Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
150s -
max time network
150s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
15/01/2025, 18:14 UTC
General
-
Target
c4fca61333b642e21c2b1ba417c0100d.dll
-
Size
5.0MB
-
MD5
c4fca61333b642e21c2b1ba417c0100d
-
SHA1
5505cce40eeedd3948daf098f1ce95aa5cd1bc42
-
SHA256
85a6bca0ebd3e1c99d8fd6669a6db6ddd8463b7c7edaa87702ca2a425fc5cce5
-
SHA512
ea4138d3ce34d72fbfe522237e22a70cf724a6028d311f54540b0a4f8a2e1dc21b0245c156f67777d9b7878009e09b80b41338d20e8ac5a0cb0e91927b98a023
-
SSDEEP
49152:RnHqMSPbcBVQej/1INRx+TSqTdX1HkQo6SAARdhnv:1HqPoBhz1aRxcSUDk36SAEdhv
Score
10/10
Malware Config
Signatures
-
Wannacry
WannaCry is a ransomware cryptoworm.
-
Wannacry family
-
Contacts a large (3314) amount of remote hosts 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE 2 IoCs
-
Creates a large amount of network flows 1 TTPs
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory 5 IoCs
-
Drops file in Windows directory 2 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 3 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Modifies data under HKEY_USERS 24 IoCs
-
Suspicious use of WriteProcessMemory 11 IoCs
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\c4fca61333b642e21c2b1ba417c0100d.dll,#11⤵
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\rundll32.exerundll32.exe C:\Users\Admin\AppData\Local\Temp\c4fca61333b642e21c2b1ba417c0100d.dll,#12⤵
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
- Suspicious use of WriteProcessMemory
-
C:\WINDOWS\mssecsvr.exeC:\WINDOWS\mssecsvr.exe3⤵
- Executes dropped EXE
- Drops file in Windows directory
- System Location Discovery: System Language Discovery
-
-
-
C:\WINDOWS\mssecsvr.exeC:\WINDOWS\mssecsvr.exe -m security1⤵
- Executes dropped EXE
- Drops file in System32 directory
- System Location Discovery: System Language Discovery
- Modifies data under HKEY_USERS
Network
-
DNSwww.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comRemote address:8.8.8.8:53Requestwww.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comIN AResponsewww.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comIN A103.224.212.215 -
GEThttp://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/Remote address:103.224.212.215:80RequestGET / HTTP/1.1
Host: www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
Cache-Control: no-cache
ResponseHTTP/1.1 302 Found
date: Wed, 15 Jan 2025 18:14:44 GMT
server: Apache
set-cookie: __tad=1736964884.8498309; expires=Sat, 13-Jan-2035 18:14:44 GMT; Max-Age=315360000
location: http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4444-8951-467e0ca30aa5
content-length: 2
content-type: text/html; charset=UTF-8
connection: close
-
DNSww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comRemote address:8.8.8.8:53Requestww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comIN AResponseww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comIN CNAME77026.bodis.com77026.bodis.comIN A199.59.243.228
-
GEThttp://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4444-8951-467e0ca30aa5Remote address:199.59.243.228:80RequestGET /?subid1=20250116-0514-4444-8951-467e0ca30aa5 HTTP/1.1
Host: ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
Cache-Control: no-cache
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
date: Wed, 15 Jan 2025 18:14:44 GMT
content-type: text/html; charset=utf-8
content-length: 1262
x-request-id: ef5d7b1e-d23f-4f49-a52a-9373e0abe159
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_zOlUXeV//80XQJDgeiHgqP2vUIMGZtFlAYpIe20EWEXUuxrY9fYXgEDLg05gSHdEom7sL5Is3ObWckv4TqUfCg==
set-cookie: parking_session=ef5d7b1e-d23f-4f49-a52a-9373e0abe159; expires=Wed, 15 Jan 2025 18:29:45 GMT; path=/
-
GEThttp://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/Remote address:103.224.212.215:80RequestGET / HTTP/1.1
Host: www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
Cache-Control: no-cache
ResponseHTTP/1.1 302 Found
date: Wed, 15 Jan 2025 18:14:45 GMT
server: Apache
set-cookie: __tad=1736964885.2768102; expires=Sat, 13-Jan-2035 18:14:45 GMT; Max-Age=315360000
location: http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4589-a8c1-0960c885a811
content-length: 2
content-type: text/html; charset=UTF-8
connection: close
-
GEThttp://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4589-a8c1-0960c885a811Remote address:199.59.243.228:80RequestGET /?subid1=20250116-0514-4589-a8c1-0960c885a811 HTTP/1.1
Host: ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
Cache-Control: no-cache
Connection: Keep-Alive
ResponseHTTP/1.1 200 OK
date: Wed, 15 Jan 2025 18:14:45 GMT
content-type: text/html; charset=utf-8
content-length: 1262
x-request-id: 7ef3fade-c2cd-4af2-ba3d-3f68096f37d9
cache-control: no-store, max-age=0
accept-ch: sec-ch-prefers-color-scheme
critical-ch: sec-ch-prefers-color-scheme
vary: sec-ch-prefers-color-scheme
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANDrp2lz7AOmADaN8tA50LsWcjLFyQFcb/P2Txc58oYOeILb3vBw7J6f4pamkAQVSQuqYsKx3YzdUHCvbVZvFUsCAwEAAQ==_zqPCOuHzebZy+toqCKVjZm98U6+QhesVGbtC1HBibzYWTffbZE/AqGXVQBWjlHMI8J8AspBqjeTbXpqPyu5kFg==
set-cookie: parking_session=7ef3fade-c2cd-4af2-ba3d-3f68096f37d9; expires=Wed, 15 Jan 2025 18:29:45 GMT; path=/
-
103.224.212.215:80http://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/http
HTTP Request
GET http://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/HTTP Response
302 -
199.59.243.228:80http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4444-8951-467e0ca30aa5http
HTTP Request
GET http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4444-8951-467e0ca30aa5HTTP Response
200 -
103.224.212.215:80http://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/http
HTTP Request
GET http://www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/HTTP Response
302 -
199.59.243.228:80http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4589-a8c1-0960c885a811http
HTTP Request
GET http://ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com/?subid1=20250116-0514-4589-a8c1-0960c885a811HTTP Response
200 -
37.99.139.101:445 -
10.127.0.1:445 -
10.127.1.1:445
-
10.127.2.1:445
-
10.127.3.1:445
-
10.127.4.1:445
-
10.127.5.1:445
-
10.127.6.1:445
-
10.127.7.1:445
-
66.175.83.220:445
-
10.127.8.1:445
-
10.127.9.1:445
-
10.127.10.1:445
-
10.127.11.1:445
-
10.127.12.1:445
-
10.127.13.1:445
-
10.127.14.1:445
-
10.127.15.1:445
-
10.127.16.1:445
-
10.127.17.1:445
-
10.127.18.1:445
-
10.127.19.1:445
-
10.127.20.1:445
-
10.127.21.1:445
-
11.149.62.215:445
-
10.127.22.1:445
-
10.127.23.1:445
-
1.169.7.157:445 -
10.127.24.1:445
-
163.212.103.225:445 -
208.75.243.119:445
-
10.127.25.1:445
-
10.127.26.1:445
-
10.127.27.1:445
-
10.127.28.1:445
-
10.127.29.1:445
-
10.127.30.1:445
-
10.127.31.1:445
-
10.127.32.1:445
-
10.127.33.1:445
-
10.127.34.1:445
-
10.127.35.1:445
-
10.127.36.1:445
-
10.127.37.1:445
-
10.127.38.1:445
-
10.127.39.1:445
-
10.127.40.1:445
-
10.127.41.1:445
-
10.127.42.1:445
-
99.156.203.229:445
-
10.127.43.1:445
-
20.180.77.111:445
-
10.127.44.1:445
-
10.127.45.1:445
-
84.146.204.183:445 -
16.183.106.143:445
-
124.246.157.205:445
-
102.113.120.55:445 -
10.127.46.1:445
-
10.127.47.1:445
-
10.127.48.1:445
-
10.127.49.1:445
-
10.127.50.1:445
-
10.127.51.1:445
-
10.127.52.1:445
-
10.127.53.1:445
-
10.127.54.1:445
-
10.127.55.1:445
-
10.127.56.1:445
-
10.127.57.1:445
-
10.127.58.1:445
-
10.127.59.1:445
-
10.127.60.1:445
-
10.127.61.1:445
-
180.79.213.215:445 -
10.127.62.1:445
-
10.127.63.1:445
-
10.127.64.1:445
-
40.103.147.126:445
-
10.127.65.1:445
-
140.6.49.235:445
-
195.132.157.32:445 -
191.30.100.147:445 -
145.97.118.73:445 -
19.19.26.124:445
-
10.127.66.1:445
-
10.127.67.1:445
-
10.127.68.1:445
-
10.127.69.1:445
-
10.127.70.1:445
-
10.127.71.1:445
-
10.127.72.1:445
-
10.127.73.1:445
-
10.127.74.1:445
-
10.127.75.1:445
-
10.127.76.1:445
-
10.127.77.1:445
-
10.127.78.1:445
-
118.93.136.28:445 -
10.127.79.1:445
-
10.127.80.1:445
-
10.127.81.1:445
-
77.90.248.206:445
-
10.127.82.1:445
-
10.127.83.1:445
-
71.156.101.125:445
-
10.127.84.1:445
-
10.127.85.1:445
-
16.221.145.212:445
-
87.46.115.240:445 -
151.214.108.64:445
-
108.202.43.32:445
-
178.103.126.78:445 -
152.254.104.182:445
-
10.127.86.1:445
-
10.127.87.1:445
-
10.127.88.1:445
-
10.127.89.1:445
-
10.127.90.1:445
-
10.127.91.1:445
-
10.127.92.1:445
-
10.127.93.1:445
-
10.127.94.1:445
-
10.127.95.1:445
-
10.127.96.1:445
-
10.127.97.1:445
-
10.127.98.1:445
-
10.127.99.1:445
-
10.127.100.1:445
-
192.37.29.20:445 -
39.131.172.248:445
-
10.127.101.1:445
-
10.127.102.1:445
-
10.127.103.1:445
-
195.229.135.29:445 -
68.216.214.161:445
-
171.207.218.25:445 -
204.176.57.9:445
-
213.187.145.78:445
-
175.209.80.92:445 -
166.15.79.223:445
-
216.57.172.184:445
-
217.93.19.94:445
-
10.127.104.1:445
-
10.127.105.1:445
-
10.127.106.1:445
-
10.127.107.1:445
-
10.127.108.1:445
-
10.127.109.1:445
-
10.127.110.1:445
-
10.127.111.1:445
-
10.127.112.1:445
-
10.127.113.1:445
-
10.127.114.1:445
-
10.127.115.1:445
-
10.127.116.1:445
-
10.127.117.1:445
-
10.127.118.1:445
-
10.127.119.1:445
-
10.127.120.1:445
-
10.127.121.1:445
-
10.127.122.1:445
-
45.32.72.64:445
-
37.233.243.49:445 -
86.247.41.124:445
-
16.142.222.137:445
-
10.127.123.1:445
-
164.119.193.87:445
-
45.16.141.214:445
-
219.57.9.145:445
-
164.68.142.169:445
-
75.151.217.194:445
-
102.109.80.23:445 -
197.142.24.5:445 -
98.13.241.204:445
-
144.37.228.173:445
-
10.127.124.1:445
-
10.127.125.1:445
-
10.127.126.1:445
-
10.127.127.1:445
-
10.127.128.1:445
-
10.127.129.1:445
-
10.127.130.1:445
-
10.127.131.1:445
-
10.127.132.1:445
-
10.127.133.1:445
-
10.127.134.1:445
-
10.127.135.1:445
-
10.127.136.1:445
-
10.127.137.1:445
-
10.127.138.1:445
-
10.127.139.1:445
-
10.127.140.1:445
-
10.127.141.1:445
-
65.60.45.178:445
-
212.143.71.237:445 -
10.127.142.1:445
-
10.127.143.1:445
-
10.127.144.1:445
-
47.129.221.178:445
-
35.82.59.172:445
-
221.32.11.183:445
-
101.66.224.186:445
-
212.80.205.56:445
-
80.232.200.104:445 -
49.16.151.109:445
-
68.238.169.27:445
-
191.56.171.6:445
-
12.167.7.38:445
-
15.243.227.148:445
-
38.226.27.201:445
-
186.104.95.89:445 -
10.127.145.1:445
-
10.127.146.1:445
-
10.127.147.1:445
-
10.127.148.1:445
-
10.127.149.1:445
-
10.127.150.1:445
-
10.127.151.1:445
-
10.127.152.1:445
-
10.127.153.1:445
-
10.127.154.1:445
-
10.127.155.1:445
-
10.127.156.1:445
-
10.127.157.1:445
-
10.127.158.1:445
-
10.127.159.1:445
-
42.220.11.213:445
-
10.127.160.1:445
-
51.238.137.12:445
-
10.127.161.1:445
-
10.127.162.1:445
-
10.127.163.1:445
-
102.68.178.52:445 -
87.148.205.190:445
-
10.127.164.1:445
-
108.88.252.124:445
-
77.163.73.182:445
-
221.99.39.254:445
-
77.12.161.162:445
-
43.113.98.104:445
-
217.121.181.9:445
-
85.170.64.8:445
-
9.43.125.125:445
-
172.28.1.117:445
-
92.246.91.184:445
-
222.215.120.191:445
-
191.181.160.66:445
-
1.7.199.149:445 -
10.127.165.1:445
-
10.127.166.1:445
-
10.127.167.1:445
-
10.127.168.1:445
-
10.127.169.1:445
-
10.127.170.1:445
-
10.127.171.1:445
-
10.127.172.1:445
-
10.127.173.1:445
-
10.127.174.1:445
-
10.127.175.1:445
-
10.127.176.1:445
-
10.127.177.1:445
-
10.127.178.1:445
-
10.127.179.1:445
-
71.62.110.3:445
-
10.127.180.1:445
-
103.73.148.15:445
-
10.127.181.1:445
-
27.189.36.116:445
-
10.127.182.1:445
-
68.15.249.10:445
-
217.206.133.243:445
-
69.91.3.220:445
-
78.173.222.195:445 -
188.224.23.234:445
-
79.107.112.73:445 -
10.194.172.62:445
-
16.212.82.116:445
-
153.202.241.35:445
-
150.86.16.93:445
-
103.85.3.28:445
-
146.99.148.39:445
-
15.148.65.156:445
-
10.127.183.1:445
-
184.57.60.160:445
-
211.200.191.243:445
-
10.127.184.1:445
-
10.127.185.1:445
-
10.127.186.1:445
-
10.127.187.1:445
-
10.127.188.1:445
-
10.127.189.1:445
-
10.127.190.1:445
-
10.127.191.1:445
-
10.127.192.1:445
-
10.127.193.1:445
-
10.127.194.1:445
-
10.127.195.1:445
-
10.127.196.1:445
-
10.127.197.1:445
-
10.127.198.1:445
-
10.127.199.1:445
-
10.127.200.1:445
-
161.22.39.106:445 -
95.187.175.246:445
-
199.195.162.44:445 -
10.127.201.1:445
-
10.127.202.1:445
-
58.208.65.118:445
-
37.232.80.165:445
-
52.232.196.86:445
-
178.94.154.96:445 -
63.219.137.120:445
-
200.229.65.133:445
-
65.105.67.233:445
-
133.49.218.112:445
-
212.84.55.145:445 -
55.110.240.23:445
-
33.138.216.55:445
-
162.48.162.179:445
-
106.78.112.39:445
-
42.235.141.167:445
-
131.253.45.201:445
-
93.90.115.218:445 -
10.127.203.1:445
-
196.106.142.109:445 -
19.30.202.170:445
-
10.127.204.1:445
-
10.127.205.1:445
-
10.127.206.1:445
-
10.127.207.1:445
-
10.127.208.1:445
-
10.127.209.1:445
-
10.127.210.1:445
-
10.127.211.1:445
-
10.127.212.1:445
-
10.127.213.1:445
-
10.127.214.1:445
-
10.127.215.1:445
-
10.127.216.1:445
-
10.127.217.1:445
-
10.127.218.1:445
-
10.127.219.1:445
-
10.127.220.1:445
-
10.127.221.1:445
-
53.97.171.10:445
-
10.127.222.1:445
-
119.252.212.178:445
-
161.129.13.70:445
-
129.253.190.143:445
-
186.207.214.202:445
-
173.78.114.0:445
-
43.24.9.177:445
-
49.20.228.45:445
-
169.195.112.102:445
-
165.191.34.100:445 -
63.82.54.220:445
-
70.165.226.14:445
-
150.246.198.117:445
-
54.100.95.74:445
-
183.141.221.128:445
-
185.135.201.27:445 -
143.40.244.196:445
-
113.100.159.90:445
-
20.163.211.220:445
-
57.153.32.65:445
-
23.170.112.26:445
-
30.252.185.177:445
-
185.136.205.214:445
-
10.127.223.1:445
-
10.127.224.1:445
-
10.127.225.1:445
-
10.127.226.1:445
-
10.127.227.1:445
-
10.127.228.1:445
-
10.127.229.1:445
-
10.127.230.1:445
-
10.127.231.1:445
-
10.127.232.1:445
-
10.127.233.1:445
-
10.127.234.1:445
-
10.127.235.1:445
-
10.127.236.1:445
-
10.127.237.1:445
-
10.127.238.1:445
-
10.127.239.1:445
-
10.127.240.1:445
-
28.224.227.46:445
-
10.127.241.1:445
-
10.127.242.1:445
-
10.127.243.1:445
-
40.234.180.143:445
-
171.54.59.25:445
-
91.205.85.174:445 -
167.63.77.113:445 -
105.214.207.199:445 -
136.254.220.54:445
-
49.89.172.16:445
-
88.48.250.29:445
-
86.163.165.155:445
-
134.41.204.157:445
-
71.189.55.141:445
-
61.217.65.233:445
-
76.135.181.95:445
-
221.218.136.7:445
-
17.248.138.141:445
-
32.21.240.46:445
-
218.171.132.220:445
-
51.107.218.23:445 -
168.114.40.216:445
-
196.146.64.156:445 -
23.212.96.169:445
-
109.187.159.204:445
-
10.127.244.1:445
-
10.127.245.1:445
-
10.127.246.1:445
-
10.127.247.1:445
-
10.127.248.1:445
-
10.127.249.1:445
-
10.127.250.1:445
-
10.127.251.1:445
-
10.127.252.1:445
-
10.127.253.1:445
-
10.127.254.1:445
-
10.127.255.1:445
-
10.127.0.2:445
-
10.127.1.2:445
-
10.127.2.2:445
-
10.127.3.2:445
-
204.242.143.142:445
-
10.127.4.2:445
-
10.127.5.2:445
-
137.67.30.66:445
-
111.105.43.142:445
-
161.147.170.99:445
-
176.16.36.227:445
-
192.8.0.101:445
-
146.114.77.186:445
-
217.68.44.209:445 -
62.140.122.215:445
-
99.251.152.189:445
-
80.127.206.148:445
-
134.53.171.132:445
-
48.214.243.121:445
-
192.187.18.176:445 -
74.167.30.75:445
-
10.127.6.2:445
-
112.58.165.68:445
-
191.98.154.237:445 -
213.131.60.45:445
-
192.77.122.178:445 -
122.48.110.43:445
-
10.229.25.25:445
-
198.179.142.111:445
-
219.69.236.194:445
-
92.162.81.251:445
-
35.121.101.193:445
-
130.16.106.159:445
-
42.137.174.240:445
-
10.127.7.2:445
-
10.127.8.2:445
-
10.127.9.2:445
-
10.127.10.2:445
-
10.127.11.2:445
-
10.127.12.2:445
-
10.127.13.2:445
-
10.127.14.2:445
-
10.127.15.2:445
-
10.127.16.2:445
-
10.127.17.2:445
-
10.127.18.2:445
-
10.127.19.2:445
-
10.127.20.2:445
-
10.127.21.2:445
-
10.127.22.2:445
-
10.127.23.2:445
-
204.27.107.35:445
-
29.181.64.158:445
-
38.234.202.229:445
-
223.254.110.115:445
-
220.169.33.32:445
-
86.165.130.41:445
-
186.236.38.117:445
-
87.216.246.42:445
-
102.145.177.2:445 -
41.85.5.64:445
-
213.49.108.214:445 -
61.107.32.43:445
-
216.0.149.138:445
-
42.138.1.244:445
-
171.100.36.14:445 -
36.114.105.250:445
-
74.48.99.252:445
-
157.4.140.197:445
-
8.8.8.8:53www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comdns
DNS Request
www.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
DNS Response
103.224.212.215
-
8.8.8.8:53ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.comdns
DNS Request
ww25.iuqerfsodp9ifjaposdfjhgosurijfaewrwergwff.com
DNS Response
199.59.243.228
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
2.2MB
MD56bfa175e3cbd626ef26394826edb0fdf
SHA15baaa75467b69d3ead87a6123512e56d78377940
SHA256bd3e9d2bd72e399554ba0588778b179e94c3179f7ff32b9c7cdd542731247ff3
SHA51270bffc468c6aae80ddf98c1e54097b3a3e1278c7fa118b28d4116ba95a1d769b4d622586d946b7ec62002539bf0915badeaeb164e0419c5e618262fbb3c432f6