad480d8778f481

SHA256
eaaf1bfd4e5c40588505898c1cbc18e1ac6bf0dbd2e00a7f12beb8f28e5a5765

SHA512
9929d0682190a342e863048a9f56818a9456f4e665eccddf5aff87b2e8b77be4c2b6dd48ba90b03a2ee3c721618679bbac363b9d114079a50d1810443955c795

Download Submit
C:\Program Files\7-Zip\Lang\et.txt.tmp

Filesize
90KB

MD5
10b2bc5aba221e8ecf419243183a0168

SHA1
f67a0f99a1c132143c0594417ed236c2ebf72de8

SHA256
b49791b911a18629c4795f41800bf63f959655a1b13522cbf2f14c38313b0035

SHA512
9f40dd4162408b1de9b0928234a990d7915c933e4eaecb12f767685d28772220e6d105bb90156a95bf73413852396c66ff2d7dc40c1c0e19a5944be4f6a6ee35

Download Submit
C:\Program Files\7-Zip\Lang\ext.txt.tmp

Filesize
90KB

MD5
51f663f8ce23b8ff4e342c7105653945

SHA1
c7ffaa189478e8684546aecdd8459a9df6d63a62

SHA256
83b39a41034889cccefb1651d4280c0dd42aacc9ce2812c13945bb222a40a40f

SHA512
552bb840af4fe1827db4e2862bcd6874ca874c979dcbf94e687a70e32d8a7beb9e2adfb8d9dc135832cfa28fd45fdef3f3cd3124950186991486259cb155df6d

Download Submit
C:\Program Files\7-Zip\Lang\fa.txt.tmp

Filesize
96KB

MD5
16fb1f15fd398bf26668448641f15f8d

SHA1
b4de781a784350db1df638d8088dd305cfb654fa

SHA256
bbbd7f0b2cdbb6ae38574bf2f4e7e16f820e7a6a951202f95600d1df33413626

SHA512
20548490eee04ee0c0c260cd292081a3330cda7b27ff6e816761166474d88dc04020ad52442d78d31459eb94ff13c31fe1c9e3f9a8a1043a0cf466680fab6ea2

Download Submit
C:\Program Files\7-Zip\Lang\fr.txt.tmp

Filesize
92KB

MD5
7e7c8633b022a374141509d66be029cd

SHA1
7b7419220c0c8884b680cbbc94993a2ba7246cf1

SHA256
7b6acb51ebff024d6b4c5333e2b290e3c2da09ed8b3f02706149e30e567c1726

SHA512
bd940170952a5234a2b7be690cd87250e6782ba5f1d0927eee3832d216327c20f36e9a81830db2874b5c53e8b43a532e437f6d9408148a7786229a6c7073da3e

Download Submit
C:\Program Files\7-Zip\Lang\fur.txt.tmp

Filesize
90KB

MD5
06331ed2e49edacff98bad7de87db036

SHA1
8e75478aa21cde9f10d0f95a154fb54735c3ccc2

SHA256
bb669068a3958fbf42ce388164b6660bd50f1a739fa1588b0e05b353cc400b72

SHA512
07b076339deca1302933b465c0fb990393c28f5ebbc37170e757f9c15e024c49ab5455ef2cc6f1f493c8e71bc1977dfaf468c841419ee07ba9c6b6bcb53cc271

Download Submit
C:\Program Files\7-Zip\Lang\fy.txt.tmp

Filesize
89KB

MD5
b871838b0c72eccf9fe6428c633ddea3

SHA1
8332504930a153d194fdb73eb06fc65c0ae00bbc

SHA256
5393d28ba8095f283d2bc270a7faaeb944a96f32a6696700462485a0dfdc2f9f

SHA512
875982a5ee28580c656932ed4fe30fa3b03f1e4bfc586328f188ebd11424fecee169319b79396a6ce2aac4055e1bc6ac43c98d5c3b3055b6b4eb6080b5ab9131

Download Submit
C:\Program Files\7-Zip\Lang\ga.txt.tmp

Filesize
91KB

MD5
cdc03b6a2e368b45718e516480addec3

SHA1
9a6e2e5e605ae4d3b8e0a9402f9e202f62c46ec0

SHA256
8628eca0ea2382dc4fd2ced3a2b36cd67b414c589b563d8745ee2fd0a52c3201

SHA512
a39f3acf36757d82bfe141880f4331134d9a9e71429751d8670e86424ddaf0727109862b8c8fdf13190c96d1b31d08cc0560e6da6e6eed3367124f65680d9f26

Download Submit
C:\Program Files\7-Zip\Lang\gl.txt.tmp

Filesize
90KB

MD5
4116d22ce437131e5cdb266958b3c8e2

SHA1
8f23ba0a14b93d5c87369539dba8a8add573ee30

SHA256
7f8fe7a322e573a7bcfdbe6b49f1f1c764150e7b46f82cbe46d8ef4ba95faf02

SHA512
e6914452a5ef241e596006b0e697b7e7ff00bf7f4e80c53995ae73deefe386df08c64af5b5d164eac09001120e0c4d22acb1389cce94e70a0d802c4589b42f17

Download Submit
C:\Program Files\7-Zip\Lang\gu.txt.tmp

Filesize
98KB

MD5
8cceab240bdb9c1c11f7f9432b1c9366

SHA1
24719748a7bf72212a4cbff08740b46b7d7f9ebb

SHA256
16d18693133365f2c1bb5d2048c14a43be60176e03cbb7bff57da461cd2b52e8

SHA512
f3c3067ffda53d80984a94c086039381fcb4dd2a2475bb491de6bdbf9dbf2efe698f64c3d152df2c05c1d31f7a8c916bd5a9a3874a6608e9656b202cde66f234

Download Submit
C:\Program Files\7-Zip\Lang\hi.txt.tmp

Filesize
98KB

MD5
602794d122e1e93780bbb013991864fe

SHA1
dfa8a81104e416ce977cd0f4eb00293ab8da42d6

SHA256
674b8800e90cf11c3d1d8b561296b28247ae1fead9060448ec907167aeffb06b

SHA512
851867b695173aea806d074446bca398281e9d05dd3cb0229e1781d2fa9a7efa359b4ce409253121911432464102496481632de6c0194c0fd38bce5cd05c881f

Download Submit
C:\Program Files\7-Zip\Lang\hr.txt.tmp

Filesize
89KB

MD5
29721c84bdc5bc655ea0a63313c0418d

SHA1
86c054bb7f8be255d63b3ba724c276c501497fb8

SHA256
5673e98ed9b0196ad53242c2e52984dde7e198cff974ab854a1d64e93aaf1f57

SHA512
6ed82dc5a65df08c4b648e7bb5f5150cabed91088545a9c41cda171c15965a2f8a504504f0a2ae3836966e0f52062712c78477de07fd9c564db70380f54c9bfe

Download Submit
C:\Program Files\7-Zip\Lang\hu.txt.tmp

Filesize
90KB

MD5
949829935423fa9251803c1226dae4d2

SHA1
77abde5a5d41bb2a6cb9b75679ba530b9f3fd991

SHA256
2d043ace4045b8347c89e304ec19d9b01c206499bee26793cdcd77f011f5243d

SHA512
7191798a59e7d37bca3b19c1bd6027f7318bb81c8287c12ded52a4d698c31124832143093a61870d23d079b7dfde12c0a410b999dc1ec80a189e0b2de5629093

Download Submit
C:\Program Files\7-Zip\Lang\id.txt.tmp

Filesize
91KB

MD5
ae681433fa0905ff37495022064d7031

SHA1
c27c3e386b464ca33f3dd23f6c934e1c41db4125

SHA256
b8386644213845c6be879234d0e52522ba15c66f67de1453f4c7fc0dd201bed1

SHA512
5286dfe2c35248af410b07b6b676bf1f0596f859283b15963d369c69e305d66302d283545343e1ed733347000ea8698ea2be24d0d51a0979698bdd5bf943884a

Download Submit
C:\Program Files\7-Zip\Lang\io.txt.tmp

Filesize
93KB

MD5
c8161ec366a9c180dc7b9f0cc5ad6809

SHA1
8ea3feab9a40afc057f798efe28b55ac0db502a3

SHA256
8109590806abba73fe7cef65e627c674e4263792536dfd93b2a8763b45e7ab81

SHA512
093ea56d8b3cac6a3fb8ec180340f500b4d3ca88affc3bdcf4fa5d1f921f71ff00b478bcc094bdbccc934a057516e913cca0e4bbf6d8d7785705cbad1f29e477

Download Submit
C:\Program Files\7-Zip\Lang\is.txt.tmp

Filesize
91KB

MD5
b42347aa696cc8005f17e1109858e167

SHA1
d82e0b141a1ffade54caf5bc8faeb60eb8f0cb37

SHA256
281a4c1e090b83df6f39c3c1a16e2c6616ba0a87babfac86239a3a520d853568

SHA512
dacb719ce9cc91a119ae18fccfde7019f9217d055b58256f8207b714be16320c08ed17430a8b63487905e16be3a658a73eecd62d8ac9cf4564a5a1a0eb22f9a2

Download Submit
C:\Program Files\7-Zip\Lang\it.txt.tmp

Filesize
92KB

MD5
874b4ef04ef7653476d294c60e25d006

SHA1
83e32ff403fbcb4aead3674585b4ef57ea327b25

SHA256
1881622c765e8b32374d6f4343f4f5bfcd5028d42bfd3bdf7a1ff6a87cffcf9b

SHA512
5df8f3b52b1a82a5e892319596258789f17dcc71157909e7fff45597985f790bab61f333f22987f749d5476a8de13d6239a41393e2d630d79319f1ee0012bbec

Download Submit
C:\Program Files\7-Zip\Lang\ja.txt.tmp

Filesize
95KB

MD5
4ee2af4e034374b03fdce93fc725e76a

SHA1
6ec177584ed6579c9479468fddbc094ba6cff16d

SHA256
2328b1ffd5840d7d44ae9e723cb0da10908292a5f1fea75ab6433f0a38d802f8

SHA512
04162e990dbd37dbdca0a96c428ff947da87aaad0a2b24e74e36978e0cae8440968b4cb1fdc1b0f656450b3d31335f56208467514d75903b25a6f9d4aee10667

Download Submit
C:\Program Files\7-Zip\Lang\ka.txt.tmp

Filesize
101KB

MD5
ce6fb2db447015e519f4e9bfe2f05ab0

SHA1
c1e12f67d8c230e352d7d0a1a432d1615d90be91

SHA256
f115e746f13a10d35abe224b2096aac62adce484ae4a246bf4120b0dbdfef445

SHA512
0adff692ac59a09cd0b76e15abd2b82dc68cc34cdc1defc5e14e1506bd76b83bd8145f5d8f6c8070ed247e9865b0e658d5a7de23e6629caf9dd4a34c95885922

Download Submit
C:\Program Files\7-Zip\Lang\ko.txt.tmp

Filesize
93KB

MD5
bd5baeee5bced67436859cdb180f8d00

SHA1
4ffa85b29d90d7344b70c1a5d5f2c58a905c7394

SHA256
82f52d647bc1e5052984898320efb5aa1f4358e4d5917dfce4ce724718fbb54e

SHA512
0faa30e9095ba4826f6fee88bf6082f7774e4947f0432f2b743f52ff393791aa81a100b4d932995b5d2995fa4a83f442bd6f571aa03b4eaa0e292960b572a289

Download Submit
C:\Program Files\7-Zip\Lang\ku-ckb.txt.tmp

Filesize
95KB

MD5
1ea1e6a230cd1b4333ed81aec82ba60b

SHA1
646af78e6a4b2aeddd030d398040364587439b3d

SHA256
cc494eed59154d39e051a812cd5d17d8802b9caa04edda9b9b69fe409832f7e8

SHA512
b9f6b3a312920e30beb40cc07d7d985078a21732276940bafea9ba4d347e988bb2c66958baa46586157faf4b43e78adddb015d993319f49fd21ddeb4712520a9

Download Submit
C:\Program Files\7-Zip\Lang\ku.txt.tmp

Filesize
86KB

MD5
0b08df8f24c81605f1523df3ed1627eb

SHA1
10fc9bab1359d4cb2b96a5a89f82105f497a02e0

SHA256
4f9e6bd5ef54c0048b295d72770f8ef5fba7c982b7645f4aa21233c9764fe279

SHA512
41dbb1edbf6c0a2c095ef6f69eeab0c23ad85ee7044e1dd5e3e0595388ea8f616137bf9e7c0b949124a32a192b09949d265e3c017adf2b1f1283b3663abb8bad

Download Submit
C:\Program Files\7-Zip\Lang\ky.txt.tmp

Filesize
95KB

MD5
48b6366e3c11a9aeef8f8c88aef47549

SHA1
82324d6977905737e99f83b43dd0d7925fb71ae4

SHA256
52263b5c316bb85217fff937e50a5dd29d0b88d3d95c4c8f3284985859972b64

SHA512
57f2f490867bf56c97e30303fa18118344bff61acec7f438607b1796f6058b497b79656af628ad5a44e8aaa88b246f3a437784c9bf8e6096e074d361eb5b41b8

Download Submit
C:\Program Files\7-Zip\Lang\lij.txt.tmp

Filesize
90KB

MD5
9c9bc08d8dbee91e657354862f15d6de

SHA1
2f0688b86b45b825aa6470afbef42c6f6769339a

SHA256
e4570a630889d20487a600de6d001aa7c7f1c25a027395fe5a73ee287b631afc

SHA512
23b45a3e42e1439af743134a7a641a2f5319fda68fd03f9f5626160058a1091741cb4a3765c1f16b15e279c7ba7db5d537b6b4b19b84415134fae6d923606325

Download Submit
C:\Program Files\7-Zip\Lang\lt.txt.tmp

Filesize
92KB

MD5
51da0fc49013ecce8c61024f56a8f715

SHA1
fd45634026167d9fba17a313dd053afdf6ffb9b4

SHA256
b28f09a3a64d455b1d1c4e60df661793ce2a4d5707ea259280f6c3b9a2bacacb

SHA512
55eacf198558822d0fe02bd5ee12b7a07ec2f70d93a606c3de6e41e1303efcb5006c9e7a5a8fa4b4bd66c6695cf851fce012f7bd64f44dc0005a19aff64fe5a4

Download Submit
C:\Program Files\7-Zip\Lang\mn.txt.tmp

Filesize
91KB

MD5
44ce773bde7b69e9a9e2f042230c6232

SHA1
5b81ba8303cb29fd6d5f88938889f2a959cbac1a

SHA256
459b3eda8b8ab398cd960e78554d822bde721a88d21bd7508ae24f4bb437a5ad

SHA512
26ee686937ba6737372298445c46ba8c017c3ac4900b8edf75003643a48c3ff6f12e2ae0cbefe309bbab01758262c38b0616d83564dd7902a7cdf37ec206cd68

Download Submit
C:\Program Files\7-Zip\Lang\mng2.txt.tmp

Filesize
104KB

MD5
85dea6106982fe64a184a4688353a989

SHA1
2b0c598d9a866a5e078d44928624d365ebdd4edb

SHA256
9cd67fb4d30e49ef24bbb1307729fc998b5fdfdc62a13193c93b23ff6b25ee79

SHA512
570a97c3a395a462494945ff30167cbf61d39c1486c669a7b8818764eacea3ec69c653b75d18d32bbd825e49b739dbd404824787c3da8725cc96d98b52c1b5b1

Download Submit
C:\Program Files\7-Zip\Lang\mr.txt.tmp

Filesize
91KB

MD5
82b6cd94409c1631edc5ac1b4b5e0d66

SHA1
523480ca526f0c5fa02357468785f5561d3195dc

SHA256
1a95bc3d0094b628859a88979c1b4729df11884c609d02b6f08fd5734d7ac7c2

SHA512
b08fe5e24ca2757f419520673278d76af55b03d7eddb9ee10fda1761c8f65fb22b3b485433b4049710cb599bdf30659ccb865f7061aa6ef3203e57e8f8c697ff

Download Submit
C:\Program Files\7-Zip\Lang\nb.txt.tmp

Filesize
89KB

MD5
c4006c088beed1c6b75660e86df30f00

SHA1
fcea0beec8ee58bbca0c33b3fcd86d9c1ed485e1

SHA256
0b2f84791cb525bc7627adf71659dc78072b056521580bc6da910bbf59af3ab2

SHA512
825267952c4a9210faa6a1a7c1ff1a3c098bd1e298c837552ddfa1b59d8bec37e56d6a576a3d4307697c4d4e65cd9b00657c289c50d466d37fa500ad90411d8e

Download Submit
C:\Program Files\7-Zip\Lang\nl.txt.tmp

Filesize
92KB

MD5
2288faf7b4356283d701885021d9c27b

SHA1
3405c70b55eb234c1283cc51db462cdcd90381be

SHA256
c42aa5c7299b281123bb86fe1ef057ff9e19b0a7d0798ad637e13ef57fa997b0

SHA512
eda740ec28c2e87f614655e336293df747f18fe04228d04e6d807a1eb1423df9d2bbf03ae1493dbb91a9a75fa172e50df19cd8f9fe47bb83a83e356956fc42c5

Download Submit
C:\Program Files\7-Zip\Lang\nn.txt.tmp

Filesize
89KB

MD5
f07d611d73ff2693f25fda67732698f9

SHA1
48814e8eed7474761d5c368ec4941f13cbe7525c

SHA256
128ed05742cc2d14cdaa119f504937087c449c708fa7cedc1ef68e781e5227e0

SHA512
9d13c9f8ab0631fce216f1823d10e38f7c7bbfc708c93e90f695a0b7986a25101a6b1db125a211889051798fedf272cf6e4836e9b6d4b29c4884457948297d29

Download Submit
C:\Program Files\7-Zip\Lang\pa-in.txt.tmp

Filesize
97KB

MD5
0885676e859f8b579c15dccac1cccee1

SHA1
d7fe446a53f9852fc2317f3d36065543d265ca50

SHA256
c6cec220bbc7bf2f475a7be3416412398d102aee6ae4bea804b06119844db4e3

SHA512
526b0bd9aadc3181c4ef9b784fdaa7b5599f3a29fcb1cb2dd0ed4555b89c78c96b8be17319aefc2274cb3a44c615eb35236b43ecfa9e4d99f8923cdc4e11fa15

Download Submit
C:\Program Files\7-Zip\Lang\pt-br.txt.tmp

Filesize
92KB

MD5
b7a933052423b1a96737b5b5bf66311a

SHA1
e305e2ce59f3e3061ec6fdd39059221a872ce475

SHA256
a5713a80c36e8032f2363ecfdc57993527d8ec7016936ee9529a3547fe74c4f2

SHA512
0353f0b93d243e2bd5760ed655bdca0f7a096ca1b6191c0f6fa65f5644f0d04fe593cc11d5a76b7fcea31008ff4f142b1c96678e9e3e81618e1e71db5c4d48e5

Download Submit
C:\Program Files\7-Zip\Lang\pt.txt.tmp

Filesize
92KB

MD5
de11da5d635760506f30ff944ffeb6cf

SHA1
9add9cf0e5e6a87a78bfe14282c177195bce53b5

SHA256
1979ebe065cc4981a0f516d207c9826ff56a9d80c89640048a8d31b40e4b40e7

SHA512
c26d51959ddc29a024b0681c5e0526f2e860627948e68b94997b57c6e79d69090081b1c0e323ad6b5a7f9d19a6820972904309c60e5c4ee0594f66af7d359073

Download Submit
C:\Program Files\7-Zip\Lang\ro.txt.tmp

Filesize
88KB

MD5
9fcfdd9035f7b9df317085b3f8c4593e

SHA1
98134f47548e81a1bc401c91783c500fce62d621

SHA256
5f0171a737887f68a91249613d6e7be452bf700d091ae490d14b7432932645d8

SHA512
8c25e49207d738d14fa71ce9b9b10a458e3a9f16298c2869edb577bb28578b674bc736f5171104eb8f5ce92e5997ff94b078c59e6c02ca9e1d528a7174817fa9

Download Submit
C:\Program Files\Java\jre-1.8\bin\plugin2\npjp2.dll.tmp

Filesize
397KB

MD5
fce644e1b2cd2d4cada7f05162996934

SHA1
75ec599c13001caa3117dc87aada525aade571d4

SHA256
7debb96b3e6694767d63f1b33a0c57f8c2627c56c27a29ccbb81dc50b78931f8

SHA512
56eedf381cba9e7f13a9ac6dc6e932ab385dfcc032d500fddb8e9ab26ed5cbd849c27823f2911fe73c26fb4f24aeb81b228daddfac9829eb55ba95dbbd89ab81

Download Submit
C:\Users\Admin\AppData\Local\Temp\_Quick Assist.lnk.exe

Filesize
83KB

MD5
749a0a7531dc9874f18e2059154f0d65

SHA1
7720d13b32099cbd98e57ecd97c4ed8ce756e957

SHA256
bcadc64e9972a312e2dc7e330f7475f4c93b474ddd3b0469db77109b5ccddcbf

SHA512
befb6fb49003a25b1eb48fd0d621b68c85e521f44e18992db86e8137dfea26628fc57e641e8bafe66da6e37984b3b5c9c2cd9a57f1373377d75f25f9795fbdba

Download Submit
C:\Windows\SysWOW64\Zombie.exe

Filesize
80KB

MD5
8c7e0ecd3d07eaea4c4f5bdd9359d8e0

SHA1
643df107e29f34365cbaef11497f86dcdc836afb

SHA256
27ce511c594b8c65d9054fa8ef52828ff5155e125ffc7c8bb54beb49f1243f22

SHA512
7032987fb3d7eb9f2d835785237e952cc8530e74e7aec895a64ee6bef06b82c34a111e81d140cfea3b2b006d98e411db52d73f9866cf71316b7d02d969283c35

Download Submit