0.9
低危
DACN
0.12
FACILE
1.00
IMCLNet
0.68
MFGraph
0.00
反病毒引擎
| 查杀引擎 | 查杀结果 | 查杀时间 | 查杀版本 |
|---|---|---|---|
| Alibaba | Trojan:Win32/Agent.449536cb | 20190527 | 0.3.0.5 |
| Avast | Win32:FileinfectorX-gen [Trj] | 20191001 | 18.4.3895.0 |
| Baidu | None | 20190318 | 1.0.0.2 |
| CrowdStrike | win/malicious_confidence_100% (W) | 20190702 | 1.0 |
| Kingsoft | None | 20191001 | 2013.8.14.323 |
| McAfee | GenericRXGP-VD!8C59E4490529 | 20191001 | 6.0.6.653 |
| Tencent | None | 20191001 | 1.0.0.1 |
静态指标
动态指标
网络通信
与未执行 DNS 查询的主机进行通信
(1 个事件)
| host | 114.114.114.114 | |||
文件已被 VirusTotal 上 56 个反病毒引擎识别为恶意
(50 out of 56 个事件)
| ALYac | Trojan.Agent.DNSR |
| APEX | Malicious |
| AVG | Win32:FileinfectorX-gen [Trj] |
| Acronis | suspicious |
| Ad-Aware | Trojan.Agent.DNSR |
| AhnLab-V3 | Trojan/RL.Agent.R248722 |
| Alibaba | Trojan:Win32/Agent.449536cb |
| Antiy-AVL | Trojan/Win32.AGeneric |
| Arcabit | Trojan.Agent.DNSR |
| Avast | Win32:FileinfectorX-gen [Trj] |
| Avira | TR/Dropper.Gen |
| BitDefender | Trojan.Agent.DNSR |
| CAT-QuickHeal | Trojan.SkeeyahRI.S4351600 |
| ClamAV | Win.Malware.Satan-6952126-0 |
| Comodo | Virus.Win32.Agent.CTC@6rtueb |
| CrowdStrike | win/malicious_confidence_100% (W) |
| Cybereason | malicious.90529d |
| Cylance | Unsafe |
| Cyren | W32/Ransom.KX.gen!Eldorado |
| DrWeb | Trojan.DownLoader23.51365 |
| ESET-NOD32 | a variant of Win32/Agent.NCK |
| Emsisoft | Trojan.Agent.DNSR (B) |
| Endgame | malicious (high confidence) |
| F-Prot | W32/Ransom.KX.gen!Eldorado |
| F-Secure | Trojan.TR/Dropper.Gen |
| FireEye | Generic.mg.8c59e4490529dab9 |
| Fortinet | W32/Agent.NCK!tr |
| GData | Trojan.Agent.DNSR |
| Ikarus | Virus.Win32.CeeInject |
| Invincea | heuristic |
| Jiangmin | Trojan.Agent.cemd |
| K7AntiVirus | Trojan ( 0000e1321 ) |
| K7GW | Trojan ( 0000e1321 ) |
| Kaspersky | Trojan.Win32.Agent.neyndy |
| MAX | malware (ai score=89) |
| Malwarebytes | Trojan.Dropper.VBS |
| McAfee | GenericRXGP-VD!8C59E4490529 |
| McAfee-GW-Edition | BehavesLike.Win32.VTFlooder.cc |
| MicroWorld-eScan | Trojan.Agent.DNSR |
| Microsoft | VirTool:Win32/CeeInject.BCF!bit |
| NANO-Antivirus | Trojan.Win32.Agent.dxyslu |
| Paloalto | generic.ml |
| Panda | Trj/Genetic.gen |
| Qihoo-360 | Win32/Trojan.84d |
| Rising | Ransom.Satan!1.B5F1 (CLASSIC) |
| SentinelOne | DFI - Malicious PE |
| Sophos | W32/CTSInf-A |
| Symantec | Trojan.Gen.MBT |
| TACHYON | Trojan/W32.Agent.129080.B |
| Trapmine | malicious.moderate.ml.score |
二进制图像
288x288
224x224
192x192
160x160
128x128
96x96
64x64
32x32
运行截图
暂无运行截图
该样本运行过程中未生成截图
PE Compile Time
2015-05-05 21:45:31
PE Imphash
5ffb2aa7722009119a85fcb7499bf421
Sections
| Name | Virtual Address | Virtual Size | Size of Raw Data | Entropy |
|---|---|---|---|---|
| .text | 0x00001000 | 0x0000b6d0 | 0x0000b800 | 6.023434692393231 |
| .data | 0x0000d000 | 0x00002cf4 | 0x00000e00 | 2.1990937235865293 |
| .reloc | 0x00010000 | 0x000021f0 | 0x00002200 | 0.0 |
Imports
Library KERNEL32.DLL:
• 0x401018 GetDriveTypeW
• 0x40101c CreateProcessW
• 0x401020 GetLogicalDriveStringsW
• 0x401024 WriteFile
• 0x401028 ReadFile
• 0x40102c CreateFileW
• 0x401030 FlushFileBuffers
• 0x401034 GetLastError
• 0x401038 SetFilePointer
• 0x40103c LocalAlloc
• 0x401040 FindNextFileW
• 0x401044 LocalFree
• 0x401048 CreateThread
• 0x40104c ExpandEnvironmentStringsW
• 0x401050 WriteConsoleW
• 0x401054 SetFilePointerEx
• 0x401058 FindFirstFileW
• 0x40105c CreateMutexW
• 0x401060 GetFileSize
• 0x401064 GetEnvironmentVariableW
• 0x401068 FindClose
• 0x40106c ExitProcess
• 0x401070 SetStdHandle
• 0x401074 GetConsoleMode
• 0x401078 GetConsoleCP
• 0x40107c GetCommandLineW
• 0x401080 IsProcessorFeaturePresent
• 0x401084 SetLastError
• 0x401088 InterlockedIncrement
• 0x40108c InterlockedDecrement
• 0x401090 GetCurrentThreadId
• 0x401094 EncodePointer
• 0x401098 DecodePointer
• 0x40109c GetModuleHandleExW
• 0x4010a0 GetProcAddress
• 0x4010a4 MultiByteToWideChar
• 0x4010a8 GetStdHandle
• 0x4010ac GetModuleFileNameW
• 0x4010b0 GetProcessHeap
• 0x4010b4 GetFileType
• 0x4010b8 InitializeCriticalSectionAndSpinCount
• 0x4010bc DeleteCriticalSection
• 0x4010c0 GetStartupInfoW
• 0x4010c4 QueryPerformanceCounter
• 0x4010c8 GetCurrentProcessId
• 0x4010cc GetSystemTimeAsFileTime
• 0x4010d0 GetEnvironmentStringsW
• 0x4010d4 FreeEnvironmentStringsW
• 0x4010d8 UnhandledExceptionFilter
• 0x4010dc SetUnhandledExceptionFilter
• 0x4010e0 GetCurrentProcess
• 0x4010e4 TerminateProcess
• 0x4010e8 TlsAlloc
• 0x4010ec TlsGetValue
• 0x4010f0 TlsSetValue
• 0x4010f4 TlsFree
• 0x4010f8 GetModuleHandleW
• 0x4010fc EnterCriticalSection
• 0x401100 LeaveCriticalSection
• 0x401104 HeapFree
• 0x401108 Sleep
• 0x40110c IsValidCodePage
• 0x401110 GetACP
• 0x401114 GetOEMCP
• 0x401118 GetCPInfo
• 0x40111c IsDebuggerPresent
• 0x401120 LoadLibraryExW
• 0x401124 OutputDebugStringW
• 0x401128 LoadLibraryW
• 0x40112c RtlUnwind
• 0x401130 HeapAlloc
• 0x401134 HeapReAlloc
• 0x401138 WideCharToMultiByte
• 0x40113c GetStringTypeW
• 0x401140 HeapSize
• 0x401144 LCMapStringW
• 0x401148 CloseHandle
Library ADVAPI32.dll:
• 0x401000 RegCloseKey
• 0x401004 CryptGenRandom
• 0x401008 RegCreateKeyW
• 0x40100c CryptAcquireContextW
• 0x401010 RegSetValueExW
Library USER32.dll:
• 0x401150 wsprintfW
L!This program cannot be run in DOS mode.
F.'}'}'}>>}'}><}'}>?}'}_b}'}'}'}
=}'}Rich'}
`.data
.reloc
CorExitProcess
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
InitializeCriticalSectionEx
CreateSemaphoreExW
SetThreadStackGuarantee
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
FlushProcessWriteBuffers
FreeLibraryWhenCallbackReturns
GetCurrentProcessorNumber
GetLogicalProcessorInformation
CreateSymbolicLinkW
SetDefaultDllDirectories
EnumSystemLocalesEx
CompareStringEx
GetDateFormatEx
GetLocaleInfoEx
GetTimeFormatEx
GetUserDefaultLocaleName
IsValidLocaleName
LCMapStringEx
GetCurrentPackageId
Sunday
Monday
Tuesday
Wednesday
Thursday
Friday
Saturday
January
February
August
September
October
November
December
MM/dd/yy
dddd, MMMM dd, yyyy
HH:mm:ss
MessageBoxW
GetActiveWindow
GetLastActivePopup
GetUserObjectInformationW
GetProcessWindowStation
!"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~
A;r_^]QR5$@
r3339]vWF
;}r_^[]
3^]SWj
3_[^]j
3_[^]j
_[^]Vv
3~>3FfUfDu
r3fDuh
tajDlj
_^[]U,SVW
~EECTS
_^[]d0
SVWShM@
t^f|$<.tJD$<PS$h
_^[]UM
Efu3_^][j
}Genuu_}ineIuV}nteluM3@3
_^3[UE
8csmu%x
S^`F`y
YYt3V5
~pjCXf
YYt-V5
UQEPhH
YYuPVWho@
r^]UVu
@Y<v5h"@
[M_3^%
]j@j _W
jEPh`@
Y8Y4@M
Y8Y4@MFu
YUQQSVWh
S33Wf(@
EPEPWWVa
Yt)EPEP
_^[UQQE
tj"Xf9
j"_f9y
t"f;Et
^[SV5@
j=YfuG
tAVSPI
3Y_^[5@
3PPPPP2
M3ME3M3;u
;r_^VW
;r_^UQW
tGS3Vf9 t
^[_U`@
XUQV5H@
fu^h0t@
+SVW`@
1E3PeuEEEEd
Y__^[]QU
8csmu(=@@
^]VWP@
|3_@^UE
^]UVW3j
_^]USVW=@
Yu%t!V
u_^[]UVW3u
YYu,9E
u_^]USV5
P_^[]USVu
t_FxtX9
P?38YYE
Y_^[]UVu
Q_[^]j
Npt"~l
t4V0;t(W8Yt
MapUS]
AJu_^[]U
;rM_^3[
whu;5@
Eph33Su
OuV<Y3_M^3[=
ffffffE
3PPPPP
t'@-rA
B(;r3_^[]UjhP@
1E3PEd
Y_^[]UE
u*UQSV5
;r>PSYYt1
3_^[Uu
YH]V30@
(r^U5@
3@]3]UE
Y+t"+t
+t^+uH4}
uAGdEGd
u wdVUY
tAt2t$
^0s_^]
Ju3_uf
^0t^]SW
ft%Ou +
3jPfTAX3f
uj"U$`@
;tO95@
MEt/t+
3M_^3[
URPQQhP@
t;T$4t
;v.4v\
UVWS33333[_^]
33333USVWj
_^[]Ul$
on0v00f
on0v00f
on0v00f
DDDDDDDDDDDDDD
Y3MS0u
t@V*Yt
PMYF ;
P;YF$;
P)YF8;
PY^]UVu
PzYF0;
PhYF4;
PVY^]UVu
v$v(v,v0v4v
v8v<@v@vDvHvLvPvTvXv\v`yvdqvhivlavpYvtQvxIv|A@
^]UQQ`@
E$39E(j
3t@WVuSu
t!3PP9E u
e_^[M3
MYu(Eu$u u
PY]UQ`@
39E WWu
e_^[M3U
YUSVW3
_^[]U}
jA[jZZ+U
_+[^]UE
$3]UVu
3^]USVu
t9W>+~
e3}!}j
tWPV@YYE
PYt G}
4V@YYE
USVWUj
P(RP$R
t:|$,t
;t$,v-4v
UQPXY]Y[
^u;5<@
3W@D<,9U
u L!8y
YtDD4+
43QQ@8j
$QPEP0
G,84;E
(PSHP0
(PSHP0,
r3VVhU
QH++PPVh
Q$D+<;
Duct$j
+,^[M3_
}VYQL$
YY]UQQVu
PYYt@}
~';_t|%39E
;_tr.~
Map_6Uj
WYtP @
3_^]UVu
ExitProcess
GetEnvironmentVariableW
GetFileSize
CreateMutexW
FindFirstFileW
SetFilePointer
GetDriveTypeW
CreateProcessW
GetLogicalDriveStringsW
WriteFile
ReadFile
CreateFileW
FlushFileBuffers
GetLastError
FindClose
LocalAlloc
FindNextFileW
LocalFree
CreateThread
ExpandEnvironmentStringsW
KERNEL32.DLL
wsprintfW
USER32.dll
CryptAcquireContextW
RegCreateKeyW
CryptGenRandom
RegCloseKey
RegSetValueExW
ADVAPI32.dll
NtClose
RtlAdjustPrivilege
NtDelayExecution
ntdll.dll
GetCommandLineW
IsProcessorFeaturePresent
SetLastError
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
EncodePointer
DecodePointer
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
GetStdHandle
GetModuleFileNameW
GetProcessHeap
GetFileType
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
HeapFree
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
IsDebuggerPresent
LoadLibraryExW
OutputDebugStringW
LoadLibraryW
RtlUnwind
HeapAlloc
HeapReAlloc
WideCharToMultiByte
GetStringTypeW
HeapSize
LCMapStringW
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
abcdefghijklmnopqrstuvwxyz
ABCDEFGHIJKLMNOPQRSTUVWXYZ
\,XLs.c!a
./Dak/>
G>1M_d\hU
@7m2s>3Q?=
(>,}By
{L|of%
V~1N(z
JUN-oh1C#
K0u3X`
V!nR0,
^3<JAc
[{hVchr
U(mXRh
B (3aeB
3:Nbtt=Zz4
TV"E?ONTGP:u
r0l"~Cx
^BV|0J`+a
<`_mTtG;fd(?
L?OV)JR olpnkr3t
gA&G9p,SC
hQb~sO
rE<}6sT5
b@{"\@z?&
!Q7gYs
s5]#`V
`LYr~SD
||S`>*
P8cB$7
1 fau=!
g9h2.c.N
z[qVx
ua6Fy!xQ
}.\61hm
fD<tGN
~7CK]X
PiBOR4F
w?q}u,K</Hc
Y9[ ,'"<t
2@Z8<C+M
Ysq`8=
\L'nv5yM
~6j[,l
vK#vfF
;*}<#aww
kLy602JTca2KV
.M@wB`F
V,[@L4%2
T8Mnlf\
!Rl'<][t"E}dV
8vb|uU8>y; y6
f?nM-.n
'QZCB(Aac
|,Vv!-tj];9Wky#
Gd{r7F1
=]g^I;~s
iYBwlLW
X'0|SA
f`U \:*`k
[$FK>Z
zgE^`$Z@S
'dSy#_RR
W@{q-C
*s_Yofr|H )
F_)XE/I|T*$6
Y!t?=@w*WgHG0
E;|4m5 5Y:
S:d2>*
WCIM[r
t^w^D|,Fu
r<ku (u
zab;l,u
:K_Zxr
XGQ gSzzlA
jXvb\-LFJ
N*W[a&h!
+C3z:~~
RVUQ+h"(e
FEG)TsY3/^I&+
=n*wGj
62!]0a^i4
=EMJU'Q\U
ruUb[.W>
<U %8Vl~3
P$GRn[
g-KK:f1'_`i
Mx[u2WJ
"(vNU5rgpA7::
!^cN^rh
gYO3wn-
'hE>Kt
%-l%HM(v
*(88& #{;
P|>:c]95-0:@
7ilQfa-
F`BkW
wXO%q(`n9.=
aipE=+ :G<uqV1
-!uYuRg/t;1
aAgkPNl705b
wXuY52Ykrk
zx!O}qSQYh0
.Wa- u
[~n7oEIjzs#3H
E+J3ZMFw[
KI:cFty
[MPhgyP
c;M55[
wNtT>Ll
jR6]+RVU/C,n
.C%HuH
taY(Z4&2j
bAGVkpOq
@]mv0'Py
C1p,9Cb
KL|q_Qac:X
B;tKdG0+@
N|.y)]m&kGp`u
Lr"4$de lF`*
SWZZW
1c[rBFP
Ne&WptO
4>Dc(0
hX}[tk
)L'@XDh
|'n#T_*
]q"g^9
Ani.Rg#1HHm):
P 5KWk`y
+zBBsS
uG4\seg
2BdSsvb
<NH^MPjJ
z0iNj(
<SII:h-
Z6[9v8,i=:"3V@Vk
\>& 3y-I gI
"'k~?X
8?"#Jo'1m6D
V/>%C|[*
Nab}5p
$Jo6YB[
M"k/{*
.d0-jUuK
w2KF.8@
dJjr A
$'Eo\ftc0{vR_
\oibNl](
8$G7i.
1PT>uqa5pZe
%q0pfl
4CR1mn; Md00?
s7o(ZPG
o7jL6A8
T2\X$W?
.0[HeGTm/E4(
?P-P_9&
{Nv\g%
Z.$Kmh_<3
\or-$8
@Chc]|
']bdB8
R=@T:\),jO
?UA&T$@U(sK}K@
}"p"uq%
d\{[w|8
cvxMe-
N&.S2}
7D)_Q!
w&Onz6
\,M5Yp
$:80`-HDzxrJ dF
6$Y :g
>?-84LG
oVuT]j
-|OEQK
;G56>-
w/@zHa
o(z^e0Kv_}@Z#E
e~]5vy;W
gZ:yaP7+yno
:nlWvw
{Vn"d7
p)6948
Efjg`[aCW
u.YZp2-pk]>k1
7]Q0~|l?
9[gO 7e
O &Za*
L=gl[o=
OU$LS{Jzd
+%l}/+
fFsVa?
l 2..e&
!ts{vbT
L0d^"*h~A
C],Xb*
_+MIk6}
oq<xp%]P1h
>Y,`Xz1,
G:V56^X=E
L'7>@C
<-hOt+bM
G)7aoS4'?
C&IF8 mONx
WzEm mc[>
n!7+7M
!OObB4?u9
TMvN#\3
ro72@ GVj[
C\0\NQ%3.
yB?1&+
8d4(ikk(eq6U
<n9/rk~SE
lXR%1[N|h
7qJGqs
&N4Zapf2<%
cnh\ }w
mhb$`*lz
XQeyXX:=)
YT_i\!
}.?<43_O(k
e;=]jgf
u6]GcPNmmC
N6w?:7D
d\ib2I&}
l<\igyR\
|VEq#,;4
{7c,y,
(07>l6]L
*f5/]!
g_+ zXOI&qw*
NY<NpE#6
7+$uG]{
l3uvqu)
IFAg@+
RXh krZ!
}$E+DGnEX)j
W3Hw%(_k
mVV/ *V<)r2Sm
rO~g7'(7U(I&5
-fWuiHv{kHB0ye
,MQ7%1
t1.M6Xf5
/rQSe6
D5wbUyK
0qP+^I86iWk1GM
qQ?=Z_U
J fv?V9C
rl-VV"/%
*mB,0X^\
(^rel#N
Z*\Iv: 18qca,
_zD/<qq\t
QGX]17d,
|K7OTrqVd`R
]C`yiq/
l.)e{]a.D%-'[r
mzo&Hq
]b@B%B
92:bJ&h
_(Zh[}
X9<?>i[P_
EKg?^f,Sh
5+(`y>J
6bh<cP
l[MOvK
kJ4wB/A
F$nXH\?OCh
fA$H9LNM
:-P7RP;> ZpR
;|z|?,
8TM2cTkVV
\\l+2a>$
v+mtRQJ1
ii@WEP
,XSMIr#
#CH"YyT
% ;Wh]9
}H/7+3rH9
Dy3t+VZ^vzf
dPuBq/>xpls
hk.{uj'
mc.v,+
v%]Y[5d>s&d
1(uL0 P
5wR[dr"ip
op|#g0M&{
_{-l'5;Iz`%Y
.~xMgpq
v2L_a{
coWPQ${lC= J
_m`ar&)"
[\Yn='
x{m!unk
?gdN}#If
5\%tk1 ,8;$pM%_
Fu{EzDNuCD
=M1wyKo
)5BR=e_ 9uDc
Ct;s1-
GbM{\+_>
>fd8>,
;Y(3sdqyn
|-~yG!/
Zm>A/m1jvT
|yk(@z
av"V;3Qs@
y+*pfk
|=lcy1|4z
Y+fjeiO
w9)O1B
13Wx;#
1i``7A*$g s
`+^qE};
aBGxV d`
.*X8 sR-:pGoO[
31l8%M42
>Oy6"r^>
5f3&K|
ydYq[QVrX@ejS
\;ie?^`tJ[
H|WJX{"hJ
TO5Z[}r}i-x#-
FLY^A\fWfw
FF#=Zj
6SO17-r
&aw x!,)uy*>
fL.T?x
+d'*?6
D' ;v&SNz4"Zmcb
sy{TQZ\
WtAg5q
3p&mF8 :-
+T,Cf>f
Z.J14{^
y<E0v0A
k8y> I
]dMA}@
+].c}/@E]@O;SM
\Kfq25I4D
@`sdrT
w(${Z\[Ug!!w
V#iy&g$rtBG
>86z:"
spml(!XLCKm
G)$5Z7
RI#}J+
c@MfUmR_
^}q?4F
E<b)ci
5KY!r0m*
?+VpL+
\SRY*
W/( Ef
2Yn$@*;
n 4Ptx."h5P
HaI10;S
ScQ]KvjN|] x
p23bO\N
-oJc) G
o)W"<[
Jz2!)m_
^2sZ"j_
$3KI}<f0Kc
?[GPaV]rUn[AH`
t;t{D${
`wg.(;
o\E$&l`sA
}W"c\$X.'!eiRq
gZ(i]!5i
BiEbz=h
Xv@m`n\sXK
]KeWl`]8(vj#a
)/<:l^
z0P4n<
bw5#k'L
\2gRnzow
A~OWH,
sJT89;Zexf
Z/tNi2m
KiC5V@M
!(C8-l
?~E oW
Gt4TQT
0O7YQWN,k
9g.Y~_f'@?
(CO6\\+
DusO|c"
R |*2cA?r(Y5!~q
|<Ah!A0
N)E[AfHW9.x
".{ R?-
O" 88|<
:@KI5g}ljj
7y#EQS;h8Q@z/
<ssS7Z+"{g
sfq.e8
0V=*M3
A,xk;48
W~F-U,yg
pwTS(?B
aU\Rx6v"*
eo?f/q
Y801'2
>2E0lS
Ls=K`$
4!Zud@j
U5mL1zT&
EhI;1.5?V,
<zK"19yRN
&C]dREU
aGP]d(
B~zN-G/
?A.3)-
\$H9#isQ0R=!
m9AWo;}!_vi=
lKdday*
?pYr|/0U
['O=HA
y?*>0C
@cRls>M>jx."ht
/wyYh_eT@A
NHNw6[5
8fQPhF:1K/
X' wd@
^|M&CV#sfTO|
\Z]p-/6\<
\@7L+^h
CR8Tn,
%"(rI*ry0V^
,rdlJU
;-(UedmgFulo
Bba%>Sy
g#Ck;b3
ahs:LI [
7c<8VBu
50K3GN
6I1B|.
3:jH~I
!6NEJc
5.F+N:"
FJ1Q6y
FBqr5}
Q$QfVP7;
NZnWpC8h?QX
C{3:.W
v 1*A m
B)G,(9'z
9^DVjeYW'
zjE/XZl
,xgWY\EgU
'.qW`UoH?\'Yn
\,nFK
;ya,%*ei"I1
^Z*pRt
[V"lbbwK
D5e~kFAhV
>hiLP;_n]:,/0k/
F'_T!8_,f
`(o."Pp
BFL`>G
l+D1:
<.lTLQ?
?(<$MUB
ySp~)~
Sfy$03
By"NSQ
C)}aLQ
Dc|$U
HGf[q.Y
f`/V{1
74%%/)
0jZ^/Dv
z/+" N|ZUO9AUy!
XZO&^`a%t-`+
~+Vo1mh6|7
oY Y*on!;^
Nus#^qn
&:G>5jm=)
d{:",I
&K)Pm].
d,dO2@
L+=w/TckCss
DY6xpUR
)@<W[REeOc`2[d
FNri36
}BzTL{R
`u> IS[
;VK|(LIeWH
}&B%1q'
g4#V"(P(
C\{COl-
Txa*dw*p_
1nwub *r^
{``:E/)
2GVvix
T5Bo0T
16}mt{=;d@
MR3*@z,w
( `=P&
\|r.V)l){
S6uWi<'v\
p"'OPR=CqF
78yXb|
lYQ(GY,
,{Z c}w
h50d%W[X%
18vK$mc$}SKx
;^~+* 2"
0;AB)8-G]
[>g[[g
.Z,^P2c&)9EQO&*-ElBT$
_Y;:)@c
y>&z:a}
nA-tRy
mdbGRDudX|
;1J{l|m,LvBxS
Id_j}00yS}
8zW7Uj?Nb@
Yp8oo6
]+ii0xJQy"9
kMQp?]{
!QKB7?=dkX**>t
2Y)ks\
(Va!Ix-{,gz
;lu~j0
PEjowrU6FK}"
ZbkwO[
a@N,r
}%_;98~
G&9IrNgb
>4SA]C
v^M/1ga@\
<4G}CM
)@C<W-71c
v#wt|K|
%ahO/jI JbE
)6V%2Bf<'
Ps=v;6
Y4bn[U
j~|!$wtBI@
P!>;iK
CNxQf[6
4YxppE>Ip?
&VV@+mD.Q
%]_(ju
lF69G?]o)o
N%cqXl
#C%;\Vz'
X2 #d>H9.rZT
t?v4GH
V~4!K0HJ'r@E8a _
,QZ)VBTT&
>Rd( U]
*8rK !B
Sgq4pk
Tw@I-B?N"
e$>sai3E#
5J8n'#
pzW@m19^r
:b~$.)KGr5lb
QS{[6:tz*cl2Dt@LzruUr
?V^'rk
Ht"M)Cf
'r8`ua
of^4?J,g%q&;m'rSx
oq4.a]|4Yqc{Fd
:U "e\
[o0t)e~S
I2DSF`L{
'zk'8;
:W&V0g_
rKs&u@
b*-`7Z
_M?q2}\~H
E;1i2(
BH6lF`spY.
Wh=GhR
EFV/.2skqGi_G
;_PYF^tF4#E;
X$M4U%'
@)<`P{
s]y^3*
p8h;khv~h
HHm~'Ey
AHzWS< ?#'g
Xc*[AR
=}v&<dIe
ppEWsvi
9=rg>f4J3S|5);%5
dqC#KN]!X1l~(Uj@[x
5!r%T8P
cO]O4-\XYxQ
irZ35[:~0\{=v
(5um9B
hSco(uB
dER(f%
nrx?J-
I/,REh
J4d1$9$
AH;OeV
Pr9x;g
8G{F[n AQ
P*1ShQ;k1}?:Pz
z=~$m=ov*u
k+C.A&s ,
:@<voE)16
m|BbF&
,O(@9$0N.
wwB{}f/V]V:
[j+>Hu
R-wgfq@Il
3T>ZKy
?DQV(|
Z70eYphOF
k6cd]Ww
;/XKf(T
r20"Tm*1
IM|`xeZ.IW
Y2!bCLP.d
2t`toV/
`iMX([
j)a-AkN+d
lih.`()y
MGHT:w9;*
S8JqrgfCDg=\IX
JwIQiy4W
\s?6Ku
i5iW[<w]U1l
)IZ2sG+
"x^MlIF
3]rx$G
UR_PiJp8;`
!RnXU=:-cB
-Z\uUXi
M""O#QC
nJZQ78
CQ!T3Eq
er~@bI
4BII9k
-#J a0'?
q=!(8:4Co
JYI<|7
eBLaf&T
P5I0kY/?m!
OaSUyY"
?gDzhQ/=
'x,+{X3
$R)0U<
ds(X5z
zgz5qiOt
4w4L7_g[
]HR0)`
|(h@R!7I
E]fHLc
b aZ%X
}Dz?:5'_-k6`G3
R4 :"9D!O$
"$>B_3r 0Gp!k
pG<d}r3
-7;t>!p
M}<]Y
4f~9B!0/
<\J9S5
F"PbaP
|T3p{1
^4Azi9Q
2f\`:2.
S$~.b`
X:VWA{
K@n5u/.-
t&@d*nxkh
Q&Lm]WL$
fo^jW7}"p"@
_j1WYt@
)s_l8wSOn9y
V4TkK V:W`u
Pc>?3U`
@&&U]f;
2o(#HY
1UNX/o
3cbTJKl6u
!t+%XF!k
/F$Qc0S
$:S"T7
'U.bFD~;-H
Hf&i?}e
}4Rf3sQ
R6jiuo2
aB"o4 `
<FyWvQ,
z:]TLZ
6V:DQ\^
Q!z}R !
Aqir5+{~k[jbr.
S%%;}xc
5w:pcT/RQNzsL
{ozhu\r?
.ZrbW_`
%\"*<v9V
EN.(k4+\tL
ml["\5
MOJ!N:,
FtRNsO
o;h:B{4O*r
g+jUfokJ
qaIfbs}cO
K1bjc&
Yk P^3j5@?>
x}h?
`tp0pg}$~t$:
ppQSh[jMiu!
3I=g#b
=Ef2nT
".#&|B
v?mg1Ik
^t!h?z9Y\t
o9_ GQX
|FSo#2MBL}
h?LW{T
/ _wfjd
2t1#k_jPWs
s+W9k|
)`5aBO;H
9;G*Lq
SJVZz3OM
mVy[M5
.dGh]<dm-grt
rUX ^FTpl]EqvF6'fx w
uk+c$"
|#s#,6\Bzv4}'5.>\oac(,
\~GpB3
%4,tf4OGn
JU&I=y
jE_]p('
Ot@ q@ML
{et0)w>bsL.]HbF!`
cq?>KuYin@Y
qM/G{m~N
Q"OgQ[
;zWb=H^l
VrI@])@
~K#Scfz
9QU\ce
3V2ig|
k ?n/P
u62>7U
'"Jt/g\=40#U
/wx[orp
Eq9nn|{
uK4BC.
.Ftyn8
C]fDtY4WJ6
<=V0&O
#lur*cQ
Fwll2L
hK|BtRsNw
Tn Z&'Xo
65)E}k
V8t<j;
]fYfh
J}`aMx
;KO8/S
mc>"o7
%~b:38Xc|
nOPyfBh
T4I0IX{\
s~pl\_F7~2
|7dPmNW{7c8
#qgHO9L
Z!3$n7!U8u|
LkLo|wj!
UB)xoxS
_&wd"7Ri
?&H&1T?
>: J\qoYY8J
*KK)oa&'p
P_q-!E
KtL&|qqP%
p7e 2#rZ* /
:=/G*n\'
p?-#"?5
DUkQ}Mh
6[6Ki5
]dx8x{:
K>4'7Toq
?MkuKk
I5hBT+CR (PV
>z(Sa+
p_t-2~h
`=`p%.
F3U'fx?
UZv3{r#wPd`RU
XMk\8`
e!vu>3LI:
Bei7K7
_xN=Au5Z+wG
!G['To
)6ef5}s
!l\Sp=N@I
#8Cnp}%;
_,t)JA }
r4WPl~'
?nLUkKsm
\"8EisR.U|p
F\#xxr7
;mr;oI8 ;^ pkDd(i'?
6]qZq7h
lDTAw,
l!#F>7,T8
bTl"M>
)DX.Y?Wof@
L4eG2nMF|r}*m-
xgSmT/
LS=Lm\)
ReN/=u
Fj~&U~%=\}w
jsF$. +(\5
<=6Noj+!agBuPk
q"^`,w
ze[V!I
d{ e1Aa,
oK|S;Cl~&p6L+mg`g"{
vQm:CO.
9IrpQ!]Ya'SLNW
zLdge1X
/^'XI$aP%
g:+s.6aX
%6#; t'#m
8Dp{ W@#c
" Uosi-
{)k.lzxO<8<\c
`"06r'[ A|$
T"!(HiHG gD;i
U]b``%s{
y!("LO4
QMA?_=wV
3(1x.P9Gz0Jz{`~D
e{tK2lD{;Lz
1NN|)Kv
%nOMUu
bCY:t9
l&,/SA0
2ccpKE
{@ftXu#:P
^g[Up!W
^SwiqgqM~
p&:<L4QsZ8
Oh-=D/
UT&P&)`FjT
WwPrhsGu8gK
7W5I*ar
-DLuwO
owB">XEE%
,'n3Q[E'\b
v{ BYazdpV
{S7?<5@ v67|8n.b
g5l#ZV3v
@C 81J
6ZjxDT$
H|k,|bA
-PcvAs}_
G~N66KP5,
F2 J*G
XAM=1%7 #HwpT~\
=^Pc&w"ul1
/J<.^kk# (D
ds[+qrd\w
ph%k.|
xp!'BLMb@j
Q+=~@x
EUXs`y||;
mC"1;{
\(,3Lc
n 30<@
eFW0>V
*9:wK] /
u<H!m+)A
[-wg9xLcX<oq
XLR+T|{U
`L+g0oxIX
^{o]`iA"!
ZQy#'mQ_O}C^
UQI}NO
~*0sg*i
8md":cd
jr}^]}].tUd)oh=4~
q"-hvs]X
Q4L cj/
D_K<Jrsw
OR~pP<Q[~
L}-&tCGHJM
o2xDs-O.jrJS
~HZ x9
~3za<P+
_`}^oZDU{I*&xN
9# "Vy$BIk
=)C:3hf/
C;iwY=
Ml0^9G5
W/lcaT
1=063R@
W6@P)(U
nC%O],
"hWVg<
i=:4Bauu
#JnW$?`C%
m"mfpj
!kqb71zpveHa
DIuA!
~&_e}(
gozy-8
|p- gO_|P[J1
t;dU!}
^|Vf~337'
II:R@91
e6hlqNBp
2B\~/arzNA
8)ckV\GP
QW,,].5
%{TyN{
Z*{nYSB
vb4h`Zu Zs3' E
>WEHPH!az0@
+6&^r~_
}ba1yZqM
^Xzy]%G
?*(7<a
#X!Yq#
!6>e)v*GFi1z
q x_1LNU6m
]CxZi
|9B>Tj
Ud;A dTc?0Z
_<%#dux
bV]bz\N-b~<C-
C2d8yGo<`l
~9q /A^e~
_Cn{G:fe.XAkK],t
Sy]qj}
f~;6@lX,]
lf?[lFE
s6/t{}"*A3WFl'Sm
r9|s)g
]MR(6Lvf9n
/crA_L5C[f
!~lM;5
K#95nAl
hy),FA:
{vt1dC
vU0n57Ee*6
$A$-DcyG\Y*'
p>q7Pm
s-*YE0
tQ?U7Al]VR;
rLG|X9:
r)@U!hELqcshoxi
$izCh$|H
rkCt(6
}a}vd`I+#
mcM$t_Pzq
oAg_3^2lUIV5
t=[AV_4%0[
^/wQ[+
<=- n<g
!t$7"KQw[:soWmy=t{=g
#U4qB_]
M8S\cx,4)G$
p He+h
&Lf4OqmOC*PUo`k?
_;AR\N
~/ofXLH3]4
y^Bj#(
$([Ar6e
h(N4 1"
V|^~'#W
;#1\6$S
4$$74kj[
[x5\;7B^#
@gM*@_
<MW/I8
e=#,'kG
lS8xCl1
*=N7M?
gD>c-3j
zD*vpF
AID~4Me
T,$mX&ifQ
;5*6E)
pw2*pPcc+eH@Hf@c
K48\s1EKfMYpmwc3tobHA6@ORJ
oLpN0pESwj
-I4,+=:w|++p|GG
{m,jtf[JD
6M8|dU
cK0]Ab
C(*a[~)0F
72*=V{l
d~9>bscf
1v{W +L/
c\PXAEx
"!.7zvhG
9wJ2J0wA
)5&QDRb3
XCFAAn-9#
-u$Y2B
L$wxD2=b"5Q%+;
H|!z6I
)nu-2]
ANN'i'
<*y~u]a=>@$D[_fv[9
/|/V@fgl>h
<)FPGSdC
age?c$
7E_=~a
2<N@%G
`bF)!j
8Mf-fz@
(FiL~9b
Lvlcdi
=tUk$(YwJWNM
9-"c@Usbh3(EuEw9l2=%Uy
Eee M`I
B9[@sZ
eK0> T
{5+.NjL;
XRp7Hx
>@eflUblj 8f
Uy4LL
=qqFO.8g!y
PNr;(`+
5"]>=XG{
i}\o$a>1uW/_9#$Jm
UbWP_Sn
zK:i4"
reZl9{g
wV$CsmVe3
C]p,pGNhC^i
}u+zJ$
)Xxqm-26S5
^E|K6r
FG([ :Hi
~qK2U7\
{D<)isgf!
E7TKD8H
v%MCML&K~lz:C
OZy5U.4h4,=
cJfL/ZW
'^{a}Q
^Fv&2%]w
IJs%UAn
|2oPP~s
=K:~:5j5g
n$/s$E05
;(@4AB;~hzVXOP]:o
T]i<'/0
O8MT?zk%gsb=ni
Cb {f=.
urLh).
45uWC)
L*0A}UN
DUJ+P0
mt0&<\!
t"HsG3AI1saO
<:l9+O<[8G7`A p&F
}yCB 0k3
4e!%%}=
2L3jI}.CwTiRM
3j3IoZS
`U'Z'9
VbinI#
:kefWC
e-DgtGA3l
H/i<^( 1
%}/R/YCG
p~HuWhD-R|<
6X;)&2$3
80+iT-
wxK}ul8tvCe|m
V*1wjMl
r@@pO%<r}uh
<.|}h,-\
u3!tMNwr
Soaw;a
&<'/9kKLiW4
Rt_]\B
_L1)|P%
x{&nHc
5.EQ_%V4&
W7E/[SQ9
bZ8:,_$
X8\bUc(^aZx
[},(`]oE
X/Y%!V_
;BdK(3'<
E5G@sWq
ceP(cA[{]5(`
=MGIWZ%jT
Ch`tlG
D(L/Mo
SU2~]:\BpVIM1
0+{)H8
-RWYV7!-Mwc1
K\gTGx:3/
VQh5s,!m
~fZ;8 ~
iZiRx=2A=c>v_
Q~-zqlKdNOi
UVz3";h
8"^|?-
RkaeX0
jy/oGRAswO;'x
/R6R) xFDe
w0^y,[
d8(R_B>;,
S3Yo~-V=wncQ1_
SLVo3]zHc
"(h*[7@=^pEzh m$[g#G\V
YOs+2zP
c4IoVC
|!,YbbK
WraR2t's
cLB-`i{QE
R";Xi@
0NyQT*\
t<zo?C
=(;Yu>
:[|`x+5#bt
7r1L?vj-YZ
E_B3;\Db
yaHBdbe~w%zu{|#
y-Ns{Z$|
C1)"+^0J
R84+CrH\z
>5[d8zN
SX1=YH`TUapGGy
O\ZE2Wh
J=K)UNkPcU
p}+Cc
O66,Ls
]@,-o1ok
-|R6+'s_3-N|
`!4ikf0`YB\W
B'3}gO
FlmnFz:s
(MJi'eE~
`<b\DwY\?Q
VflcF`>
w?{S9E]v
K_e>5Vk<
m'z\?cia
Kqb}sN
trsX9L
YI>A&h
+z&"YX
cRV^ {?N
mumOI-.
QO*]|X
DKB i&|
TW4-cs$T
:}]S\5P
z !2pp&)
KY<H)bMo! ;
?|+FTc1>'L
|nlEozi
KEI{0/c]
9~M}y|Z
O#UC5$r S
)t5g$AEk
CxN9T O
6`I319
8qW%<;
}zFQv{y
0R9<A!Y
ie_Z3I
Z?]6l-
FqL[Z5 O
-"H|k6ZisUD>bCG|u<K*wit4p
AFbrrN~
QcR\Ie*Na#}
tuWRZL8;-
K`7_9d
FA+lkM
Dkfp716
{7J_Qz;?
N~AM/6
$15re4OJ
"7@blw)A n0.e)
O|EwQ'2>7{
}Q!LH\
9,;* *
n0F'!SVF
'@NbKe((
X/Vhr? \#f
B,Zqg=L
l;,mCV&x(:
scc j/
Tqc4DMkG
kLLd8d:
#>ah6)D(@q<
(lVGYN2!
8S ~@{
bb~Vrh
t1@4{J(
G~%J5Si
)7ym{9t
&DW(*1>
P-AMneDS"^*
NgsuS+YqG
n<|6RoL
v%`+=we rq8
Zp=}ix~&0g
YwE!|fZ5ZF
]H-70S
$^~Pg~u
dmY03e
+,<}j)-h4ks|b+<N'FtV
wN]@IM
XChNcjh
cG.<c=]
m<;gW7602>
03NfQU
GS1ZKy
b%D6^f
LzM2=2r1d/
qg]C}`
[Lu^,jp8$
?1'yaaG
{Sw#0},+Fm
Ml+&RT 3
mH*S\%qmaX0w
Fk.iMsR[l
- )$Od& W>v
"UpC*GC##h
wjr"<>b+xOw{v
&-D=pcv@
%3`0{Eu>L{)2
Ki<C|4PuO
v|*]dAQ
~/Q[\~K
A{$HK.\E
rBEis$IyD
tKnP-4n
WM> `'
^z$n/G rU]F?n]k
PprB~\t
unW{<M
1B*ai+B
#WxCz@0}
Z ,xzzz
?r9-}O\~x=M
c?l;lbBPL:
7|Wj<83h
bIfS}UB6`7Et
.\r*NW*
_et:\|7DM
9P5j0j
qK1A#T\P=K,
JEj 4g[P>
Oze>b*s?y
[R1r0Q
H"Lj'3+
i4SJ{tLUnBmm`
p gUxB
Hun:0~
U4P^W#E
J[t4MJ" <<
~&{kn#qPETc[N
2+p /}u
7nZiA72
JkQa^k
P`mtnzja S;io]
woPa<=
RU97,n|
k']gEKLiB
LJc%4Z
{MP8!G
Z!!ht2
QU+hS"{Oca)5
UUO'5|(D
d&#A
G_khC9z
x8LiO}
a6-q|>
0NZ;gP'$Gw@Zx
\QkEo88
X]/a*ot7f
@HS]e\V; %`
h`2o-i
oM3r@,
xK6bR5t|
.`.IDM
m>3:`d
Q(X74s
Y8Xh,(1F
vz~SPZ(6M
xN1ECWz
iR/jWI2~V
."#V?i2$
#dz_VD&( OS
c/Z5B%
Zr.#I,
X6Sbi[A
YlJo,`
:<>YZg5:Bp{
wWt$ MElO/J3
nZ;qtA6
[-hql2
A{/X-bRlx+
z#Q7L~"`Y
-mMc;j:
kc$o^;b
lXU1;ij
IRXmMKI>
PiEZ6!
|J#2pGy&7#
shub$Fdd$
LtTrQv>iC
v $u*2Z&
4P4`K"i[ 'g$
c!hol"
V$p x6}
]8J[GS
7(ohf'8e/\
/Ch#7SSa8I"
n;ySLvxoK
x?S3OvL
llw%#"n<#
=^\WVG
)&W!7 tiY&
$_r]?./pT
hZ uMc3@0t
TO]O0fjwAG=
N'9en|s2n<N][
pJmkG
&~pp9?e
TtqQJ#KI
f [S<P
X=f]a;M3^Y,rq
b-? g!=kW-#B1l
{,-MiF>i`#[
H:y7yd,
a4]Pa-FI3L
:<h"1Q
D4$`H`A7l
qRgPZH
cJfkzCq
{(PZIW+
lBdr8B6rhg-aU
H`=A4
xgC~XKm+
u{F>FYlf&
Vh|O=)mH
mtwH*x
MB-^DOL
`'?L.
~h)4Q#x
:SQrq'
k#53Rz:
$WlKN!>Bd|
0D&O3-c
piPQ{^-_
d5|Z]Y
g|<O 7
;~U[ d' -=hK
8LEj=^
ZhZ])
<hbz{F
+1_xv/
6xc>/b
7>(V/>0/
d|1N?\
~;d!gs)
~,1gA)\vm6
SwB|Gn{{
p>(wn<:m
d>{B0SE
wB:"TQac6
?%:nQLkB#q:
g'Fk9,?s
686g-7<
j.PzmpJT_+
oc<\f4QF&cUy
w0zqlg
u`q)#K
,*b/@is`
ovyP4?t*
~%=j=)Y
$Wn.u["|{J3U-
AwZ q3i7\_
JfbxAO
-%sn,8H'OQ
M/t~FZY)
uAb@WO
}eA)o|c
X&Gj"KEa'=
~Q0s?[
m�s�c�o�r�e�e�.�d�l�l�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �a�r�g�u�m�e�n�t�s�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �e�n�v�i�r�o�n�m�e�n�t�
-� �a�b�o�r�t�(�)� �h�a�s� �b�e�e�n� �c�a�l�l�e�d�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �t�h�r�e�a�d� �d�a�t�a�
-� �u�n�e�x�p�e�c�t�e�d� �m�u�l�t�i�t�h�r�e�a�d� �l�o�c�k� �e�r�r�o�r�
-� �u�n�e�x�p�e�c�t�e�d� �h�e�a�p� �e�r�r�o�r�
-� �u�n�a�b�l�e� �t�o� �o�p�e�n� �c�o�n�s�o�l�e� �d�e�v�i�c�e�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �_�o�n�e�x�i�t�/�a�t�e�x�i�t� �t�a�b�l�e�
-� �p�u�r�e� �v�i�r�t�u�a�l� �f�u�n�c�t�i�o�n� �c�a�l�l�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �s�t�d�i�o� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �l�o�w�i�o� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�
-� �u�n�a�b�l�e� �t�o� �i�n�i�t�i�a�l�i�z�e� �h�e�a�p�
-� �C�R�T� �n�o�t� �i�n�i�t�i�a�l�i�z�e�d�
-� �A�t�t�e�m�p�t� �t�o� �i�n�i�t�i�a�l�i�z�e� �t�h�e� �C�R�T� �m�o�r�e� �t�h�a�n� �o�n�c�e�.�
T�h�i�s� �i�n�d�i�c�a�t�e�s� �a� �b�u�g� �i�n� �y�o�u�r� �a�p�p�l�i�c�a�t�i�o�n�.�
-� �n�o�t� �e�n�o�u�g�h� �s�p�a�c�e� �f�o�r� �l�o�c�a�l�e� �i�n�f�o�r�m�a�t�i�o�n�
-� �A�t�t�e�m�p�t� �t�o� �u�s�e� �M�S�I�L� �c�o�d�e� �f�r�o�m� �t�h�i�s� �a�s�s�e�m�b�l�y� �d�u�r�i�n�g� �n�a�t�i�v�e� �c�o�d�e� �i�n�i�t�i�a�l�i�z�a�t�i�o�n�
T�h�i�s� �i�n�d�i�c�a�t�e�s� �a� �b�u�g� �i�n� �y�o�u�r� �a�p�p�l�i�c�a�t�i�o�n�.� �I�t� �i�s� �m�o�s�t� �l�i�k�e�l�y� �t�h�e� �r�e�s�u�l�t� �o�f� �c�a�l�l�i�n�g� �a�n� �M�S�I�L�-�c�o�m�p�i�l�e�d� �(�/�c�l�r�)� �f�u�n�c�t�i�o�n� �f�r�o�m� �a� �n�a�t�i�v�e� �c�o�n�s�t�r�u�c�t�o�r� �o�r� �f�r�o�m� �D�l�l�M�a�i�n�.�
-� �i�n�c�o�n�s�i�s�t�e�n�t� �o�n�e�x�i�t� �b�e�g�i�n�-�e�n�d� �v�a�r�i�a�b�l�e�s�
D�O�M�A�I�N� �e�r�r�o�r�
S�I�N�G� �e�r�r�o�r�
T�L�O�S�S� �e�r�r�o�r�
r�u�n�t�i�m�e� �e�r�r�o�r� �
@�R�6�0�0�2�
-� �f�l�o�a�t�i�n�g� �p�o�i�n�t� �s�u�p�p�o�r�t� �n�o�t� �l�o�a�d�e�d�
R�u�n�t�i�m�e� �E�r�r�o�r�!�
P�r�o�g�r�a�m�:� �
<�p�r�o�g�r�a�m� �n�a�m�e� �u�n�k�n�o�w�n�>�
M�i�c�r�o�s�o�f�t� �V�i�s�u�a�l� �C�+�+� �R�u�n�t�i�m�e� �L�i�b�r�a�r�y�
k�e�r�n�e�l�3�2�.�d�l�l�
S�u�n�d�a�y�
M�o�n�d�a�y�
T�u�e�s�d�a�y�
W�e�d�n�e�s�d�a�y�
T�h�u�r�s�d�a�y�
F�r�i�d�a�y�
S�a�t�u�r�d�a�y�
J�a�n�u�a�r�y�
F�e�b�r�u�a�r�y�
A�u�g�u�s�t�
S�e�p�t�e�m�b�e�r�
O�c�t�o�b�e�r�
N�o�v�e�m�b�e�r�
D�e�c�e�m�b�e�r�
M�M�/�d�d�/�y�y�
d�d�d�d�,� �M�M�M�M� �d�d�,� �y�y�y�y�
H�H�:�m�m�:�s�s�
@�j�a�-�J�P�
U�S�E�R�3�2�.�D�L�L�
� � � � � � � � �(�(�(�(�(� � � � � � � � � � � � � � � � � � �H�
� � � � � � � � �h�(�(�(�(� � � � � � � � � � � � � � � � � � �H�
� � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � � �H�
z�h�-�C�H�S�
a�z�-�A�Z�-�L�a�t�n�
u�z�-�U�Z�-�L�a�t�n�
k�o�k�-�I�N�
s�y�r�-�S�Y�
d�i�v�-�M�V�
q�u�z�-�B�O�
s�r�-�S�P�-�L�a�t�n�
a�z�-�A�Z�-�C�y�r�l�
u�z�-�U�Z�-�C�y�r�l�
q�u�z�-�E�C�
s�r�-�S�P�-�C�y�r�l�
q�u�z�-�P�E�
s�m�j�-�N�O�
b�s�-�B�A�-�L�a�t�n�
s�m�j�-�S�E�
s�r�-�B�A�-�L�a�t�n�
s�m�a�-�N�O�
s�r�-�B�A�-�C�y�r�l�
s�m�a�-�S�E�
s�m�s�-�F�I�
s�m�n�-�F�I�
z�h�-�C�H�T�
a�z�-�a�z�-�c�y�r�l�
a�z�-�a�z�-�l�a�t�n�
b�s�-�b�a�-�l�a�t�n�
d�i�v�-�m�v�
k�o�k�-�i�n�
q�u�z�-�b�o�
q�u�z�-�e�c�
q�u�z�-�p�e�
s�m�a�-�n�o�
s�m�a�-�s�e�
s�m�j�-�n�o�
s�m�j�-�s�e�
s�m�n�-�f�i�
s�m�s�-�f�i�
s�r�-�b�a�-�c�y�r�l�
s�r�-�b�a�-�l�a�t�n�
s�r�-�s�p�-�c�y�r�l�
s�r�-�s�p�-�l�a�t�n�
s�y�r�-�s�y�
u�z�-�u�z�-�c�y�r�l�
u�z�-�u�z�-�l�a�t�n�
z�h�-�c�h�s�
z�h�-�c�h�t�
C�O�N�O�U�T�$�
A�B�C�D�E�F�G�H�I�J�K�L�M�N�O�P�Q�R�S�T�U�V�W�X�Y�Z�a�b�c�d�e�f�g�h�i�j�k�l�m�n�o�p�q�r�s�t�u�v�w�x�y�z�0�1�2�3�4�5�6�7�8�9�
%�t�e�m�p�%�\�
%�w�i�n�d�i�r�%�\�C�T�S�.�e�x�e�
%�t�e�m�p�%�\�C�T�S�.�e�x�e�
S�o�f�t�w�a�r�e�\�M�i�c�r�o�s�o�f�t�\�W�i�n�d�o�w�s�\�C�u�r�r�e�n�t�V�e�r�s�i�o�n�\�R�u�n�
G�l�o�b�a�l�\�3�p�c�6�R�W�O�g�e�c�t�G�T�F�q�C�o�w�x�j�e�G�y�3�X�I�G�P�t�L�w�N�r�s�r�2�z�D�c�t�Y�D�4�h�A�U�5�p�j�4�G�W�7�r�m�8�g�H�r�H�y�T�B�6�
u�s�e�r�p�r�o�f�i�l�e�
j�j�j�j�j�j�
j�j�j�j�j�j�
@�I�@�@�@�@�@�@�@�
@�@�@�@�@�@�@�@�@�@�
@�@�@�@�@�@�@�@�@�@�
@�@�@�@�@�@�@�@�.�
Hosts
| IP |
|---|
| 114.114.114.114 |
DNS
| Name | Response | Post-Analysis Lookup |
|---|---|---|
| dns.msftncsi.com | A 131.107.255.255 | 131.107.255.255 |
| dns.msftncsi.com | AAAA fd3e:4f5a:5b81::1 | 131.107.255.255 |
TCP
No TCP connections recorded.
UDP
| Source | Source Port | Destination | Destination Port |
|---|---|---|---|
| 192.168.56.101 | 53179 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 49642 | 224.0.0.252 | 5355 |
| 192.168.56.101 | 137 | 192.168.56.255 | 137 |
| 192.168.56.101 | 61714 | 114.114.114.114 | 53 |
| 192.168.56.101 | 56933 | 114.114.114.114 | 53 |
| 192.168.56.101 | 138 | 192.168.56.255 | 138 |
HTTP & HTTPS Requests
No HTTP requests performed.
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
Snort Alerts
No Snort Alerts
Sorry! No dropped files.
Sorry! No dropped buffers.