Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
143s -
max time network
146s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
09/10/2024, 06:32 UTC
General
-
Target
2c8572e4f7f6398aef0ce98762ed10a6_JaffaCakes118.html
-
Size
21KB
-
MD5
2c8572e4f7f6398aef0ce98762ed10a6
-
SHA1
9cac71c6293678ff67eb2b97901f90d29efa1c65
-
SHA256
38847ccbdfd54464341b29ac4d045453964270a7ab3a528c41205084dad0cc62
-
SHA512
ffe6e00b227b8c54a6bd677e67e0cd355dcf7106876099636f8bbc7058206d3f3bdf5da868ace2d15237ab972f831ead1a13fe96cad3f97b883bfd4392e48fbc
-
SSDEEP
384:5S7LL7agyymktNWt8VTVAmjGh+U+aRzs7/tqSRtrmjH6+gI4n/mYNiRROJUEuFkd:5S7LL7agVrtNWt8VTVAmjGh+U+a2Ttqm
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Modifies Internet Explorer settings 1 TTPs 36 IoCs
-
Suspicious use of FindShellTrayWindow 1 IoCs
-
Suspicious use of SetWindowsHookEx 6 IoCs
-
Suspicious use of WriteProcessMemory 4 IoCs
Processes
-
C:\Program Files\Internet Explorer\iexplore.exe"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2c8572e4f7f6398aef0ce98762ed10a6_JaffaCakes118.html1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2692 CREDAT:275457 /prefetch:22⤵
- System Location Discovery: System Language Discovery
- Modifies Internet Explorer settings
- Suspicious use of SetWindowsHookEx
-
Network
-
DNSwww.sharedmp3.com.brRemote address:8.8.8.8:53Requestwww.sharedmp3.com.brIN AResponse -
DNSw.sharethis.comRemote address:8.8.8.8:53Requestw.sharethis.comIN AResponsew.sharethis.comIN CNAMEd3mdrpbbs8qfxa.cloudfront.netd3mdrpbbs8qfxa.cloudfront.netIN A18.164.52.84d3mdrpbbs8qfxa.cloudfront.netIN A18.164.52.115d3mdrpbbs8qfxa.cloudfront.netIN A18.164.52.90d3mdrpbbs8qfxa.cloudfront.netIN A18.164.52.36
-
DNSbdv.bidvertiser.comRemote address:8.8.8.8:53Requestbdv.bidvertiser.comIN AResponsebdv.bidvertiser.comIN A54.241.51.109
-
GEThttp://w.sharethis.com/button/buttons.jsRemote address:18.164.52.84:80RequestGET /button/buttons.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: w.sharethis.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 09 Oct 2024 17:34:41 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://w.sharethis.com/button/buttons.js
X-Cache: Redirect from cloudfront
Via: 1.1 22746ff832b635f98716b999f6c6f002.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: CDG50-P4
X-Amz-Cf-Id: cYxtduPqNEXKPCVuaMamup2pq41tv2c7k1XfrYIbKO_qDr6tRyXG4A==
-
GEThttp://bdv.bidvertiser.com/BidVertiser.dbm?pid=535743&bid=1337532Remote address:54.241.51.109:80RequestGET /BidVertiser.dbm?pid=535743&bid=1337532 HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: bdv.bidvertiser.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: text/html
Connection: close
Content-Length: 87
-
DNSwww.facebook.comRemote address:8.8.8.8:53Requestwww.facebook.comIN AResponsewww.facebook.comIN CNAMEstar-mini.c10r.facebook.comstar-mini.c10r.facebook.comIN A163.70.147.35
-
GEThttp://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21Remote address:163.70.147.35:80RequestGET /plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.facebook.com
Connection: Keep-Alive
ResponseHTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Wed, 09 Oct 2024 17:34:41 GMT
Connection: keep-alive
Content-Length: 0
-
GEThttps://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21Remote address:163.70.147.35:443RequestGET /plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.facebook.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
Pragma: no-cache
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval' https://*.google-analytics.com *.google.com;style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline' https://fonts.googleapis.com;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com https://*.google-analytics.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com https://fonts.gstatic.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: *.whatsapp.net *.fb.com *.oculuscdn.com *.tenor.co *.tenor.com *.giphy.com https://paywithmybank.com/ https://*.paywithmybank.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://*.google-analytics.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data: *.tenor.co *.tenor.com https://*.giphy.com;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com/ https://*.paywithmybank.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://td.doubleclick.net *.google.com *.doubleclick.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", default="https://www.facebook.com/ajax/browser_error_reports/?device_level=unknown&brsid=7423830705122816399"
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown&brsid=7423830705122816399"}]}
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-FB-Debug: pmIQi8hRuJ0NcPZB9DGz41uQ/ZnTZVz9UqC0sl0HA0nH9/VMZ67qje9MtJYgME08LOez0wuRDZDGHugBqD5AgQ==
Date: Wed, 09 Oct 2024 17:34:41 GMT
X-FB-Connection-Quality: EXCELLENT; q=0.9, rtt=22, rtx=1, c=10, mss=1357, tbw=3222, tp=-1, tpl=-1, uplat=82, ullat=0
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
-
GEThttp://www.google-analytics.com/ga.jsRemote address:172.217.16.238:80RequestGET /ga.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.google-analytics.com
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Content-Security-Policy-Report-Only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:215:0
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to=coop_reporting
Report-To: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:215:0"}],}
Date: Wed, 09 Oct 2024 15:37:36 GMT
Expires: Wed, 09 Oct 2024 17:37:36 GMT
Cache-Control: public, max-age=7200
Age: 7025
Last-Modified: Tue, 12 Dec 2023 18:09:08 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
-
DNSwww.webutation.netRemote address:8.8.8.8:53Requestwww.webutation.netIN AResponsewww.webutation.netIN A64.190.63.222
-
GEThttp://www.webutation.net/js/load_badge.jsRemote address:64.190.63.222:80RequestGET /js/load_badge.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.webutation.net
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
date: Wed, 09 Oct 2024 17:34:42 GMT
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
vary: Accept-Encoding
expires: Mon, 26 Jul 1997 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_KLLG2dshD25zpJnQ3zgNyqw7P4X/x8fk69ADO2xiqgxc0wCZDmJcsXJQnnRV9iUc/9A1IoUKkyWogtYW1tYkJw==
last-modified: Wed, 09 Oct 2024 17:34:42 GMT
x-cache-miss-from: parking-84cb7b8874-hdktl
server: Parking/1.0
content-encoding: gzip
-
DNSRemote address:64.190.63.222:80ResponseHTTP/1.1 408 Request Time-out
Content-length: 110
Cache-Control: no-cache
Connection: close
Content-Type: text/html
-
DNScrl.microsoft.comRemote address:8.8.8.8:53Requestcrl.microsoft.comIN AResponsecrl.microsoft.comIN CNAMEcrl.www.ms.akadns.netcrl.www.ms.akadns.netIN CNAMEa1363.dscg.akamai.neta1363.dscg.akamai.netIN A2.19.117.22a1363.dscg.akamai.netIN A2.19.117.18
-
GEThttp://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crlRemote address:2.19.117.22:80RequestGET /pki/crl/products/MicRooCerAut2011_2011_03_22.crl HTTP/1.1
Connection: Keep-Alive
Accept: */*
If-Modified-Since: Thu, 11 Jul 2024 01:45:51 GMT
User-Agent: Microsoft-CryptoAPI/6.1
Host: crl.microsoft.com
ResponseHTTP/1.1 200 OK
Content-Length: 1036
Content-Type: application/octet-stream
Content-MD5: 8M9bF5Tsp81z+cAg2quO8g==
Last-Modified: Thu, 26 Sep 2024 02:21:11 GMT
ETag: 0x8DCDDD1E3AF2C76
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 0d86e878-601e-0013-6cbc-0f73e6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Wed, 09 Oct 2024 17:35:12 GMT
Connection: keep-alive
-
DNSwww.microsoft.comRemote address:8.8.8.8:53Requestwww.microsoft.comIN AResponsewww.microsoft.comIN CNAMEwww.microsoft.com-c-3.edgekey.netwww.microsoft.com-c-3.edgekey.netIN CNAMEwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netwww.microsoft.com-c-3.edgekey.net.globalredir.akadns.netIN CNAMEe13678.dscb.akamaiedge.nete13678.dscb.akamaiedge.netIN A23.44.65.132
-
18.164.52.84:80w.sharethis.com
-
18.164.52.84:80http://w.sharethis.com/button/buttons.jshttp
HTTP Request
GET http://w.sharethis.com/button/buttons.jsHTTP Response
301 -
54.241.51.109:80http://bdv.bidvertiser.com/BidVertiser.dbm?pid=535743&bid=1337532http
HTTP Request
GET http://bdv.bidvertiser.com/BidVertiser.dbm?pid=535743&bid=1337532HTTP Response
200 -
54.241.51.109:80bdv.bidvertiser.com
-
18.164.52.84:443w.sharethis.comtls
-
18.164.52.84:443w.sharethis.comtls
-
18.164.52.84:443w.sharethis.comtls
-
18.164.52.84:443w.sharethis.com
-
163.70.147.35:80http://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21http
HTTP Request
GET http://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21HTTP Response
301 -
163.70.147.35:80www.facebook.com
-
163.70.147.35:443https://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21tls, http
HTTP Request
GET https://www.facebook.com/plugins/like.php?href=https://www.facebook.com/inspirepub&layout=button_count&show_faces=false&width=50&action=like&colorscheme=light&height=21HTTP Response
200 -
172.217.16.238:80http://www.google-analytics.com/ga.jshttp
HTTP Request
GET http://www.google-analytics.com/ga.jsHTTP Response
200 -
172.217.16.238:80www.google-analytics.com
-
64.190.63.222:80http://www.webutation.net/js/load_badge.jshttp
HTTP Request
GET http://www.webutation.net/js/load_badge.jsHTTP Response
200 -
64.190.63.222:80www.webutation.nethttp
HTTP Response
408 -
2.19.117.22:80http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crlhttp
HTTP Request
GET http://crl.microsoft.com/pki/crl/products/MicRooCerAut2011_2011_03_22.crlHTTP Response
200 -
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
204.79.197.200:443ieonline.microsoft.comtls
-
8.8.8.8:53www.sharedmp3.com.brdns
DNS Request
www.sharedmp3.com.br
-
8.8.8.8:53w.sharethis.comdns
DNS Request
w.sharethis.com
DNS Response
18.164.52.8418.164.52.11518.164.52.9018.164.52.36
-
8.8.8.8:53bdv.bidvertiser.comdns
DNS Request
bdv.bidvertiser.com
DNS Response
54.241.51.109
-
8.8.8.8:53www.facebook.comdns
DNS Request
www.facebook.com
DNS Response
163.70.147.35
-
8.8.8.8:53www.webutation.netdns
DNS Request
www.webutation.net
DNS Response
64.190.63.222
-
8.8.8.8:53crl.microsoft.comdns
DNS Request
crl.microsoft.com
DNS Response
2.19.117.222.19.117.18
-
8.8.8.8:53www.microsoft.comdns
DNS Request
www.microsoft.com
DNS Response
23.44.65.132
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
914B
MD5e4a68ac854ac5242460afd72481b2a44
SHA1df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA5125622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5
-
Filesize
1KB
MD5a266bb7dcc38a562631361bbf61dd11b
SHA13b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA5120da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc
-
Filesize
252B
MD5ed0a1ad18e12bb238b7f276212083fa6
SHA1b87a524f4696a19285937f4117b0a8c05f3ee019
SHA256f3d12eb102e35dde17d5e8a0091d35a22290beae6a41c053da49652132140ff6
SHA512b82b945db647096d76e3a692e913fed14c0ce2b507bb545f93cb88f16327ebaf41cf7195b931f750a03c0c967809a367423fcfa91379d29e60352209fe1e8891
-
Filesize
342B
MD5b210dd2f333dee70bc5ee503378a378f
SHA1085ee5487ba954b3faa6bbce648bca9ac4a12e71
SHA256891428f755385a22e38f1a4a86a0b9e7da2011f0de9963d5f31c653c3dfb524a
SHA51264c0f544bd62b984c197b09c4b941765b2a425b9a778528e6098937078c6f3823f150a7d5ed547d5d2de9f6c1002f59c7b958ea8904af0d63e5beaefb57fc112
-
Filesize
342B
MD5182f6025ba1486d4d7a724223173d769
SHA10df9922c82ed6874153cc36b92de2267f358e32b
SHA256e507a9f0ae5cd89422fd7c708e2cc915f66b3af67874515bd40e73c6890b2abd
SHA5124174130c8c4c5e71375c549428098c95ee66dc6b3eaacbd7f50f7c9164a19e786a5445033da8a21a97a0e67f53d9ecb145e16d95f76e52b8c77a30ad2108797d
-
Filesize
342B
MD565a0b8dda82b526eb71ea890b4cbc87a
SHA14304be3299854daae8bf702b595927a3798fa9ad
SHA256bb888068e9f36db2d2d495a9ee0905c36e302afb07ad0a1f4561f9aac77037bb
SHA512edcb2ae4949274b3e84a1efa4c984c0c522d09b0d17d86d9d6ec3c53ee234987fc3f529dd672da11d3e0481ba854ab48bca47d3679c612abb80714df49efe846
-
Filesize
342B
MD516dcb47e4df368d360bed967877e54d1
SHA15668fc4e634471eda05995e2ea1b7ceea67f14f1
SHA25674e67eb2896682a24e66cdd63a07c98e2adc6627ddce219f5963f946e9d562b3
SHA512df3a043d8bb66785f263953b44646d37da569533372ef0b50b5aad1e7ec7a36cb53468dc9272ca1c0c5e7d824be2d666a2ea90e74be6133ad0908da802376daf
-
Filesize
342B
MD51f199b5990197422a369e9c5a68d8c99
SHA1fe65ebbc63eac1b36b406e5d88fd47e3a1736303
SHA256eadd5d44e57fed23fc9e61cfcae65469746538f5ef443f523c6c38db48950186
SHA5124bbed30560d8b6041c8eb5c247af5f65a5e5c74399376006b815fb564dc689af8c4de3ba2df338b70fb51b7db11634d0ffe3f28db762574d8fd6de07a0fe10ca
-
Filesize
342B
MD5320bbdc5a0277dc9986b2a86529fd77a
SHA1ac50a8d24859b42c065485d74ffd272b7c42b6ac
SHA2566d0ef6d47da47e8949bdc0ded9e93028bb0925debe38df96dc398ac5e840f4d8
SHA51289e9d9f8a9fc94c4fd6c455095a7683f9ba0da1e980a11c0690be90942901dd7947bf7472a639dc85db2e2e77f4762a4292730d9c21a900263b154f1d882e5a1
-
Filesize
342B
MD535ce5ff866e9108c164e5d86059c5763
SHA19a9c5073881489aa7ef7060a1e06697d47c15631
SHA256b5495eb5d66e4e22d8971c915592db100f62bada9e6fb4a661b48dca1f6e86c6
SHA512f0d275831d9e8f6da79749e88ea1ca8ed6207152104a889b32ceb0fee131f5d84fc267071e55551383288c6f49021bd9b9f6c2c220e79fa6538b01a847ec4ac8
-
Filesize
342B
MD5204622e8480f01d260b59408476c18fc
SHA10a28ec3011613adc00b60bc6deb5c509106036ee
SHA2565b832b3b2669b7b11e35f31ae716cafc64312f46d151688c256e9e10d0297fe9
SHA512f848ba0c2eac477a0b1f6b7ce3fdcaec5c92942828dbfa0de16394278c5e1ac52f4117f671cf44174ed40f15cb59f9bebd6b8dbeaddc2116cc92a9567b075757
-
Filesize
342B
MD5140a95c7ac49c9809ec60259bc47c6d5
SHA193c33affce8a60fc41d902267a8decaafe7e7207
SHA256bdeff219f4875116b1e9468d1989749b30206e74b5beb0f41f3cc36a1f3d9c62
SHA512ae5e5ad6868eb02ea958a557525631cbaff00554d42ceb0daf1ac2269d112159b06b01c5eb9a200a70e2e9bd92f9db4c7178e221b05a6877619383f870367a35
-
Filesize
342B
MD59909ea4ad374c2cfba7346e8446b5432
SHA16daa8a10b254f674fd03c1a783c148b0a7f5dadf
SHA2561ca874b3e73aba17ff6b3c50c97836f57050b7f168e74b41261a175f00f6eafb
SHA512ee4701444fe450a7b8f495f73b98bd4beb4585cf0a5746063d64d1e8a1781037566dd4eb870b69b00fb546eba7dc661cde9718ad20f95bc14a9635a1cd120561
-
Filesize
342B
MD53d4f3f36243e92c8df96fb3743c49f4d
SHA1bbcfd81f86ecae2b177040ec9df80163f31aa9c6
SHA2566b7b845328b18e73968858dc37bf748f1c462dae9c41c4dde52a267034057dc7
SHA51260439bec0e3b42d5f57bf9a4d320993d96a4c4b597eda95385299469c4adfe622151992cf90b1a675210d43c9ca11765354e05d9d9b3a4c96c59ca3d648e2815
-
Filesize
342B
MD596a1bb226cc5232edc58780bc2119344
SHA1d0db3e5a02e2096d5429a3d55988e7d57f6c85f3
SHA256dd88d77311f98bc57f41b9a2d9c83f9465f752d4c1634291e0865195d279d9d0
SHA51268df702dea59df9ceb756dbcbbe3d49cbb300e9c32aec73dc6280e8beb4f4743c3e1d509f168ca7ec18e7dddf613c44b08b286b0c2ecdb0ad676ef7edef99228
-
Filesize
342B
MD5a5c60ee4ced16ed99c8cf6d6f1d28103
SHA11d5728c08a9c58d83b044745132812889838ab55
SHA25648f375861db2c385d647065d421b6acef9d7fe621fdc9befe2947fb9365054fd
SHA51211f0aea52586194aa9c939068b4e678aa191e24e1bff09d33c99f338fa8cb190df2801874785d924b9172f9ccf052452244aed0df23b151545e23954e88589cd
-
Filesize
342B
MD5c9f0c80df6c4da3c11587ac502737ed8
SHA18c636a9e78e867b3637a1d8cc6c63c0ad313979a
SHA256787a474e1038ede221d699500ab1fc3ff8f3e86c0bf985443b62b140268f79fe
SHA51217d2407ae4fb4abf8ad8ef4a43a8b35532b0a355fe2ebf18057923f3af143f79a6e1f95bc27faf310a1c22b4fca6ca99caa15209d4952c79912d17d2e9b5774f
-
Filesize
342B
MD5615528b6d918094937f58edc7c135549
SHA1cbab5604a621448f70109f62d33db9a2a4c63105
SHA256d893b7e35ae44550d2f1e91584516ba2036c31bfa319fe73539c54a29d4fac38
SHA51220897565e5ced283ab64bcde78952a71165c5abb64b416abe394631b326854c7584d5c2a914a83b0a1c560dc266c560b67d601d1f4adb3601f99d89ee44b7797
-
Filesize
342B
MD5cb39c22a329dc38dd9434300558f747d
SHA1411129ed63a778be47dc56cdf5eb66b79374df81
SHA2561f78fc4afed68636cefe71e830c5e45499b11310dbf514b46435a3c28b89f0b0
SHA5129d7cfa6de14466d349809630bc42e08f933b5014894da20fbb7450a3acbb9c47c543fa7135cbc3867c3e1d4fe70ce01353406cb1309cf2f76d7d72e6a8764733
-
Filesize
342B
MD51debaf5cac92717f038de7dcacf3f0ef
SHA13bb7f52ede15010cdf96d3a49feecbcbd5f8614f
SHA256c6dcc1f6544e2c643b0ed138c43b9e45243cad55190bac0d0c668cc0778eb940
SHA512f08e43ce2885f056642da5a5db5696d7d539ac2eb40740e6c0e113fe662840fa661de782f58bec675ee094a8e34e6f9c3b824a3cc03725ad3c6950ed58d5f814
-
Filesize
342B
MD5fae6b393353d7ad74e6075fc13dc0524
SHA106a684ec318bf2e00d067608a926a365f430f1d7
SHA2567d921db203de3b4574755cbb9c80c69dbfa0b81d95548230bdc8af4e97384b2d
SHA512ca1e1ac487ab6d8398d9caa1650b78664b470eef7f3956364ee8f8ebcb70e4a61e106690419e12f393991f50a83a2dfe72e1e4ff91cd62f095c4c81f245d5e75
-
Filesize
342B
MD5a86b9c4d10cb04b12f30302e3f1eb00a
SHA17718be662b1cba9d835b3b2a6c6d8db7462c4421
SHA256c97e7e1ddf974008f91d5df5bf5fe8a808cf02da31f0a3797adf8c1bd25606a5
SHA51294d3233d23562b4bb8e90deff51e7a3002d061e151ae7cd680bccb8f3b13150bf1c85dbf4fdbde508a5112404312ad672e5c4b691d5b38bef9745614db4d478b
-
Filesize
342B
MD5dbff613711a7dbcb173182023b992ecb
SHA1b481ce827fcc8b8c67fda52cc310a71396e9ea83
SHA256ea560be7382ab8a3356188d751421d67c02a50f87f6f3dabdbe753f251c3ec55
SHA512965543e6af2fb5ca4735596d88257a09bc92c0e4c44384f15865b166f28d93c7f63bfbb286b46a50638102f6b779ba50d4473dcd22b1a891e50ee701af1620ab
-
Filesize
342B
MD5ef9a791600fd38748a5c0169faa3eead
SHA1a67fbe4ed4cedbdbdb2181ae4849e441ed6e35d4
SHA2568f8fff9139fe6e245b2bd9bfdfe6168a9ade417a8e30a91e139cbe2f36281e62
SHA5129b198d2966b0349d67d0c9ff1ed3c8d113de96357b39c3e10f19a8601a9501cb2b07827179b74ab46d44a70ba84906dc373577102db098c3a46139e86be057ba
-
Filesize
242B
MD53d1e894f806116410e0a833b0fc6cc3f
SHA19eebd5f2c30f25e4732d5237c25e26da06e4fe4a
SHA256263324d9eadfbbd166528a5629fa580de17cc9ad98566693036b6cb524517c3e
SHA512fa380f007bc31ab8d99a36a43eaed0cd7f8c3f2ee2668894d5e8932ea6d3f68746f6d62d61e15c63182c61ca754e7b0266110ac4d2815f760502be62e90a7d43
-
Filesize
70KB
MD549aebf8cbd62d92ac215b2923fb1b9f5
SHA11723be06719828dda65ad804298d0431f6aff976
SHA256b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b
-
Filesize
181KB
MD54ea6026cf93ec6338144661bf1202cd1
SHA1a1dec9044f750ad887935a01430bf49322fbdcb7
SHA2568efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA5126c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b