Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
147s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
30/11/2024, 04:30
Static task
static1
Behavioral task
behavioral1
Sample
b4c8f1e92f8853be63f7ba7f879e9367_JaffaCakes118.html
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b4c8f1e92f8853be63f7ba7f879e9367_JaffaCakes118.html
Resource
win10v2004-20241007-en
General
-
Target
b4c8f1e92f8853be63f7ba7f879e9367_JaffaCakes118.html
-
Size
129KB
-
MD5
b4c8f1e92f8853be63f7ba7f879e9367
-
SHA1
2d11912402720763a9dad1dc41e64d7d8065ef19
-
SHA256
bde84887b30e902f9b954ad2c7baa00821613611fb3a1dbb892aac7a2d729187
-
SHA512
4eb65aef6962cd89b02c0e8cd82fca12edb74abcb82fde0aafb8df2a47611233aae9e8197a958f3b2f31eddd0821148f6c1a672d2e7ccc99030ad87a61e167eb
-
SSDEEP
3072:dUVCWDxYxQ2PDxYxC2T/Z1sxoElHedvSefhENE/jzCqezKy3pO:dUV1DxYxQ2PDxYxC2T/ZndDJ
Malware Config
Signatures
-
Enumerates system info in registry 2 TTPs 3 IoCs
description ioc Process Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer msedge.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName msedge.exe -
Suspicious behavior: EnumeratesProcesses 10 IoCs
pid Process 3276 msedge.exe 3276 msedge.exe 372 msedge.exe 372 msedge.exe 4504 identity_helper.exe 4504 identity_helper.exe 5060 msedge.exe 5060 msedge.exe 5060 msedge.exe 5060 msedge.exe -
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 10 IoCs
pid Process 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe -
Suspicious use of FindShellTrayWindow 25 IoCs
pid Process 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe -
Suspicious use of SendNotifyMessage 24 IoCs
pid Process 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe 372 msedge.exe -
Suspicious use of WriteProcessMemory 64 IoCs
description pid Process procid_target PID 372 wrote to memory of 2468 372 msedge.exe 82 PID 372 wrote to memory of 2468 372 msedge.exe 82 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 1256 372 msedge.exe 83 PID 372 wrote to memory of 3276 372 msedge.exe 84 PID 372 wrote to memory of 3276 372 msedge.exe 84 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85 PID 372 wrote to memory of 4968 372 msedge.exe 85
Processes
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --start-maximized --single-argument C:\Users\Admin\AppData\Local\Temp\b4c8f1e92f8853be63f7ba7f879e9367_JaffaCakes118.html1⤵
- Enumerates system info in registry
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of WriteProcessMemory
PID:372 -
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9e4f646f8,0x7ff9e4f64708,0x7ff9e4f647182⤵PID:2468
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2116 /prefetch:22⤵PID:1256
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 /prefetch:32⤵
- Suspicious behavior: EnumeratesProcesses
PID:3276
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2676 /prefetch:82⤵PID:4968
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3204 /prefetch:12⤵PID:4816
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3216 /prefetch:12⤵PID:4524
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4092 /prefetch:12⤵PID:2296
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4636 /prefetch:12⤵PID:2104
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4960 /prefetch:12⤵PID:4392
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5256 /prefetch:12⤵PID:4984
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4960 /prefetch:82⤵PID:1416
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4960 /prefetch:82⤵
- Suspicious behavior: EnumeratesProcesses
PID:4504
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4692 /prefetch:12⤵PID:5088
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2036 /prefetch:12⤵PID:2204
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4084 /prefetch:12⤵PID:3232
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4716 /prefetch:12⤵PID:4032
-
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,8386202427199199660,12762465160230794226,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5420 /prefetch:22⤵
- Suspicious behavior: EnumeratesProcesses
PID:5060
-
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:5012
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵PID:4880
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
152B
MD5fab8d8d865e33fe195732aa7dcb91c30
SHA12637e832f38acc70af3e511f5eba80fbd7461f2c
SHA2561b034ffe38e534e2b7a21be7c1f207ff84a1d5f3893207d0b4bb1a509b4185ea
SHA51239a3d43ef7e28fea2cb247a5d09576a4904a43680db8c32139f22a03d80f6ede98708a2452f3f82232b868501340f79c0b3f810f597bcaf5267c3ccfb1704b43
-
Filesize
152B
MD536988ca14952e1848e81a959880ea217
SHA1a0482ef725657760502c2d1a5abe0bb37aebaadb
SHA256d7e96088b37cec1bde202ae8ec2d2f3c3aafc368b6ebd91b3e2985846facf2e6
SHA512d04b2f5afec92eb3d9f9cdc148a3eddd1b615e0dfb270566a7969576f50881d1f8572bccb8b9fd7993724bdfe36fc7633a33381d43e0b96c4e9bbd53fc010173
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
Filesize96B
MD5ae953ba0497fae1caaac51caad45d143
SHA162b2e062ed4143f0dc350b24309f2157f31e0ad9
SHA2564272de570488250a97589e944dcb65c8dcc1b60486fbe7710829540e9357a915
SHA5124257b23ece625050dcb786f351b8fc2b0e110af2e9731b5989752b04afeaeecaf0b3cb6c86bfde3d0da68bdb2054692fef3bab9f79590dfe4bdda68111c7fa9b
-
Filesize
2KB
MD58b6ed0ddc2d0d957c4565fa239a6a063
SHA1d47f7175e62cf7903db7bc7f248bbae2407a3927
SHA2562c80c4bb70eb267bc9b77df4b729784c389c1d9564d2139c2f35fca6b1ed3220
SHA51231e5159a4d0ae25cda4d6093bc36c60f2c8e64f8127e244ee66d9c0fb1a22fdef26fb0aa905435f95a531594f711144f25fe67f021f20eec3e979ce65ebb12d2
-
Filesize
2KB
MD5e3b4c3f09e252007f73477c374d0d937
SHA1df35466b7af65b5690c08dd32e882c7763212176
SHA25658cfa8b74848c14f9d92c37c9ae0c8b35ce992395fe25e4a46fcd50630def190
SHA51210ed69e0be17ecc11582e610b975fa870f15bf1bf7e52c3f9fbe02efd7692a80da7c23a3747b32e78f0dc07953b27e6ab9f9d3c3481c623127494eea6b37e17b
-
Filesize
7KB
MD52da4a1ccc1e07445bf4d2a30123352a8
SHA1321c6c51290a3d00ca3292739232607e8e137524
SHA256f0e93985cd71e70907084fde3dfd3cf12303f9d80f7bc023c9d5e7d5b84ffa2c
SHA5123b4728b0bc4442f8c47b48dd2a104b246a386f5b46691395bd088ac00b0b90d9c7d76fc0b9f1d3696a15c9412ef365954f7977ddc48bbf316382e888115c688c
-
Filesize
5KB
MD54148871457a6041dd58d82e1eccbd702
SHA1c969cb91c3680276cb16cefb20343a3f8da9f7c9
SHA2569a561062482322f60096adc969b3ee1fd56898565e5b1976e4dcb7917e7b0638
SHA51297425a1a7c872506fc84c5eb2eb4f61501373d02f297b159eb377f0a476f8fa3324bf1c89a1ea45bb4ce3285f4d601c668e60e80ff35e365073444490a3121f1
-
Filesize
203B
MD5133e622c81d62a154e9c7c45bc3bf388
SHA1eec39a524a0e74a91eea4e68d495b8859a83573c
SHA256cf636525c2831660c169aa8827a2555ffedc08ff4f010004cb874058ae52f7d5
SHA512ce3dbb0095ac49146bd72180ee34488fea29f37cd416fb145ecefb25189abbbcfa0acc5f64bedba538689ebeae0eb787b8f6abc0fe20902096ed4185a871f5e6
-
Filesize
203B
MD52afd11e8cc400844063f86ab3ec885a2
SHA10ca4f5fb78292e8f29dfc3787fc9750f76fa8524
SHA25649e7b93645cd5cd1b8bbcfd785e5ad92dab7e3e46dbf4f95de6b77d4aef52304
SHA512e21372e7157155fa2979d74f2ba55d26c87bffda5fee9b02bf04e909941e6760f9fa6b421a3e47801580ffaa0788ea3efff93df59cc4e2f76660eba0edf8a70a
-
Filesize
16B
MD56752a1d65b201c13b62ea44016eb221f
SHA158ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA2560861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA5129cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389
-
Filesize
10KB
MD548b85a9b8195725ce970af359f7075ac
SHA1276653aec191d493a062b1ea2378b34c70545873
SHA2560022691b84af234861b04d6b84e11ab887954f49ae9da1309eb0593768bd1efc
SHA512b6189b28a29f8ecd2bfa15b4cbd836e216b1dcd9e544ebaad10ccd706afba11c17bbc2001df9d53572b8693f3a8fd2f47b0c713ac92afd0b1a71c486e9b54617