From 432ea28bb1e273d8fc139ed6f1b159f8565f4e11 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 31 Oct 2024 12:13:17 -0400
Subject: [PATCH 01/16] Update DomainEntity_EmailUrlInfo.yaml

Removed materialize as it causes a memory issue on larger data sets.  Improved performance of query by splitting the logic.
---
 .../DomainEntity_EmailUrlInfo.yaml            | 72 +++++++++----------
 1 file changed, 33 insertions(+), 39 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml
index 58e330e28dc..fa36c9d41ac 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
@@ -25,44 +25,38 @@ tactics:
 relevantTechniques:
   - T1566
 query: |
-  let dt_lookBack = 1h;
-  let ioc_lookBack = 14d;
-  let EmailUrlInfo_ = materialize(EmailUrlInfo
-  | where isnotempty(UrlDomain)
-  | where TimeGenerated > ago(dt_lookBack)
-  | project-rename Email_Url = Url);
-  let Domains = EmailUrlInfo_
-  | distinct UrlDomain
-  | summarize make_list(UrlDomain);
-  let Candidates = ThreatIntelligenceIndicator
-  | where isnotempty(DomainName)
-  | where TimeGenerated >= ago(ioc_lookBack)
-  | extend TI_Domain = tolower(DomainName)
-  | where TI_Domain in (Domains)
-  | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId
-  | where Active == true and ExpirationDateTime > now()
-  | where Description !contains_cs "State: inactive;" and Description !contains_cs "State: falsepos;"
-  | join kind=innerunique EmailUrlInfo_ on $left.TI_Domain == $right.UrlDomain
-  | join kind=innerunique (EmailEvents | where TimeGenerated >= ago(dt_lookBack) | project-rename EmailEvents_TimeGenerated = TimeGenerated) on $left.NetworkMessageId == $right.NetworkMessageId
-  | where DeliveryLocation !has "Quarantine"
-  // Customize and uncomment the following line to remove security related mailboxes
-  //| where tolower(RecipientEmailAddress) !in ("secmailbox1@example.com", "secmailbox2@example.com")
-  | where EmailEvents_TimeGenerated < ExpirationDateTime
-  | summarize EmailEvents_TimeGenerated = arg_max(EmailEvents_TimeGenerated, *) by IndicatorId, RecipientEmailAddress;
-  let Candidate_Domains = Candidates | distinct TI_Domain | summarize make_list(TI_Domain);
-  ThreatIntelligenceIndicator
-  | where isnotempty(Url)
-  | where TimeGenerated > ago(ioc_lookBack)
-  | extend Host = tostring(parse_url(Url).Host)
-  | where Host in (Candidate_Domains)
-  | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId
-  | where Active == true and ExpirationDateTime > now()
-  | where Description !contains_cs "State: inactive;" and Description !contains_cs "State: falsepos;"
-  | join kind=innerunique (Candidates | extend parsed_url = parse_url(Email_Url) | extend BaseUrl = strcat(parsed_url.Scheme, "://", parsed_url.Host, parsed_url.Path)) on $left.Url == $right.BaseUrl
-  | where DeliveryAction !has "Blocked"
-  | project EmailEvents_TimeGenerated, RecipientEmailAddress, IndicatorId, TI_Domain, ConfidenceScore, Description, Tags, TrafficLightProtocolLevel, Url = Email_Url, DeliveryAction, DeliveryLocation, EmailDirection, NetworkMessageId, AuthenticationDetails, SenderFromAddress, SenderIPv4, Subject
-  | extend Name = tostring(split(RecipientEmailAddress, '@', 0)[0]), UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0])
-  | extend timestamp = EmailEvents_TimeGenerated
+let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
+let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
+let EmailUrlInfo_ = EmailUrlInfo
+    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
+    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
+    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
+    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
+let EmailEvents_ = EmailEvents
+    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
+let TI_Urls = ThreatIntelligenceIndicator
+    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+    | where isnotempty(Url) // Filter for non-empty URLs
+    | extend Url = tolower(Url) // Convert URLs to lowercase
+    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
+    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
+    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
+    | project EmailUrlInfo_TimeGenerated, Description, ActivityGroupNames, IndicatorId, ThreatType, ExpirationDateTime, ConfidenceScore, Url, UrlLocation, NetworkMessageId; // Select relevant columns
+let TI_Domains = ThreatIntelligenceIndicator
+    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+    | where isnotempty(DomainName) // Filter for non-empty domain names
+    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
+    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
+    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
+    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
+    | project EmailUrlInfo_TimeGenerated, Description, ActivityGroupNames, IndicatorId, ThreatType, ExpirationDateTime, ConfidenceScore, UrlDomain, UrlLocation, NetworkMessageId; // Select relevant columns
+union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
+| extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
+| join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
+| where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
+| extend Name = tostring(split(RecipientEmailAddress, '@', 0)[0]), UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address
 entityMappings:
   - entityType: Account
     fieldMappings:
@@ -76,5 +70,5 @@ entityMappings:
     fieldMappings:
       - identifier: Url
         columnName: Url
-version: 1.0.2
+version: 1.0.3
 kind: Scheduled

From 1a336f7a2df78226e99ccc02f61d07b7ef6bfeb8 Mon Sep 17 00:00:00 2001
From: PrasadBoke <v-prasadboke@microsoft.com>
Date: Wed, 6 Nov 2024 13:26:44 +0530
Subject: [PATCH 02/16] Update DomainEntity_EmailUrlInfo.yaml

---
 .../DomainEntity_EmailUrlInfo.yaml            | 88 ++++++++++++-------
 1 file changed, 55 insertions(+), 33 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml
index fa36c9d41ac..9dc1b0f59bc 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
@@ -25,38 +25,60 @@ tactics:
 relevantTechniques:
   - T1566
 query: |
-let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
-let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
-let EmailUrlInfo_ = EmailUrlInfo
-    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
-    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
-    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
-    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
-let EmailEvents_ = EmailEvents
-    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
-let TI_Urls = ThreatIntelligenceIndicator
-    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-    | where isnotempty(Url) // Filter for non-empty URLs
-    | extend Url = tolower(Url) // Convert URLs to lowercase
-    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
-    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
-    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
-    | project EmailUrlInfo_TimeGenerated, Description, ActivityGroupNames, IndicatorId, ThreatType, ExpirationDateTime, ConfidenceScore, Url, UrlLocation, NetworkMessageId; // Select relevant columns
-let TI_Domains = ThreatIntelligenceIndicator
-    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-    | where isnotempty(DomainName) // Filter for non-empty domain names
-    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
-    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
-    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
-    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
-    | project EmailUrlInfo_TimeGenerated, Description, ActivityGroupNames, IndicatorId, ThreatType, ExpirationDateTime, ConfidenceScore, UrlDomain, UrlLocation, NetworkMessageId; // Select relevant columns
-union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
-| extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
-| join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
-| where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
-| extend Name = tostring(split(RecipientEmailAddress, '@', 0)[0]), UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address
+  let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
+  let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
+  let EmailUrlInfo_ = EmailUrlInfo
+      | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
+      | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
+      | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
+      | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
+  let EmailEvents_ = EmailEvents
+      | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
+  let TI_Urls = ThreatIntelligenceIndicator
+      | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+      | where isnotempty(Url) // Filter for non-empty URLs
+      | extend Url = tolower(Url) // Convert URLs to lowercase
+      | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
+      | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
+      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
+      | project
+          EmailUrlInfo_TimeGenerated,
+          Description,
+          ActivityGroupNames,
+          IndicatorId,
+          ThreatType,
+          ExpirationDateTime,
+          ConfidenceScore,
+          Url,
+          UrlLocation,
+          NetworkMessageId; // Select relevant columns
+  let TI_Domains = ThreatIntelligenceIndicator
+      | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+      | where isnotempty(DomainName) // Filter for non-empty domain names
+      | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
+      | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
+      | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
+      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
+      | project
+          EmailUrlInfo_TimeGenerated,
+          Description,
+          ActivityGroupNames,
+          IndicatorId,
+          ThreatType,
+          ExpirationDateTime,
+          ConfidenceScore,
+          UrlDomain,
+          UrlLocation,
+          NetworkMessageId; // Select relevant columns
+  union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
+  | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
+  | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
+  | where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
+  | extend
+      Name = tostring(split(RecipientEmailAddress, '@', 0)[0]),
+      UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address
 entityMappings:
   - entityType: Account
     fieldMappings:
@@ -71,4 +93,4 @@ entityMappings:
       - identifier: Url
         columnName: Url
 version: 1.0.3
-kind: Scheduled
+kind: Scheduled
\ No newline at end of file

From c6058a13ce157ed79ba2314319bfd079b6e6caab Mon Sep 17 00:00:00 2001
From: PrasadBoke <v-prasadboke@microsoft.com>
Date: Wed, 6 Nov 2024 13:26:50 +0530
Subject: [PATCH 03/16] Create IPEntity_Workday.yaml

---
 .../Analytic Rules/IPEntity_Workday.yaml      | 79 +++++++++++++++++++
 1 file changed, 79 insertions(+)
 create mode 100644 Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
new file mode 100644
index 00000000000..59276b8906d
--- /dev/null
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -0,0 +1,79 @@
+id: a924d317-03d2-4420-a71f-4d347bda4bd8
+name: TI map IP entity to Workday
+description: |
+  Identifies a match in Workday Activity from any IP IOC from TI
+severity: Medium
+requiredDataConnectors:
+  - connectorId: ThreatIntelligence
+    dataTypes:
+      - ThreatIntelligenceIndicator
+  - connectorId: ThreatIntelligenceTaxii
+    dataTypes:
+      - ThreatIntelligenceIndicator
+  - connectorId: Workday
+    dataTypes:
+      - Workday
+  - connectorId: MicrosoftDefenderThreatIntelligence
+    dataTypes:
+      - ThreatIntelligenceIndicator
+queryFrequency: 1h
+queryPeriod: 14d
+triggerOperator: gt
+triggerThreshold: 0
+tactics:
+relevantTechniques:
+query: |
+  let dtLookBack = 1h; // Define the lookback period for audit events
+  let iocLookBack = 14d; // Define the lookback period for threat intelligence indicators
+  ThreatIntelligenceIndicator 
+  | where isnotempty(NetworkIP)
+      or isnotempty(EmailSourceIpAddress)
+      or isnotempty(NetworkDestinationIP)
+      or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields
+  | where TimeGenerated >= ago(iocLookBack) // Filter indicators within the lookback period
+  | extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity
+  | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId, TI_ipEntity // Get the latest indicator time for each entity
+  | where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired
+  | join kind=inner (
+      ASimAuditEventLogs
+      | where EventVendor == "Workday" // Filter for Workday events
+      | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period
+      | where isnotempty(DvcIpAddr) // Filter for events with a device IP address
+      | extend WD_TimeGenerated = EventStartTime // Rename the event start time column
+      | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns
+      )
+      on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity
+  | project
+      LatestIndicatorTime,
+      Description,
+      ActivityGroupNames,
+      IndicatorId,
+      ThreatType,
+      Url,
+      ExpirationDateTime,
+      ConfidenceScore,
+      WD_TimeGenerated,
+      ActorUsername,
+      DvcIpAddr,
+      Operation,
+      Object // Select relevant columns after the join
+  | extend
+      timestamp = WD_TimeGenerated,
+      Name = tostring(split(ActorUsername, '@', 0)[0]),
+      UPNSuffix = tostring(split(ActorUsername, '@', 1)[0]) // Add additional fields for timestamp, name, and UPN suffix
+entityMappings:
+  - entityType: Account
+    fieldMappings:
+      - identifier: FullName
+        columnName: ActorUsername
+      - identifier: Name
+        columnName: Name
+      - identifier: UPNSuffix
+        columnName: UPNSuffix
+  - entityType: IP
+    fieldMappings:
+      - identifier: Address
+        columnName: DvcIpAddr
+
+version: 1.0.0
+kind: Scheduled

From 16050e01764b4c998409b93018fbe7f6f0748459 Mon Sep 17 00:00:00 2001
From: PrasadBoke <v-prasadboke@microsoft.com>
Date: Wed, 6 Nov 2024 13:26:57 +0530
Subject: [PATCH 04/16] Update Solution_ThreatIntelligenceTemplateSpec.json

---
 .../Data/Solution_ThreatIntelligenceTemplateSpec.json          | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Solutions/Threat Intelligence/Data/Solution_ThreatIntelligenceTemplateSpec.json b/Solutions/Threat Intelligence/Data/Solution_ThreatIntelligenceTemplateSpec.json
index d855eab57ec..53251bff1fe 100644
--- a/Solutions/Threat Intelligence/Data/Solution_ThreatIntelligenceTemplateSpec.json	
+++ b/Solutions/Threat Intelligence/Data/Solution_ThreatIntelligenceTemplateSpec.json	
@@ -72,7 +72,8 @@
 		"Analytic Rules/EmailEntity_CloudAppEvents.yaml",
 		"Analytic Rules/FileHashEntity_CloudAppEvents.yaml",
 		"Analytic Rules/IPEntity_CloudAppEvents.yaml",
-		"Analytic Rules/URLEntity_CloudAppEvents.yaml"
+		"Analytic Rules/URLEntity_CloudAppEvents.yaml",
+		"Analytic Rules/IPEntity_Workday.yaml"
 	],
 	"Metadata": "SolutionMetadata.json",
 	"BasePath": "C:\\GitHub\\Azure-Sentinel\\Solutions\\Threat Intelligence\\",

From be93e8e610bfdd4172a619f94c1cbfa1c611abbc Mon Sep 17 00:00:00 2001
From: PrasadBoke <v-prasadboke@microsoft.com>
Date: Wed, 6 Nov 2024 13:28:10 +0530
Subject: [PATCH 05/16] Solution packaged

---
 .../Threat Intelligence/Package/3.0.8.zip     | Bin 0 -> 56532 bytes
 .../Package/createUiDefinition.json           |  16 +-
 .../Package/mainTemplate.json                 | 939 ++++++++++--------
 3 files changed, 557 insertions(+), 398 deletions(-)
 create mode 100644 Solutions/Threat Intelligence/Package/3.0.8.zip

diff --git a/Solutions/Threat Intelligence/Package/3.0.8.zip b/Solutions/Threat Intelligence/Package/3.0.8.zip
new file mode 100644
index 0000000000000000000000000000000000000000..f1b51f2a144db141be9d3a21997f084a69563e99
GIT binary patch
literal 56532
zcmagEbCe`)^CsN3ZQHhO+qTVV+qQe!w(V(S+P3ZK?(KP>XZQR5_`SPXC+lQZornrt
zamAf+mx44f2nqni_lw=yOcUVWBe@;`03Cn;z}U&u(8W~MQpD8E($3Pw(%z2F%Gusd
zRRtCR9EgzG{O_sgPhsxr0Sy2M@>lpjZ<o5~PU{@0pS`N@a1@urN>Yinr&p4;UQ*Vj
z$V)4@t`|d{rlm><kdiA3AYlNPzaL7ha!v7U^Gs#{Jy0pRV<98=b5*G7B@y~KkGcE$
z!`AJ;{>TTre5!Imw-o1~7dI+U#nZdFPbKXpzPU`NPO1yPrBRp&i_`48JGtAp@$+DS
z5O(ffxIJ^2sMJ62BeU)Esq4H9HjXL(8FYH#S9<xHKRs_iTXg3|GtxBQfDA!lX2m(}
za^@V0u-Bj<B$m;kp!tD28&8)JC=$QN?gIjkyF2s3;|&nk)^*@lPyh{YzL->%*OQ?%
zj+-G51FuV#6Aw;B_saj`BxiEc)g{-AJior1T`9^ELjqkO5`rbPX(2h;8|3UU=6iG*
z*pQ#tS!zUA?D<UT$)3!9e?Cp?z65ml_33$Y?ixmekw>rc_8zzV+5B~}IwMq%K9ide
zF<NFqV#17uL>jKez=WJjZr9FFuFQr^NW762>4nGF|E%PJIB_3np!fB>+?(L8l@OA4
zaE8n5X{>l>%#OGm-l55d%9IM>iDypcPLF0W<Hx;%9psfy<$T0#!%ioZ#-P)|TLs?_
zrAvdc=q;&E0M!0=5v85yKw0D?dSdQhypiJAFFE{E&KBueqEAQ^Fpz@FDoi?2r9wWi
z;V#uQ2ew{KfzZf=z!Q?mwP3S=KvJiI;`4}EJVGImRcIhB00I?}nL_Be-#3k0rT3UG
zIlC~A#Onh2hRyzGoAAJxF<Bm|>NJpPJ4Tk1T|Y+fW*__8GhaLE?r}Ln-mP;Q4bh~H
z+$T<bd{87ZqSG+<qBt&n`6w<Ok>p4c?kf59cFvw3^Hn`)3N#phr%?pZ6XXl`Glc7A
zyd)&6@dPH8O0Gdptnw;i{>=NqYU8gqwYPCTK1|YqZsA>*0b!p{vYK1^l94yiBVX4E
zi<2bM%uqSeVk#B2z)-uNNInl^Ux`k1ltR~^9H42`*?OgU*7znYQ|t)sCBS+@U_?;3
zY>>mS?y?ImDe{7Mu-n=I)Js3Jf6`vsX*u;Q%Hk{8Ur5`~9nb*@f-M?4u}es8|D0W+
zs=noRqBbe0b`v+U7-=g~p3a|2$nhD7Tcy{(qq+|krd|S_Vi(1z?d{7A?4(<uy}`aB
z5=fK*xQm{|G|)=Wq)6>RydUCm#g|l4MX`GRNuY8ZD$Vz(F;8t%=4CXyTo4|p^g-Fu
zS^MJ<i4ewK72}Xu>PNJn1k?0e4hq&Q+*p_%>>(JYym(qU#j94iYG0(U1=RU2g-$FG
z9ACN6E^05*K<5sH=rPc`=#A?I@3>2frA#1KLAL<~aub$T`?V1+LNy3c0jxWUGqk7h
z`|(}zOjqW456^|yWL~9cYyOa(eK^w7n|F6yPGLpCQep)Z33NcW`|)FC6cH04m;$se
zQ8N6^$x#k6)SjIm`7x~ixqx3WApX$Y=&zvepzi)H_@M3&+%kt0*LQc#+b3#R51LeI
zh)g*l#B2d~HHphP%6kS+RxBX+T$<qH%)T?7^)Q8of)iGhHig2d%}d&6p1p$2kn2N&
z1mR#G0+M2=0&vBKHOKV#051b4+dfj*4zPILeZ0+_Lg0&sQ1<jL`8^ljySvdQ^eZYy
zD9+GZ?mC}Z`9$-Smvg~DI(3`!`v3!_2D|9Oob8&J=~{038g6di!0`ul-v;N+Q+;<A
z*^2ESs{vK~HM=PFQ^H57>)~A^4P=yg6kuzk#gG01)NQS|eQK;xk`;4Jzdg~BWO>gT
zple)guVf%gMt@W;E>yFhEU~WRQ#@5tJ+fne>;ox%k-LEAN#}+4J!Jl@0cjj$Lh2)z
zHAT9Wj5#qvDGjQPys?+~)E40i9>6Q3;&UM?&sQFRlQf5fYXrJc6`{`vgB`a3%ilz4
zd5*wb62TY}h#&QVqF}7Q)M_rEoB;#A5AQ@d2XSQp6hrGadf~r7L473svaWCa!)1)e
zVl(MlIW7`3Ny=hEk4L{fe*3u`<qVh7hv)DSw7A>x-fit#U17j{TLv^q`>SA??5m>e
z$!m#v>NbXKE^pHiEy>m<^O-5sJX8kbUcly3Ejo-!T$rqBA=f#rL*m(pCm>WuY&uXO
zqc|q3f-gfsK0X0l^v`7S6FbE(_nGwLr}5PnpLucxcEGLBt<n{oLLd-%1dom2ET>KB
zo0+snacg+KAJFq~XCiC;V#Tmy!zaBX`{dD$mf_WTu_{JYheN%<wu=^_I55u$sNjRX
z{x%Sf2F3^+RmebL*n~HHHz2ONnrA^p;|l;HA(q21<9JpbP!K7;q4Qf&$XS>0-U{!H
z0fW0e`=WHj`;sG*2OL??*K)>OVHkX)!EmBvrHlsnOOO}Duoshy<ThZu(3MS#%A&43
zWhoGfxHMcW`N~(0%|aHVe~eM<cJ<8^!1|3+nSD@3QxxpsD1f(5kf-nq(hkOk2_>^O
zn@^ajIhLEkG1~@_&N>fnG~NF^X*@-{`{sa3K3^OdZLEuA@lEh5RAfgzur{tH%k$JO
zkmp+Gr3c%L7u7CZ@cZoJ_uL9>&pHd!hvSJ4>Ypf3x-(N22nZ5chL-2Ukxj9LBt%rY
zfRTj@nF}^oV6<Q5qjad_al$PgbqG&?J@6U3le4H8U^u}zv7*JGhP8ynz}fc3z!@~~
z5Ny#AGWbvU{pf2uT5k#sQE5fi1lG(1kED*Un&V=IF|>TCc8(Cr&BJvMArAZ1bj86~
zaU46JF}}%h4|v2Q;nV|OC~9inTRhvHXHGY@iITB@XN@T<zmFpNgAHO8{0vYFN$QIu
z1V_kmP(+a&K?${&8}Y{vv=RY#G|rJTEWTu28SCFXwG`4_MoJlUO=q(L^y%m)e3o#R
zG$r%*a3!~5)l{@qQ0f43GYDsE%G7I*-dGSGFu1ZLN$irMG+aMQJT7CaonF1NwM19$
zmF*G00fBLFt<e3_t@$N#T<7E1g!`I$w4p)t)j3r?FF{90AiOU)NeMtkF1`B2Qo(xS
z;XvGjjd)F`zn%!Q`!!6K$ioV<{=EFgKWWnjSF~4Ki0>rxnupE@8_f;Z39QCWq+`gQ
z8TLDN1T71iqXfytP?8Ks<}CqUa0tD(*XYGmL+JA4IZetVpbAPPpgA{A@~<aEGv{Jg
zHkZ{QU<uP0nGed31o<OIA=}DD1d{<id^r4@T6)5E3c9Qoc&^EwPj`N1@<0!jUpYnq
zMjQ{nn70jF=J>19yHD}(-2M`f8rs_gUPE^<?8)D9YHb!6O}!KqjYH5KoI`waoB!iy
z8uCHVX7f*_r;cWsEcqU7=Zt~$rI%)$^oU7*Jw2GTY4WR{?7kILrJspEn4~f9f3clk
zgCRdIuffI^phAyD;9Vi91nq*xS1zekk3-x6>Q*e3r!W7OF4?oGPQx*lo;KHcX7O?*
z<eD*?i<tj3I}-n+TG)KMZhU`Xv@vPHGpCc2WC9S}2m?{8M37yFeN~rU=jU1ktIG~l
zQ95yrR)z<1l8Ut)Rs%5;K-fr2f1@nN%CEZg?w$~tS+iFMm38X^S!r2Bjk1oAkyO?_
z4cQ`lITk@r8&HxN+@TGVH6=!6>Ae=lMV`rq`GP7}sL6Dz_)8``so7RnFz24!J@d`?
zB<3TdZ1eZby2ZK1%6rVF!><or;NLwa${5d5I#1F@lkVcj`;7z8jbG*J+*m#9b|U#<
zChh(N<PEElPMtdd$WzMm2<rSje(q9e3>%_?lP2-2EzD@6!ik5Nl4c_T>cr1r=J+~^
zLunuhXmpPX8QG9&o?_eGF7{$wtj58~-9L;yvMBm8Sdg1HghWk^up22f=`}|BhJ__r
z>I3lEqgSr6aT*t6N3OMhvzbC$CaN}9<5&Ed_5VP=73V<L<%alSfe8UM-!iq~XECrr
zeX5yH{5i|UZOyoDw)4^bMq4FZlO4cX$`)vEza#k3w4nD3Mi;?-b4!eUow*fs+HrG(
zO+4}4mKgIIL&|P_k+m^Wwd4nPmg8ulwSAmIRg0VARtx3^5PX~64OuDjni$L$c9#A6
zCz{28>-#$F)bqL+$`)o;+9Ylxq}MM-lPK&#9LGVS?17k34~h^OcC~EWxas!;9Y`4?
zv<4ZWf@s^xJ8&9_>tYJ}=0<2TXpsXlhSRIY9}LYg5j5fJEiHpU$eK*-dG8xxZVN&h
zZM?aTLDkBd>t+_vAb50}^VF>phbEn*&vw`ut%5fjYJe>KXHu0`-Vk*HyQl~TWJ9-#
zJai2p{w;`}OHQpbpJ*K2fgcMI2-0r$xb^Dstpi&oonZWR0=F^bo<HazrZvNN{G1&b
z>*xFNn_>^B$Fo;)k{fxAwFzD#M|yacqk8Fu!i~>bo!4Kw1KVgB>q8C$31%uoU*3Y$
zs*pf*ehnqYX<@JQIy)K&rohTC;cM&wN67+0JtM=f(mv9#fZFbVLG2~lb?qU~6p(zy
zeh50Xh5QKQ6{;n@3<1@viw3?UZz00BIH2Sqn-l_>WwWc3I!nda0CHDn^N9X(@tY~#
zS9XZJUp^q0-@y8_3?JCy=%rs7A=}4L*<n{sLhS5eGAL1=@l**%I`&Fmx=LY*(yoK3
z&5h8~wNp2@V^pM-1;=7_gd$DRz`yEI$IDjlxsklM%A#jwMj-8BX;Q1qeL5OAn-Y!U
zCIH#e(sc2WZwA!>17O{m0@pIi$F{9dY-QsmoMk)WROw9w*E(v-=b|jq^+>?2^y_zO
zc<(tcVpt2O`mbLXaINAUY}+NMuB$9cHp;DN%NjVJxgP5>ak9k4X7eq<@$lxioIR@g
zd|1Tm`!-pl5_(CpMa5=Pt-*=E2KR4YHbx}g9lUw$?hz!HR#^C~%={7Y+nCwJF9<hH
zO7m9nMmt|o5K*?a5Q)l}vO*(3-&!G($kNjX)f{?afJ#8kr!{tbqGs#8q=pTtU$(>;
zla|dF4C)15(E1x%7^U?uU0nwP<2gO<UPs>mn|R;Y;Rz&}2pz>C)yHAONxHifGI1&S
zIs;0nr+LzXWyEq58GRc;8ERIg@y}Kn$Y>pAMP*974-sM>f$LC3T#E83DVhx1aF%2w
z({`0Mtj$1~#kI|HTm3T%)mmq#zdwgl2N=bnF$8C<&JWEJjaEEn%Qp(Zr4s@j=rxYx
zZV@vQug(w07L`^kk_8@N)AT_y{ZRU_c;!tP&L0;^kPRx1SP+)?(ae_Me|^o)*3J~*
zw^~;+KuO*7HoIu9HB{%J*PF@IFPOk%LFbDxh-dfz1891CIQdF>%R)OnTKdEQjpc?F
zns+%oMxhDm)$-d8$2KEdProyuVUP6!rnY|Ow_V>0pFhvFetW$w1KTE=7ROOOz({&x
zwVqDX=RB5#w%eK2yi(10uVFnRkMk`T_BIW=6?vesVq~ff#xFEECklgCR(1Qr)6)Hg
zH^8-)Mr<X;W%=`!BevWkF3o$%v70-LE(%{^2=f{jEYN`JZcOoN4aOYN$D=!o3KUnq
zth^~x#(X@CIY&fE-^T@5^^KvM0dsDq9z_<#4L39e{3S`fwEX%X4spIFO?why;>1CR
zk1aXtz-K1q(rshY4HgL4Gun=KgGKcTdR$$)K8uoKX*Y`Dco)D$sN$kLSQr`eEkWU2
zoX1E+@!qybNYxzlPjm5OmbTpKb-oTDTi9pwZ<vS2w%klaXvxLUxHhmf4f;KIdUK+|
z?4;8Pz{fU&hlTbsSa;H*g?prV?mvA_RP%;2o3DFj+J2DK>~uf-geKtY8}~l_?BT`6
zv&16l$#>fSnRjs8`lE*Osa)>^Gs<#zYdRZ99nI{~)uY={QoB3s6jj7>kOfB%l=fPK
zFm-zz=E_JzU~y%}Lvf*v!O=Zib|d4d*+<kv<~rcH#FNC7zMwmFW)p(Gyadk#2?CP$
z0d^~x7E~#Er+T9<EkZgBWyV6RWtLnaom~N^fu)<*4xUlRv<Fb5f8D=emI(3brt{cQ
z7h08;zazibDOcCpcfjmz;3Cq#c>t$T7PMkrcfsm4%EtPowI^#<A&`mz)ycBk%qWc~
zpO&Ub<6c%;Tn8=K;-|V=uIuZ=pLz$C)~3tk;h_G!5_v6+@`kG<v&~fAIGbUolm_vm
zp&uQe7Qs!IVOdh1P;eH8qbHfbN6&*=E`w?p__XbYnlI$%(Qh)X%)8DA1@F5y7t(zC
z6swJwxuB^0vgFNmw(e7s^qyl6R}|iGYmpzFq~NqrpYIOSB4+0`8C1{L1GJT6O80}K
z7{0iO<pfHgL#__}aWG|rU;rxJ9FUCetosEjo8QlKX8XGCQl#!C?&i~rrzcFW7NzW6
z1$skoBy!8d^nOE}0dyydidVmCkV^N^m>90ZHZC6}?`TZG%xi@aK{vM$aBG*(8~Mcn
zst%xiR^%glr=&vp6==Sn{Gf;NLnC0i_3WHYN(nUYq+8=jrqoNzDK3p|2&$D|z&}6v
z6{Nu-?6A9Ko{#_l{tnO-{?BNQ;{P{VoBIU`fcQOHvo*A|Q!%x5u=yUa{eMHXLjr2^
z<L~o-7^+=#Tf47M)Dyh<{?7dRp1H*o2j}1H{fd2xXz6xuA^UM+v&zkE?CBzqPq~Xh
zgb~<O%`x4vecjvDd!XjZ?hiKWk&rAQ8Bd!9@}{V&`+cbDeq8o`v5T(0x6Zbcu|I7w
zn_hd>r-#hM#;zn?#qc)Qj=^Tobv*H>I?uZXVt>-{FtPX+TcuW<iqmDh_S2?%i`$v?
zbQ5fTK?R*&KXWw!lc&?|Y}%XPdG({b&vjyb?q1uE4Y*x`3f;is_Yr%yx4|80JTxCq
z1~H`5pr}HoHEJ^G|9K_z3I(VavtVb35DIUe2KH<BpH2n^m&gEdKHPlFUV%PD>AUs4
zj+DV|2utZ@<}iEO0Mh`F0Yu_=xBvyt;tvdqTF30S8yMcm(i24>pxSys&CsK**{#my
zaT_1fdyCq(@sm9FO;2Lbn8v+J^Q_Cp#c?ar<BPOC92;1N%4uicXSnQ!M4MnDu@lFn
zN1sSWNNbxQQZRGFpnCcvrc1*Ih&m8*msjgSe)j5G_n?bfQNfS&i0*yG1*q~qQ&adS
zhGL6F2Vs3!EoGQh@$+7q;R|KjCaerG{j1!k{VCge7#cNgvU_Is&;)N|cCS`0xotoX
z<k|gc*PBJ{mF#?uU3zTf;0<6B0vGS%OR9##4+Lsok2G3?3@b}PG2jrw3G@zr4;>IX
z&UbI8^h0id75shf{bO)2ZmF$Qfv&$Qech_yPiq;!DU|<w#0^!Ol3YoPU*}CW!bsv|
zM50WSbGqnO@(V{7p(c&_&$8&CounG0g-X~08znWlvP@^<0rXd<K-REm0zkfX=NY_r
z5flJ|3!Xe9B`ROKeJA`qHMpnK!H>Z>$@=iAEr!69f;<#7ky6M&XN<IPsO*lHSg6zZ
zI6UN4s|VGX$O`DSB6629x{KP}wCmJns=cHx!~`ub`oPnnPA=C+5K_b<_tPil!(q5!
zbt8C=-#123Np$JG2IrESTT*9{yyz&@!9-SpJ|T%5T)j^1j%Rq2NpbJDU1vQx37n|#
zEq+j}H8tqFiZn0-AF)J{i7%jIiLpdYPIB3Y8`>Kqvc>rWW+26p@ufggas^cL$#W!H
zpEKq|f?&&{3EKX;=3iwX?H_Wgwo9&yAJa}}AHI_5b)045{)0p`FE$ItvOoQmbZR-X
zz^~>bG$RK)>-ZB;2=*3FA6SBYdK<5~-XDSn5ID>sZrGqI7b@sQH8iN35zIeOVeNx`
zLIuXVSPqip*g9kOR&7;gt|nroDpch!i~tJB@b-q-q{!VkEhj7zb5=%b<ZOyYhS)OY
zZ1w?VY>JMCrjaNz5=(q~y1_43+~iAZz~h1ObF*_Mjyg1XmZ#3zd!)8WX;tOFjMD$=
zdSI6>_4`NH=TVKEU*pIFdzPHvJ)n$V<I%&+x2~UPMxJcs>|1wacx`DWLM3&>Uzi^G
zzZ30IqW~+lV5)$HC8L)1@-bS<BEl%(s+1fR<T9BuO@;%SEBE>;2;r(q_WHa4zAq`^
z8bGAXtm#dCVvY=W31_L%fV!;+XS<FQ-6~3dFp4N5!#kcmOO^ik$DFrr-JG{>Eal#1
zm$PTQzQyaM>^Dsy(I>^Zw>jxKGAcz=zjtjD%PF;J8Irs4q)bK)p25@Ct7p?2`(dz0
zQ=O3lr7`7uWw|wY)RoeN(peHBD)G}SCC0~AE+Z+RTe4^a{Sj*Ugz)9NMq#nKjiE6n
zUo)MWGz*^Iw>Z*_?H=4ObQyf!!vlnE^Xkx&o#8eVXs&X`7MH1JZ(sH1i=J|=8pE>v
z&sjzBq<XuoOinUibqh%w3+n72AI~(U*UN&2Ukr{BzVu|ZilTZ&e4dtygDkYt_;D(u
zn3xrZ(IaOL4E0L^oOn-O$fM08gP8~2=visOU9Jjcl6sAiU1q*_4TXc_eWb$Du9CH-
zT15rrYq79jCxi9OO>f3g7Odmm^lYGzp6B@rNnL8Fp4D#$rlR1Xwpec(t^jaLXO_Yk
zUZu52Mf~$Q{RU;$LErk*cr&BBSikje>7jahKaNXBJ%tf_o4^_@(!v@Le<W}<jdoZ)
zhZ~-L7}^`fS|vW~JsAA`0Rqz6sm-rmI$t8~wV~(JpHpX8M4rQe-xsc|owb<6DI6w&
z!u$$h#G^{&v8(5+ax=58y5F%V(@~zByBZ?D2mKut3YwDs!Sw+xr2-aQT~+hM!#?m>
z$04&zh@ITb!s6Z25Q;XMK|u5FBd-EZ{(G0tv@MgyMy1}Niti+aMkb1@gbfE9S((&C
zMxd9G#kKemX9*KNCV}(!TPQc3iJ`GCTFru=FIo>etk}S}VvD|kN{$1z$$@5vNKFik
z8ZziCRT>*HrIjiZLoF8w<cSs?-OF|^8sto{sKFK7fJA1zCtPiOn0Gfq=&bWbhn&yz
z#+z=72qd(cFi~JMz2WjEL$sQZB!ZBsZ?jat%>q-WMrt}Kv$qNgs3{+0v<a%JUs4Vu
zvthkVID&y;%7uAP5<+YFZNAI(v24EUJvT&3qXQoWM$;8ZY%)lr15GXnwX90wrAkAy
zZ6%?Zjuyfj$9&R`yo4KVh-@$Gg8CZ*S}iWY5Yc@P2E0fJ?aEdFYWbv>4|@BToj6&D
zwc(t9h&tnmy%yARzofx#hf<sV@W4lS$ot=5#Xc5T%DiQ+xyz_GgM}8XWo|0Vwl23q
zoSwUF)0pgjzR~EEe!bCbY$HK04;BJKKex_&2MS4}O+P6FT$P5W%swGsG{X4g_n3=H
z5r30_rMr$RiyKTc|5>N;Ixa@)9KFeI|G!FjR{m82-||<9RzDGAmC>%@$K^&mCDLHR
z5nO16B#XkD>|Pl$wo6_;tnw^Trrkr65E`DHP(s<&w@2`;B@&DM-)6x7#|$k)ZuSbJ
zT}5BC5>f9q4UE_txe+(~WVdy-(S1fAAOYJbnH|@9QKKe4=;hOI@wk?ue-d7F+2}x<
zt!7}TTlrvX5gie8m7f@)sX1CdRWCY4N@m0BY73Gzn^6Aby<gAR#4<%P+yP>3B)jea
z3xL(e-eijzW?e8h)LUSimtakZ%FM)|t1DLHHa`qV!P@0gRmF$N;cHZZTpgD*J>+T(
z(Wzj~K@e;992T_ao6`fxuZs(S#c<bx<N7#jF)+rxQ(hUe2nEL0J+E4d4NJmA3tc%>
zEWQ!I<zjem$qCX@kn}0yD%N7H&0Ae78*L=E<=<KZ2LOxVseRSqWx-;2fP1sNBxHpe
zp>tZdFcqFq32R$*VY1iOEodJNhO!b32dmxuex=~bns##3X3tHU%H|8q*U1IIVsK!~
zd3jba7o6bUXRQuR8IW*}wf-R0nqwy#%~NG&qV=0CeAPX?WB|q4@bLuMmBYmVmoT;D
z*|n5Cmt#1(3vlLNPjuY>^`x^hB)M<wjzArfSe@(I<*J+cT;f|zItQ<NnRT5GN32zh
z%S!swTPjzR%P))-5n@s`c3<Gn|8308zs3ZqLzkx~OuZqs&xe#gW1oyQRh7%yD6``%
zEskq6%V=<nU<vTLja-@7JT(_6782X{MX7`PgGG1Ivg`4(WHQ{rz1&(6Hb=(loQ^Gk
z{|)K7v#c{vMJyLyrg65*jpZWo*%%P5ZDIS7feH?Cv3+0Kzw+k)%6r`Zl^3aTIX)eH
zLma8PSeXk4?ub8&_0F`?EUtw!!~#0$9+$}LD@lQg#PkHl>;5O6?GOLDQ2OlxYGL%F
zRB0}r_oLO{DB$_G1fii#VGWKX_f2AFg_c_l-ddE!i5pw%5GAnhELQ>x0E=y<8rR}s
z$zphd^LRJMBk_2<k~S!wt}?fo*QyT^4ot|25nC@__sh8$%r8(fY?GmZrF0bSN@T(4
z*lLW8jeva%09ZJj8EfZue`AC5sUA4DTT5a%dZW_MrF_28oQ1=0bVANWmpK%;@XX8}
z!Ycl#LU<FaYzTLNg(b#NzV)v+x&M0O`Sh<hjo;p=PVcDV4=|sB!_+r`;rY9dNi4wt
zRfe%)R0@w`mI1f2W64bJdT`LO^<rY*Tr2_R0}|W+YE*}hA&c(%j}g@fEG8;mPcY04
zT8r`DDP_a6{0(51VV7AKyrY;>5Y-M&HX^V*f;>;XdhuUWK&nNpeS@OWTmz9<dnsDx
z*Av*ZKa8yKrM3mt;$s9C4rW~}zy-2wo<_?Ywb=oz$I}_Wtbao5;c8`=7_!(F;EWz^
zF^E{p8I#jb^O+M?1zHQu_4(*r-V@*|VpwF0z7dxV{PG&J=m^%|06Rz#-w@aPr&xKs
z|AqMKcd=4ci2fC4|0}NEc)1JVzc88}-`6bbDgxkQE8>;(*@xLa`2P^c5TQH6`s>2`
zv_fk{!CBI-L^I8T%BaYKiZK&jXHoqov9Z$R*#8_$NV>DNXq|6dV0k=gtk&<!Rm}mU
zLN7F^T63_edhf(8MzAv2TJvC9bt7@#k@0x50$B8oY2RNg2^B#SUk94k!YNUEJVi^*
z<j(DM;Zd*S$AAL^!;iu_&OeIh&%}B2F0tt}E)!pkVWyt^7Za-UiL+92d71edmn%(7
z)X-YQyXPE=D~}KWT5!Az*NXWSym_^S<w>e2hbuzb{|O|?;99ErUwk(hUizEYqA3Mh
z%~k#y`&Oe|OP?TnwR)ZbY-?05=l2b)-G@cQ3kg+R3eN1l8dr-HhC4AH@1?)2b@`3U
z{J*R<(5Mbvu1fMZm(ep9s(A>8rsQCl=iT*{aF@FZ%_E^dW1|adkTzK&xG~pD^lX|L
z*mqX{Ewlfa@o$-F?FNTy=9n-~H)z^68<>g%Z<3T0m3REK&Ig0lb>+c8)RCdFw#WeJ
z*8Xq#s7A0hRP%b0sRSfup24g4B35=*v1R!^H&9p(kW*un%C+9ix;z&-$T21B@nrQM
zOdfqB=`SWhzadtvW_a+Oi&g7<t=R_P&GeQ1+ybnpK2=&-@``F$TvsN{3}S#4MlVvX
zyMHRYZ*2YUVoCUKGXE3D$}+USxtQ+M6ee0|@Lk63984%!BX-$>*~zQt4UH);*vEw@
zo{f)WhRygdh;lplr?lX(7?^0Stur}UCKI?A4BV|`!HivtWyvZy(_zGu`W?!W_88=x
z{|iT8{4Gv6;w2-MsqYG3Z55vmHwe`RUnB^O=pk#VKC7{NdhGYu!x&x;O#d%-RETcA
zXH0%agVSo~JE6^=3hbNpYonKCpvVf%-ftR9fKrwAvExIO(<~--eU1MT_sst$?x%0!
z4ip}$c(~Bi`k2C_=4NDF$LjMre<m|tV!DB90<0p=WNUB{XZPZ*)*#Z(;`qjpKbU*4
z&E=#XElZ{jQo}!FRkzwm#p|7l$LRD(X{F|7bC$_T(6W~I5S9-Xqq}$vD|7u*mgW~D
zncTQ8`+xByTIU(1S@m?aG5Rfwm%78#y_j2A8W&E-zu8<y#oL0jPPF-bL}VdCZ*R4c
z&C#qD>~B-IHh;4ErzQU-T~s!2wQqDs)^gMkCRl1NGYE#UgIU?j$na1^wV-Lpgm#b5
z&X2ETt_&}yYyDR<w29R93rBgqy>M|ebc@)r66T7JE3Pnv<wn;8nqjMJv4}^BK0Xb2
z2!?ORev@6zRRaF)L~Ej6&HpS=zLBajIp*by`!~D8x!q@jrByb53>XigK?PjtFpTn>
z3d**n=H+!32stn@yAsq1|AjLkxtul!OaFRw#=dg#sL9j7nHZA&6vn!jQ2jrXwc6^1
zs@GH1N~5|k5%Wy$rAARMuM&CiNXUbsaRqFI)w$PpgZB}H%AfCbQLy>HA^dK6f7eC2
z-)%@xYBs@I`fqWe=B-x3RhgTP76D%HhJ7yuW>+jbYvE|q%E0Die=(8o-_{NNX^CL|
zmn*ry!~cI;7i6@~`@qAu5>~6eZ(Ort#Els1D(ec5nlN=IaJh_$EQQ9}a(n=ureqhk
zu>H>*6OiDYlG~lDmY1NZX*`b~M?P4<bsEFEgk|`oZM>l@9u#5x^o~})u}2cx{ZA}*
z&K_+4(}EAK9&o>X`Cj9R)jV80K7f6<4K0zzcVzRjCqqm?*0N>g(R|AaVP$-6u6pqf
zT^~$2`~ORUE;Iivap_PtOw5|fvl`GhpP9wQ-E^2G!<kddjzgFcHAgQ0t^Yza4Bu>9
zi|+l@WF=N&dYNF@Uc#rqy1;5MkC|x&{}2HMFDUF}Ykh&nE#mdx@K_~@$$3Q+wFd<e
z`Z)oSdrw{!Fy9b)L7Qh3Zp0Jm&CU?4egIa7l(5>XM`O0zSX6Yt`momgRi904*(vAX
z+%y9@Jl2FhRe-Se+6R#~`7nGLZSW4c{5`5^k5O3tG1<l#7b@Q9d9&&axI-*=?=cZ^
zZ*k<9eS#-ESP4O+y0EmG?ejE-UT}g!1|+IL5N%C=f!^-|6-b$WY!@pbugUK~(bNQc
z+ND%PbQ(#Qkx-7^lS5`wFvA~T>yI|@X-(vF;8d2a!mt8*{|6zxLqtYo(uO<FAbb$0
zL@+hdJh;$Dh9QU$s1FSf_tqZBiVpI7+7~tUc;zK`5#j{Z{o3O$S^}pS{}72hr}w%?
zTayBc4|vFotvnnINf~Z8QMJW_RpwH9bGI#YoVl^GVmj1)A<1rNG}52!yV`j(Hv52R
zoJEX5&EM9I*jD|nZ^-b`4FT*j1W8_}N2o6PTvzN7s7Q~;EOOxeX1bAmkYkc7%D+9Y
zFWRDS&x?pj9I_qt@|6BDNE3NSSrJ5$DmT|Qfz?0+s!d_(y<~~Qelwn>RPNW~FEstG
zESXT~Nq7ezbkhyqC)Y*o$w_hAu6fm=bH|l@fCPaF*&QMu+<qM4EU&ti^QTrB@&M-T
zaOHWxnn@m3P|(n@q_^cbZ)4{di>fRq_|Z+tP$`1Wl;V%ZaXCSS=$euhW%SSG42hkp
zY8s#r8AQ`VvUD#2Dh(3u$e1_ucaW5tw3Vln2AJDz?Xq&3yA!vRXTkt<J&G}G3qFwY
z>|}Rd3>O1TQzm#j4hO=FB9egt&)|-UP95FR+yV7b{SFaMUS*r*kan!Zx}r8fDY}=N
z&t-MOpdWjHPRncxTo+XQz%uOp*#eJ}47~+^mH`0}914BnXBS|zNuj8;R9<)Y1xfB|
z0<UCw92KTzdtSC47UnKawr~Arc-deE=bN{_UK&oeIMQwi4r1oZagiatAn4o6I$cUW
ze<H7aH(WPp4?r<@w-0=2re~8v%D03&&T4pO$E&%YX-sx?b-p9W&U*;g%#Md2^BsHv
z^=`<a=*yW47XDIaahLG~C#|Tm6kjSmeTxJWoQDhd>j-GHhwfV{oNX&n2S@tx2<YCp
zhep>R>RBGMD~*2)^e%9zyq#8he&P8g!vo-RUNiUI009If)Tv`dNC1f6e4u*h5XtP{
z<=Og4MsgRL-ii2{`#p96H35!3o(4?b!zpM+fXxlGWAVSbwRu2peobh)cXqilq6WN|
zBGK8~8Hm1uD{gtRi*TyhUDSfV+|rvwLeo0JH>zTo=yAX*NNaD*?}f#rvwbnB)7|fQ
zhxU0sn!&094#mXaD2ba>Zm12ZvK5<)cGjj9;svd9nv?}O9C@Ge8cA&zU;#eFuWd&N
zs8Nvtu&N$WkZEt{6{oaMJ{2dRWu9D=dWKZgk$MUz0HtFQS&q+~U%-1{M{k6@8CJ#I
zO=<PdXQP>w=V%DVSfo2IBDIF#liu@ln_F5xIXU7^Lf41)RnD^+b{@TQhMz2e^#%W0
zrAeoUDhPO0lzyHPtnPw1nr+Z!LSO{L3Fj|WX%3VsYx&96TxBOVl~kZlsy|#C=z}&6
z#uShV{;4%!shAN6>$vs#ps4m9GbDtpKAZ;nNR^>dH8|YIx%m!#lW7@r4+bK(*r#84
zFr0fHV9;v6T}*Ddlxiz)6-5)wtjz^pV^X<V6;QHASMkPcYqJ?X#n9VUYeK!zKisvF
ztFe{57}(mN*f{&}{K69c2rBq<q%O8ZA)ipi0_>4B@F-Kj>M_3dk1F+#j}*Qo&Hf3!
z=0bMOaqQ}yDfO%C6d^}#uuZVgjZTK08oG)|*p^|Xs(FFVz<}md!)Dg97O*8KVXG~O
zhQM7H)u7WWOsNI$^hpycHUKp5iOjiuORTqvaJ>a6U7KH(bzEthS=QPa{J%#_*Fcv|
zUVnHvB8Xvw&y5J$P{9p&JpAVlG46tQSnwc&iqKF@R(`6R*}z5x4q7Mc85J@CrNFue
zsXoWa$*qH!t4qbuJd^jbAi86szjJ{(zHfKFUG0K_>Q{SXQTFPO{Op(6VeE$d4RBxC
z&E+9??uqk-`^H$HI?()<8RYr)NZzbhJmc9LLwnrG07ffg#>BUCTgKS9lx(Dr2P5jW
zx=7TOV%Q`PB15DRW%wit1toO{H<VL7cVsff6>V%X!er|~k~M}1pKe^pq%pZ&*FlmB
zcNc3gsRIBzEQ$o{{PMm|>7qSjh~#+sV`@+-4BPyn39g~HLW80Jr1szI0udmKYzlkR
zG(EQYBB4JswGFPhR0^BhTF{o+G>m~$7sZi%>SdjGfT2p-8abf$Z$}l=ZE-}g#p}yC
zpzi0s@8oG>1L=sg;flwcRfPtbSU-6k+Apa}Bj~~-ANnz|69(U5Yaz&xqZwN=B>W}W
zNl|bV+(*lLf)XhgX0BCQ$(~EJp}km_8c*qXD0^FKHf0vB;zCQF5R9-vl-MI3cJ^bV
ze#z$nelp2_W)>`r4y<9rPk(|5VGCiWk~M${GXJ`dxRx$OkQq>jM<h*td-oDte5Vw}
zWA6M(T=vYZq=Xk3i9d-x@uDVa`3SYw3dqG@*A@}DDc!JIaA#VySi5C#X+$z(IrdXP
zWLXycKAb0S_5?Nhv~q_EONp{QALs-w-9s5MKe!Ni9sZg{V(b&<JeK##C*LW7DX;-t
zErnD`pPpbX7u|^!2uiWc^w0#(W|3j+&j_@lI*mfMMY+Tm@4lA)>I;e!@WOoIn>XnM
z{Q|GZ(*6l_gCXO3F{9`BM*g)yXBh8XN92uOy<x-D_;%V>b{nX*1=wDi<;>YO(Nc4h
z(+Nl;*f4SU^jS1y?cm9sjOJuoak1@M$K`LT6QsN$TeP&~2Cs4G(`d>asoCH8&J`@#
z^kX*2(pSR|Vb6<iGD|}mm0iZ7XovhuCg1ds4g^DQa{`txAgfd&QG)7(zS6Jx(kgS`
zQYu4<#$srrs+huF_lF1gCA`5;Zg`mQ<fRGTu@_znyvctlf>%8F$=I{Cc1P&9;>b{a
z8lkcaC5;}$Vh0i7Je1l8_B(PZVc;<U6X^o^D&ohrf#jnzoNNI&!Leq1JVZVL-u$kn
zp->%AxYX}*h}k^gZTKDn(g29$M+7K2vOgM4@2dn1m?JR@Q$72+2q?%51Q4)r$Y;^G
z!O|H>7$hE6+$ymYGUXioA=wo4l+>X2+8(e&qFsE5J9!osWH8Q#NA<b{41JS5Kz|Bl
zVXs7)*0HR13PJ%^__*>0h|_%3&;@tG#GfX)3(1Ct6Kp$gTuTPNs4o9JtD6+8DW|BZ
z?@|UucNc>{QkZ*7Y%=HdZ4r!o92}TJ!JADL-l-K}4Kb72Y9l*66h_pXCq{HXpoet6
zvS^>^9@3i-I_%3Y3~#8(=>xe^B3vVcckcOHgrA&1uQQ}W!l9For6?f>`LI{6>>IR)
zuap*X5XkdU;wylWbgJjS_)y`VS|oWj73)?&%1}i=6QaBJc6qy(^vT_EIT-%g%KiS+
zi(h6(BLJE2fTBWa=S_!VWni}g1BY+;^6WwyJ}H(E&>%C|Qm=3$6}vSacBWz3n!u7v
zh#+CpQ}jIH6;#h^Gz(C<qM^amJmqiGYJ$YNia?1^SWmgRyj?{Vte-m{K}c^#@`A17
zaRO2lj|G7N>FMB_+{zDe3MtP8#axVa$acUgj*Ua_2x=k3P5A@H*}@86qkY|`m4g_3
z1rn_(U!I>&F-Wt)_Y^7UE$oMZo4GTW+B$q74}wV9z1$!AP{#RMMB68YV{XiF>k^Tz
zyIYDWo8j=xd0uVq0kpm$@zq4ox0}J<=uf{xy`c}+9In|mxb^MD2f7=TJ&Ja>VE@Qj
zg9RMVT3~_Xesdc}bVZBcjx5@1N?_j<8-$PPl#wrB{T#uK&bcju2apvu$Pe>fDtJB!
z9i&(%bH$yQ0dY25?5)r!o@s}K7!b2%C}>MGI462T0(b_xcfw%o4a;ITR}8^HgG+B{
zYzqVsJw)r|(&-YTC_DifMa<2KLCVNMiitsTrhvYmyGYFgB*niMrou#R*l>(~GK6RD
z!pjceRSe=%4dPS`U{}cK<4d;{aoH3&J+&A@J)@O4Z0|y{W-DdE3zuCr!LqM7we@Ej
zg2jlp!IE1HLb~x}8w`JM3eTuz#(mlRT*|GsnNhPlv-$aWGNYz-xjJEDaeZoInp=s4
zC3X&Ivt-|O7?V%jO@fRdA!28;bpj~O-v$-QAU(2r0&5BiMYMUYz00W{tnysqP3Ao^
zh1*8r#eM>jc%@Zilmu1gA^GbtLVKu-R>&wdI$xR#?LkE2LLY=3fZpcV5JGOd2Le8W
zPRV^yuh+-jD_mmZk(L8DgeKdri*eYNq=K1w-5HstU{Ij{vP2dYal?#>OCg(Q#b{>5
z%@EA#V(sXCK8klJ&`uyj2@GrTRe!rtN@Hg-m)^i28QmW}ga43a=`@>QT;35c(agwz
z__Uhc7wmzjg?+H<U?DX!{t?bsPlmYS<H7Z)-t>r6=7&|^mtY2%J{(*U)46hso!=K~
zevAg^bB%%d_bxqDiZG~4q2E0uP51@_C^NdjODkth_~t?*GFy~#izhiif{TMh^)L#~
zM#F~cj;~d?%OO_lurUG|Hg=(GBEK!q*RDo=Z6I)t7nRe&``2gQ7y9Sbp5&bDk<W2c
zv?QkDo%srG^XZPX509s3mt?4HYiAD3T^478^&($_wu%D~NFeOSOpk6EbJU^3j#=~$
z`_+K6NxlAEriDHI{PuoB#}IESm4ON>LnV}kM*fL!|G47mJ}%#kPEWV?Edujfa~V*k
z^EU4V@MLow=`#Q69|<^yQSU8S+n!9joL}sQ*bD6-N-6Q>O|W8gHG(YKkH0u6Z5OGi
zsk8(O`#z>l@L!b2DoAUwPHA7mE)hFn#kaNPKf-kbBvmc(5cEwby0VDfLb{v9FM^%E
zzkUkW?b(XOssAOnn-aHTJMd9=#My~MCp)uxh-E<qT~u+&*-1wIA$5FF^_0CiaW?#>
zWK?u~;Z)sve1W8}?(F7{)-jvgNX=p1nxPOVi{E0s`A2?y>Wkt^tlj<j1DL1tnZn14
z+Z*<mSL$zXo@{mglOousGW3hNmlxrW{May@$@++-M9pWnpW2-hIhz|Xx}(0jCoOa?
z>gXNihgYXezc$cj!r0uI?WeoDn8Agp<Gj`KFgELf3*aX%wP}4TH#<R7Kd0KAt=k>1
z2Yjh-n~(5p&%8L!Z}AP!n#I%Ch-I?41{S>^#M8axFCdgZm5xkIu1`UfbIXyC#D2Z8
z$<Z|*jp8!!w}AUN@y}N?XTs50$t6W~#}cJ}oQ6);#@BkR=0Q5rKe^q>RmtYMghS5e
zTCe!SKEYu)u*>nXY;UwE=E55Dd&%=oGzy&S5aJX`WOQUv%nWR;QOFnQU>~lEc^;i#
zN+g@RLDk|Mwhy07<G{%laXZ7Zqy)HIa`?c^<=mnE_<1s|hrQX}pjF@FvSQ(4Uh~M-
z!3@|ObJfLMc@-3QHK}dOj<m4~=E^5odA1N$+U0G1N*vqb)0f(l6EkdM6t$&tBYdq0
z!f)WdPw<i)<2}3H78WzYTl~AS*Rhbl!apoL>BZVtyB_Y<GIb9NM3GEyf=s*$;y6Le
z+HD9{B+}9Y*4u3Lj((vnjKL+bu)bT^?qbH_Sl_>qftZgJVId!l(>4NEM)0?YD+S5Z
zM*E1!TKU5sG^vXKriu-TH^qseS6e=~k{x#>r+ZPHeJK^JTanZ<ed~VvF_Z22<GjAd
z88p8}hfATs$Xy-vS=2EOz`CF<+F^kabwQZook~KEJOen_0J|W7VLK1+IR$?Z8aQtN
z)^fpV_iYQrN$gR|F~b5jT)bO4z(&t4Bb(2WFB}>RU>ow}aj={Upe<L>J=Za_|1#hz
zuc@m2g?#Z#D0r3_717Kg^TvVg>e6R+v?=3g!q|KV*VMY&KAMnDx32=hMp|^zQ;)7l
zYD84GIl8w;1!NZId?ywKCAxRr&UWz488C{@Z1mNP*iCvA%uA}}POabb3{jn2f!&4z
z5RLtmvnA*{mbMAYNjb9jPMO*^+md51zfu_QR12;-$D(W$n?fbJNN(y&$P4q^Q0wSW
zY20T+a6r)v2T?~TL}>3Ff}w{Hu=nb_b3-4k{FnkvZ4f>EYB%(a|45}@SRjRLLSoYg
zJUaS4bcvsDXIq;=B<v55lAYeKtl$^@upfpB<J%!arRd4C%MgeUDr<LH`E`a*XWW%v
zh<vVRvFb9Cu}`l~IMC_RI*&(ncBN&S0y17V0WCu=iZnGiU(&1cG$ewBkRC{~{(@if
zrU8wzaXq5yW+6ZZrF0?T(_R~1V9Eyb5{L!SqY=*+nlgvoaVR(XJm@8l+co14syjXt
zgg118Oj^w^MN!=#2`8wVoOn}7vD}QkSsjN~BOX9ieDkWmvR5j2Ph(VC`DejOm~r6A
z+3?Brf*y4DVr_Jr!^kG%1-BK%k7iZ9_s1QW7<FHmbqqtpfvIARdkt{x6@KI?S41=c
z1_)-Ym)f=sJ=-}X3FNt+YzG4h-L}b?Z7>x{i9@<^>>9<AF&yj>*Nb@!dGKvc5Mpf^
z0vQZ1LU#$z#nq_ZlO+W`SWm=lPjGy2pCq7|yJ;NOvE{Ay%xKWitJo|*Vl0cRZZmBh
zz@m)h!`720QNG41XIo&2#kFOwvAf7Nv+Ru52k5^KF_97UxwiHKk&lpbh_GF3;$oA9
zJC|syGk`iTa`~4ck`BY=oQMwG97Dbr%<p*b?g6k8>jLKve?P0wuwF7)9UU>hatZ$g
zgI1cn@tsT71YxlB{{@%d#6ZXt$9zv18n@ksWTY>v`I*Jx+QX04vg~a<I2YEz#UKuh
zuo_zv%QB@FLpTS{n+0?EX#(0JE<IVxR<=X5t_^B~-w&zKE<KV|n_w{5^K*B`y?sqc
z9F<kUOHjVp3$-cUw+KGku)ng$>{k8T^sU}UBTTx$ED_UHZGayxVUMo2_dIP8<q4v>
zY>0GrzGA5v$M1$r#;+b$hr&91ijKUf5ct9a=B5nruaVScOq8%`x>_KrUnoC%lxF|j
z8Q(l&s1wM}q4<LM-9lerZ49&e+F3jV?5`V2;LG&TsjL*PGKeg<VEYu*9tX&utYhw=
z>F!By%K({U?)BAAj6FWQE@S&)@c~nuI5$D_aC5!g9ZEk(t->Cu*S#+{5qr?0d`8k$
z1n#|Auy7TET7Yg4RW7R_7os{)+<xJIx;zf%nX%bKkTGyQEL}g|j*%E^P5qSDJO8+v
zRS4bOt-H2}TnfQlIEV9kDPyl&6jWb$n<%qB?bvJv1O5YgX4$cJiCI$Ejp4@HSbGv=
zSG%noUBjp1(#UO)XHnUkp}Tn@c$gd8+vK#&q+;RpU^L5`Z=uhg{6qa(bF*hIXxi(=
z&%#Ak^g1>a*n>S-X)QdEVL<;klz@NrpCCi;;5IWxz3GpjZR<=!%}~x+!=pGBV}qx+
zFifly;vo-~LKX&bFob><S<_iuP2lG3=1?+Hh#kW-;y;HXbpWzcimv{8mvAycDXO#r
z+Xs1;yx$L_{%k*n^uc<|vy!8eVUlJ1E9QWa+@`hw%BT4NDPdk%aELOZ1BUsCC3oq`
z%VLdLlH&vSInJ=YcNkeQh~UURov5B*MejR>{iUwqz`%N1ZqW6ubq7JtU|{e=3&9=W
zsu#Tld<<N@&1TdQ!})+@xEXHJTJi_R02hVvDI)XZsuZz+@{QofV`Tes8@MO@^W9<)
z110qDTQk<ERQy=;2U*Uf-qaEO)fF(?+*g)pdE<hm>hm=!I9Vt$Rf-4snTYntMBp<o
z<$Ed^f>gy9l!YBYoDoW&;J=Ky;LK;fKpJc-6xzp4Kp<#VM7BLXFPRT7qh(T@y|MVz
zPwweKO!t_7+FSgQgwPsi7Hu`t&uhG1nPoP`dAV|))vW0{Wma7_(?{KXex-ppo&S(2
zKtsM}_UwT$n^8gD+V%WnPSqk_5L?4roW-UCb@CXya09(&j-s)ZEuW7!#h;|z(+Ro(
zP=L>O!KHU0B(#Xp2^GfKo{nH&0NvSdvd1||#m%1?I}*GB=l!&5XokyGda|tR^`q7&
z-Xk%w2AaNArba|$U!x5`RLS&+N|i-D03)lS0_tmEyVo<y+8zoRHDkFzc{fr_LG(1_
zeByissTwCc@AKhJAp+(izw}4q=JQ$s-#NB|nBY=ZJ7mcxE!l+QDd>+y(?3@z%x4Ex
zDJO|=z=sPgFHFN(I?%XN{W_emdcjQ33|lD@ybTXTqUr7d`vtr77-1%{%g*cfA?)=z
zq8Qu$zcz*`)fwFgUQ#ov<NJpTTG|I`>`dJ*LzWk7`QXr$8w{#9RzA_OU&BifBOwTw
zNxi~J7(lyKk*__6@OB!T99)WMZIEa2`N%Hbble85FknxjMPEZ)ST0FV?A%;jE8y>g
z9UAFX90k<_KZa=pY999FgxQJ!6R5o>=u?Vg1b;OJ`i5XbdKn(VVtM`CaQJ19V5)v&
z1`gxZM)pYq1PF1&saFSs3^ghY?w~A9lkwx}s6Y9RBn+(E*2NgO!XgrE>wy`ouXaAC
zeqBNk#h)h^NQ2IiC$&f5^#+>-m4bd;Hhz-l#I61!c0A#cSQDe)-d-O}-+`_E6z)Up
zJ!d-~6Ro`e$jt`XH;Gw$V8g#vkL9)drnHyd_DeT@t%+ff@I1t7+fVo-sRtwa&ii|7
z)C)QbMaAGeGH2VDqdS1Ih9DerV)8OMm936N7r5V-$-H(+;^q&xa@2d~6Ms#47a!Z>
zRzZX89Y#iXI?42rsspM?cydu<+pagLl#5kSnvJCa_=p=znT7eq_S@`f9E*ECTy}k>
zmhXyA?0Zl^g*=#;pGjNlkwX!g%+0pZ<oD(SM(Yb)>3N`SZlWxj-z!y%A2iTCi_;$l
zfi&ZSh+>S!^%=;c$NXA31~Q2Zdfy&TIfi2H@Z=>YCY+9G5EeaeCM+Pm@7>w<Ar)64
zFJx<uQ+V>}ky|4?5=bTc_T>1W55{Ji-k>=pkl?~O_6ae5r|dtbcr@mW&^o)V9-UJD
zbB@yL2O5mjIMkF^Qj?mdbNnieTwHtDx*CGMiX9`KhZq`)yXY%;G*}bKK7jS7^!6nz
zebAeFTL-C20>&90$o64e`+D;f)L15{o<{~b-cj!9;zv|i1OywPAF-L6C^K0&5QbFz
zhA?DNwVXM(K5}6zsS2UweqIq(JU@TUoN5YY44`*K6)yiTy52EHm#zua9^2ew+qP}n
zwr$(9$F^<T)*joo`OWj5e98H9{@h7-s&l8(Rkf<FRb7jY+wHp$k3API-RtNvIwKp|
zFZvSv%0f`-=7hHvR@p)~TXA1aJ<t?)jt`ow5ZT2`RN2sH9(~$tkU>a~GCQG*!dtbl
z*jgzXUEXyvpd`sG#9i!CDyF6m!mJ{SCpw2unw^KWeSd$Jx^b+o>{(&U2@3jy+4EdG
zXe70Dxu?%s-Ht5Km;((tyx6@p2%~pFK^;e=mv;&y>>;LLRySh8p=^Y_AAlUx2s~Cm
zOUx{3;1JD!M8?1zg(raI0j;S|-d@{q%u;rBu}`{!0CGjA^j7|qSUAuCjMX%*%A)(A
z@ADCr%LD!M@n627#y*$UVz8QpckC9#PWcyW@97I;6fdZ(0xA#9shbGQ4mep9Vzf%M
z_DG)Fbgn{5BiUr(G2DF_cmHm#`}v5pmvbTA^`$+yuZ<t6yf>g^fAl+-VY!?P%&-T+
z1#@hsPZ}sW@0o2vkrrS6EPXp+qob5&G!5#XJ|3MpUU`QS+lDoob3W#6ZV^F;=Kvtj
z^r-nOazF7}!i1Mjm2S;{l`7qsWx7}j^(l)gEA+Gi!P}0U|CF>!Jg*p^P*Tc2RAt<}
z3Yf%m*Ol>_l)AIeGt<u<%rSX_jtJ4SxcalIEQJ7FVgMTwB60wV<;!x`g;$zmrkr!B
zUvWcnI=Ds2P+)%8c-@l&^<8LFvI0?1j3uf{>h80qPM)tALQQo;jUDiN3bILHk2Vq<
z+-t7de#oPl)CvYMJ1)ujWYD8^Vv&=xc?WB&vTtVBe#C87zru^YTVMqb;H-I|grHw!
zHBTFZYvx65E{0@o{;Uu=RaASCxi5J^{*#++k-b?*i+Ktqye=s;#_V}<;NYRcK(v(F
zEs3j+iy6Xf+$KN7>T)}e0;$0aTah2>A>?9&n`AKTNI=w=u?c(5DkEv)3$yhZI5DeY
zEdd93@)CHE!2MRzkYzBZ)GT|jQ<ReVW=V~BLvJtFkQYA0tcSo-#e#G``+N3p|6L!k
ztu+tJGd6f4Y;?3kod<*D)wvHMYh!7#!jQ%`r(}5iQ(f);up}(pjHVyn&kY@9b}{p&
zb+w0_;3clLYKwb~Dr9<i*wDp;XraQLPPZ+6W}#wfeF$puP?VT);V@C^m-o$SO_gC-
zHavdmN0iD%reV~w9T*|qSU*6Totl%5Hczx21wAv^l5b0*+lx-28u*9Zp0uW-BpKzc
z7l*q>o|t<AKWE@}cX5bEUO4hz8gq_4_Vis!NJJTe`%%|I{)J`DPOZ}sg@z2J#iep0
zKN$!H+J1yzXoin_HOe0y<U7q+R(KqgUc5tKupSa}K|SP~dI(@EX7fmqt2->|)ZV%C
zaVrj8;AWZAC)7iYWAbrMdTDw_F<#c#>~p9Yk4*&SW4zH8b;|kPSi=1K80$)-5m@K6
zN4x{vIyPr6Fe{V0V?^*GxBzmD<ZDBRZQ6(^J?o$mt%5xQpV*je-VcZgbl-zT8b|kh
zyTC0w`1+-H%p8mSVeAeT9e*bwEt$Dg&*J@s6+=CeQjj)pxBg=H?uKbB5hJbv(@^zy
za5%A$vC+V1Kg@TO+4GT$N1Xl6TQv?>$lCaXu|R%Klwn+9$Z|T~7;#Z~wVa###g|B)
zEpy$-7};!YakPT9Z_d=ox>Cr7TagS{2M-RsMyP5V>ckW|gfM$2s5DOElM&zIj3Svn
zvxE>Mrs}Y5EVm8^2F!<s!>H3JOtUgAQ%VMbCz{i2K>Z&VfP5{UXOp0cC>8@M9!>yh
zHSx(117_wNFk_o%z82{OUqnOjg}U_kNF#f6-sl9E@sm_m*#zE#CrYLJnar3Popvzz
z2i>juG&h{v+70=~N0|F=*a(+*l*hSO12l-f<8;x!fvOEiE54n9#Y;(@j7EFHkNcbH
zzm8I+yv~@(xi#)StFc)>4hGM!<V>y9io1{=<1bQG8-LR(z546gLonlqbC~|~+I|=Z
zh`()8G<MPywlQl%ze^H1;EHWbCac=84QxZ!EY3(KmE4Pcy)H1u!!;)oQOi~><m9>h
zm?4mwjTBl?o32&?f!ontY_?Bji@oE0Vql}APuO+ka#ar+SXIPJ<5>qyR&^JD{Xfs6
z^*aTFmr{yLRy(%3^<H=ZFZcHR&}9tVJ-Dmp<H@6mzlSHqH#^_p);?VkV%oMndg#?z
zl8ULYQmVMx{UiM=t$HQKJzz`=@0GPvc~7Bvv9%1jZD~aW`;|;gRwg{Wvg_(*Rcu3y
zmycvE4ZhG9ef1+_hAWkF!kj7B6N^DAz1p=elXXzvNDwI(ian}dP)Pc~m2rRt_N*@@
zd43z;o-*CNgC)xvlJm*+HTxa1Urb*0jy^qURRP~IJT7`3i!4poblBl8BYV-h<4bk<
zKyqpNEaPpE%BLWBet9c8^?@IFaetw3+@F52XSy1&t_ilNJ0HYjJnaxRl2sO-boNy)
z7zEZ!gJWmepD?Ua=(hpJP3js*IqreWZ5bWN;0{FJ=kOa+w7t_^a4(M(HViRP+&Ch_
zz3?puQGisI2N7cHb{@Lmf12`I(3VyLHZ*0`pv}#BEoe*2f$RT|n{H!)kzuJz@!JU4
z8}d4)$(+md?p)as{>Rj>Xj%xlA<$kuudx_8!C`r3eroz6nG~Ge<r-7YgYa#@b<dV$
zn<TDEB(Kq}OP*}TRKNcN_8xAX=d}MVE=OYBhXB<}7r1sck_b=DJ#zPmB!ATQUY6*-
zUPfFf{+=hl38u?A(xI;*s7H$KEDBD_Dac9Xn(uV{NBNVp9g@cA_EcOJy7Uqphx>9_
z0`KOUobiHR%<-_9h?t%IvPkw0qIBp~=gyi8!e3Mktj>C#5p(*|L!6dj;MIQ_=qw_p
zk%&qCVoBvzmHL&qFlyD<nMHLW{xv0cg8<QdP1>zXmTi0|#YZ^<wz{lcFVMc9d<2~4
zC6q+xVxLbim#)+xDaj_;R-=XM?m}`}`0Zo?o-#8ss<A3?6h&xbPps)w#|OhuUU0XP
zZ}A0k*UWAv^>4(>Q{CY5x^e-BgDTW+BLi>JJ(gGM9(_Rn5H;|pr`kI$N*jkKLGHt)
z&OEWH-43<gh%uZXAo@WpJ0!cX#dh~w)ktek{fdeXx+{tH*9aF9y=mHh2;L1NkYd`h
z;mR73wM9E7o_Z9ij<+lgnkkaw;&&7Qg}V}%iYdNP-GU-%04*UbcnzGsMVvZe<pERr
zN8oasTrI4`Ax9>jA42l@5Dwmp?<He3BTrpemfOJ!MbUzo*<zHuw>^VTj*5C_!_51i
zq_Ww6pHB^oURB+yXWCL{(xNZ8$ukEB&i#kqp?GIctRm~=JJ<8T>+FgTeROlOTu+_e
zI66>4>48w3rpt0a_e1?(TcYnnnO>0{A7@lmnB&787mv;(c5sx}P%4-0TScvrJcAgf
zgzEY=L#A3`I$Y71w3DKp01@ij)!knSIj%Cox`QP_9DM5Pb=4h(%2kd}WXn}dl@_{-
zW7$4@@iy@LS#a8*%HNMcNaeou<s{2t#v5UQu7^?%q%|~^=%URU^+HQHiX;m@3OG_=
z_E*H{`wO^1q3k0!{0;S5Bj0(KcwgIaLJjPZwbUKl{TnH?L>;<0qEZUVUVOGEVmq!9
zt`Ly+KubZxcZ&?2P-#5j&PjTCEG2!JI3lXMEDqgAuvCU)QC)`UIj$%=-@0u&Gp6N@
zsIcFpntlcG;kTwNx)zQ>@E-~Uo)M^`)QrvSl{8{BZo(Z0%O1G2vadcy7Ce~?Oq29K
zhic4NJTg{QWRNdc5sqd2eETArPi68vlCWRb)H2G6%-T8}Zr8yXVkUxswg6=<fUr@J
z$@{#IPapi{%9{c81TIh+jB1MlgdwWfR{`F2OfSWIJmu1>i`bCq9}BNZuY2I{uF*$z
zf|TGuKA2+Ey>&u~O=4<r%DDS4$x#XmiyEw2!d30=+)Qk0M7bit<0f+m=uDDBij<`G
zQO=hNJeIiL9w7smxOr_emZ~TjZ~LQKaFiueuT<?aEVC<DJi5;`rrZ6;>XZpAl~OkW
z?GM-_62d+Tp-A~4Dq;pa9={*Q@{+TbQoo5gzZGV%H7;&{(>T}sGKfjhR!QCd^JeVD
zNn)c=PR{;LDICu1rSQz9Q_jg-^Goo9LM$vI{#f<D&N2O|Iw^zuTvZc`-7|hab{dr?
zML;(^O3(Zc$!L%s<`5}ww-`5KVw1D|zFn~*R?Fp`ey<AaAbqkmfp0XdhzcfjTGw9h
z{V&o&I}JzWnsGEE!RI|PDI1HQj$T7I0@-0=eORobekb``jb__+kP0x<^vW`$z4-s=
zS2ByB8o-O;?1?kn{#w%mB|pP+eT=8M{?!2ubLt(mx)CF)ymmvu3w^>5-qXW27LOy5
z)yZb<jMFR#e)RHZhzCJs@~0CMAm1f5r5oCv-6<$BNW?vPV+Fcu-v?I%^i;MF#1TV^
zi?L?=^nTJt)a3n!w&qU~2Q*C8KBDV*DoEm6VjcL~tl!q-?sXTqGj65SEYT*b29KV$
z2CAawbS;XvBdfAHVU(u3s^Hs>Gf26UKfO5Q^gnbDMR)|>g5^5gbi$oFGvq2?0{|>^
zBYD~nL-ts+$I(TA(gO*^-d&)EP_Gp>Hyu3j$lOtTL7Fy7zeweo@Yb<98WT6(ZMuEp
zzeRcp;^Ya)hB#k>mHP==J&S~jQCUEi(@fimgt2%vI0OK8&Re=w*n!zY%oL22L9oZL
zvG208Fjo$br@^3(RC<frM@~0c3f@i07R@fC7%P=^psRLaIg48Hf+uBNcpDkDsP`6f
z_@{_qPlECwXHeH^YTXle%Z-~aR^qvvim^jlc-s6iNPA*fshYooAycsD+C=$HM7f|2
zmU+YI$vjX6(h4J7+Zy$`zo<zY0Rle@{PNvV11qrZFN}sjOabU2V+VOQ4fb2d8i{|4
zDINMse-}a&M3?(1v_IkL>9l}wE-L`3_Kba$Is~lvwg-;6qdXN|AV-sRDvWS6Ao%`l
zd1o0kWj=1S3!zWY%Jim@4!Vz8JVXd{I4jiZ)p%wqsDJ+<Nc#Dj{CQB7zc8Tqc_eZj
zaf!e-iw&XScd9nMB)PnB2w0toOoSFVxm;BS{&3}hPyf@*_qj(Wpf<OJ!HQJsYnagR
z3zM=l63xlsrL$7r#Bb-^SOR6U-Y4Y}x&&ZU^8@5kbZ<(Px<dNSp_OUZ^X*GI3sc1x
z>B6OnN;!p!ZmnZI^2IF!SE&{ope`~CvBtOxb4=N_o)k(94;#m;fY+F<aa~}IEQ$NW
z^6YUyr}G5B6xvk(S+zoIKp@J${ZF)dHSWgcH62HGA}9W|zO)^kj0#f;x76_(#lAz&
zh>Rc9>FgP0Oa2ln-WX1vTtx6u1$6SJ6Y!}>d>rk_P)t;bgcQ2Ry$uUbkL?eHjeaDe
zzJBhvHoa8O4`xj97AxLM@(+@Y<8ZRou0hvG(ro%uJmjfJ*Ri#1hHG<m{JEoz@gXPi
zL%8-&l6>CxjaRjhSg?(D5v+9co5I~G+!A(lq3weFNlV3qeDdPfd9p1mFDUgL0Kg8`
z>;CfRk?jz%(2}@6ZaDp~Z~a#>eM!zMj~`99ai$IdQ&pxt=7A>9c!HkVLp0qLSHnEw
z+agsc$NvUYt_1SG(%Y<^=w_zcP$Ry?R{TRrT=80FbR(f{hEP+JXj2>3D`iK5D^x~s
z<TGmOp7_LnIfB8@wX%oJY#E@?UO-h8zr+Kl6sfkwK60r)84+Vr>9RI;G=u#kLSJAA
z94!!f#sD4o$4*c70oLPGc24itx6jWl2XqFo0Wr<@;?gwwGtkKb_}vfD7(`jV*7d_Z
zl>rp3!sq|l+pcdPtl&aalD$=H`$OFTINN;V7v4XieJSruht|0PYe%mg%8t!U8DCs8
zn*Sv{CJhLdL5|F&EibI!LF4lW4nG6W`;1%<qSMJi@-})1rPfxPedUqU77Sg%6i^ao
z_IVEnUeJ(@OA%~<3a_5ASuSS2<O##ZTa7uC!w($*{2G7=b1^GS?y!)NG>R@*8r~51
z+?B%(J2Dw$y$&BIKu|EtS+u3Ja{|mjF5ebg1*18&GX>u>AzI0T%rCJ{DI<nbKl-)2
zDlNFXU`!lwliWA2tK3_i52b)(wH&fe$s6Av4E^vIQ>1Irr|Tq(#56Jm$PbMgqnJCH
z%+;et$oxG8gEfa<-8ThOrVtB&)kf+Zq`p>A`|#Ty6^DU24EQdbyNtZ&?0h5)2+d{f
zS)%o@LriwM8K&Kz-6z2|lMfd=5lRS05{!81?HO=A=53*Wp~~h9y?h$zNv!I;EY%0c
zq>Dg3R$b=t+*o}-3xRUF$*18lHVn;^;_m>cAL23h`~gvP#bgRI?|~<kbQI0a=KKq~
z>-bcV*@XDyW3)r~GbjsOvEdtDK>H|v8|v-=J*Espcc(5&Py<5IC%f{9tB!RO-0YKF
zqex4Ax%9rBY@2h``AG>yCqKctFw7#ewTLxGf_9(t0Pm#ryi7B?<rtXbm+3J5Z|AP4
zY4*`nq()aSGVb83w@0Bi*V?eCl>zCC<$`Gq2o|%$2$Mzkx&+Z9Kcdp~hz7;3#bpoT
zNE2OF2wm37vm1Ev;#`r$Dv<_>GIOnbQl`n<L2EU4OaO75lLs~hOa1=2_NPaV@0RP|
zO#1!g26>fiW#m}BsA@4mkiK3R0pm*}mA)~rud{nGaC66TA%i{^DwuU4i@x2uKTbct
z$&gZuo|#9S8nfny%ZRTHxAKRJcUn=iHXrw-i}egpS#P|Dp#kXnJXu`dRCeO<#JZ{N
z`qY_JQx=Z)rN-A@d}szdOHB4r-TQL9-=8#eFA-A598gLdEIB%?;*vW!wj~@f0GHQ4
z_n{#K(j7?EXKRRYHs|H0!B+WF`jstZsYYn^9ugGgJURf3yrvq<Lp-bVbR`i4JQJN@
zSEO%tZHO6hdO)H9D%~i#Y&YtZ=u?|Q)5Z=5ALzHpYfDBKUIGN!sFC+0L!ij7FP#!v
z4nXPbdUGV*ir@Y^)OZ7jB;bi)aA*C}DtyK}stp^^5Mp>Cj^O|(NVnm<$Iub#L%C5r
z0CxbqlIZ-Nuy!#&)ptJ>e|};Fr2-sgNBko0{p3b|7%{7CKItqzd!m0>UUIwEmS5?T
zto{@ALy!4!DV{Km`588i4KsPB%ij)S{iuyzDP;M`L^btmWcje$y!69*@BgRN@?w@A
ztH!M5<u|fz$E)tecXYSB{u5vQbt6mHe#R_YmJQh?6P=bO;CXW!Wa;hQM+-2~m>F%4
zPU|q1cDsf&hhN3R_otph_f&*_XwtLHARrYOEpwZscGCKK4Zzjos~Tf-ej+O20;Y<*
zR3{)p2kL#fYR}Dl*i_jgi`3dc!xDD28t{YSPu=tYPp!u+m~{lJmmJvTf6DdI{wfEv
z%EG4ntDHYglGT5rUg)r^zsiNeu7Z9%hne)y=5GbD>ithSJuTE@t4bC<yLIoc4Xd0W
zC|w>CBG;5BcacgKL$m1BWg!;BsI2Xb1}&xMK?ajj_7`31^>US846sh}rL5H|6%d_P
z-zJYN<)%TU)#%pycnniOK0b98Er`4`52fcv!bZQEj&4@RQdC9@M0N{JeP}|?C(7j^
zT<#31Lym~}rm(*7P-$ePU`KN<*I!_ZYCBl%)lw#<eBsqlmO8I*6Xhv!@M5A++unIF
z-Gb(lul+yKPIHA?Diu~M1v)lDZt6}?NKm{c9Uqe}+-jX}H3PMqX4fZ~jekF2nND4M
zdlVZ>jn<=7&zhN@BPH8jWvox(lUiQyP|uHKNv_<-f4%B;N6+Ms-J2c6;RcS<I>8Ib
z40Sw7*!^XC!2SjTJpw&PMe%g8YF|>M++P$k&ywg;n76Kz>O#mH!>6K`Wm*)MJ=3oC
z=>;%9GJI!hInKTkHMxqh)i<h*{{`A``!)O3YadnXm*ZfcB-5KmpyiA%t-miy^d2uz
zZe!hEtR7O#J6?<)|7rWz?LTerYuexTr&~zvezm=~mD%nzzpwdE+k4vW13qdeH^?X4
zrgpDiZ6n$@LVN54jJ{mX{u1MKy*71sKiE!fSzC?6Zr4$CK$aj<*9KNjBJ+Z@#04Qx
z&cDd_-^5Kk>r4lAx<;7ATF83;adc=ItJ--w*(rW)dj!Hi`(&GN)34`+Iye&qzgC4g
zO+T}bOr7;Ye!O4ZY&(}pX4-(4^;Q>iLKfD*2Th0U&)KHjv~+rZ24$lXw?j;&UT3Q_
zf0!WFZHf9wZjmg3fI&)LC#Ix%xF$5=?Deg|#-XU)jbI!R>u`kK)G#-lMQK4<>47bG
z`2fAfhCrBm834u9LhF})8aLagq7`9KhTHD;#K2|5q^X%#7j(lyZn7E$!#>>Q7~|P-
zIzwQR7e2>3_=Bi#wDSR;uX>JMe48Iw7bqD#&C%qKB<ivExl0LxB4{aJS{Gb5gbz*c
zRlwL<nidG8B~fK{OD-JmzS@QE(_1tXIatQt2vREb!;b?Cbj4JxHxTRqp|Yg=>iQ?A
zM>+PV_>%7A+c$dhgQ6f{nHJ<vl5atD1fI7*Nj@A976~As@kbikCTLS(d>FkY$<`iZ
zRM_iQZ&Fk@gLH))<)eE&y4&00%J8PEdYCoJ+Ub|1f9b&Rhn}7bid}(pPzaC{ZxKfW
zWbFZs`Wo`e)2iZ|Qd3VT#zaoGeP$7`)aLZ#LS}qzpU7VSu<pX*FmA@f4v5kKa`PnS
zZP$1Jx+5E~&lol*BYx73LaK=PN@G+vlh^w*HrE~m{|PwW_YLUB+Q;jtkawxuzVuZC
zsY3vG$lbC2k0HFO9h?9~)29?Bnl_SwNY|=S->hlRD2Oh~$8;z)j1Nd;dWFESadToU
z*AY+fkq$PxGotA`c^_ko2{cHAoR_~k{5T1{7PF)db0D6nX~-^<VKwSYKe&i4b?v@#
zyH8soVr0+Zzy&)=(092%Gx#vhYt|q>r<1LIr9*@xec%ZPYC<m(KQ6H$@hkUy*D*<o
zB{pHLG&O;F)sa+xUv_F#q~bXW4T;NTHr4&dcvdM!M=w`5ipumR`}q5qa(^aPqCz;d
z-L?4NRgd*ztv$%&pm#oCPUU1^N}V9uk~ahD$5E(Hx3X|Dw*}_d?7tDf5e8~3&=uK9
z{~pK-yhO$W2Tc-M8yZ}THxeb1;c`hxY^O9=XriJ_-iv0^553{2rm=HAPscSLBa-9A
zH)NYidPt)#00N43O+;J!t~3N{f!Od=p#5@;T9v}i!_00T^&+Ek0<0m+o_$NS=#G}n
zod<v+oF@gf?I>6@6c0$>$rH{eJ*qCzUFnj3$~Ct@3A|iHj;-Tlt0%nt@+Zzdx0-3l
zKx+e|5p}_NS!*Q#HCCfYt|^~oc{g(6^29fU3Ot?m3*KTzv%wxlWR=J&#$lX2G;~kT
zg={b}%Ic&vD~uiDIl)PK_&+U<tE+_1v%mg5-~yW7rF@a3_XV45Hvc^!yL+4X`kw05
z23WwABv5CRE1|9XG{k*H!asyXKFO$Y7`EwMY!1+E<!MRvwV5@|vt-S2se0zJbr)!E
zvQOh@c-X4&m3%LVspF9|MiobkE6}wdp<~pTBEq*wF2GDA7|DgD_sP&KHG7e$G<UG!
zr@+N-bP??LedeVYUdjh^9$3K2PcWWP<-p0c=9aKF6I-+*%_~Zn&d|;EYMsZ&$n__V
z=EQ<qKnV)1$G*^P1U+!J#LfV5s=Acfoo?yJ7HnrtD}+5BTj{*fkNr0+`FkZ_VZF>i
z9CxJ-S=a`tgQ-?O&&r0cP`Hfii4v@U2s*C|=m)NV;JqV)20`{T7$V07M>rYM>5B2G
zGa~ROgizNNeXlSg2w_IcT~J&YX>Ye!R*8MwA~I;Pl@4jvcN^XD_Bv_(LkROAM&a=E
z96i=ayhN|H|4bB459x#4;>NasOcIV*kuF=fYWFVZ^WYb(UnaqOibu)qI>>3WcJM!1
zf+{s}llOME2pt*HNrc=onU@Wj;QFPjv7FSzV7o(VZ@Op!^zO#Td~s1;Lfz@dM6(yi
zt_c>9%4%w4Ry{-yrtna|tSxgYY94af?6XXJNk@4XbMR3-#iJ=6>fZA$^D<JkT_x@0
zON$`T;TVrUfG&B0jm;TV9&*G<mDLEGTv0>h5+S3%%bHjdI2EL{$yK&DuLo#`9Td)&
zQB(1JU>Fg;D_Jp<*ahQ0M9*R>##Ib)P`(<9tekUwPzL**JpZ<B)W(-2G(Mn)hPZ(A
zqj1Q`Z8d#7I-k>UV*wYvrK|dOetxVe-zRe6>v|{=;*!eD#6ls*<c>@g;n7^#{mjlw
zD9G#Y<aTrD0U7G4SqPWLps+hx!7P8oPtE3ujb^U#jusWIEdP9vfA-d2Pm*HDlD34`
zo{1)%NxmErZ)xP3Uo55=EWbD51<7UB!n~aMTc6I+x|yQ4DB<O}zuE31$6QzsF?EE#
zyb6Gje0Dv4WkX1|ndyC`U|(4wgi}SoNE9({bpt*PX=3FU2xF?X|68{YDcOV4SiCQ{
z+H`6QtT$~71PN*$M9sj+z9H4lFPYC}+X$tC`0bw$Vbvzkv-{YCav7fB+=HrY(^m~w
zA{QjF9Wci&ookwg4PPj04#O?gR~@2Av&kC38KRILWaT87^#Wz1;hXsV>O{U^k~YJa
zc^>kf8ure+t<o9B0o-a79vi1WgT3GA<MGoM!Mi{L#dN89ph2_%Pu#=<l9bs=V2pda
zIgxb^O}B?b4FaCrJaI6<Mb9%j8Q1MAeQtB`=tSpasB}geA8+<c-rKZ&KiDyGkU*Wb
z!OZdwQBKNVsgyjF&}p@8&Ea@DhedZjK-aT`Q{bkZ8yUQ0tFJwfoA7v(T(%YPv@3Ap
zB%GN(CX_G94g@TeaeMlnRF)Od(7-xzwU1zx%?g@Nht``dS^)JAe#kn^1M(1sCvsCk
zRfnL0IXu(?6rQ`QZmx7K+6wsNT7Ctd?^G-<iznWkLIh9CoGd3Rs1_|8Y(Oeb0{bV-
zD@Ho-K0g$iZy%GPSQQ054Xj1D8M(~fbkVwv1(e-5g99(yc32U8Av?dZoJGxg;LyHn
z+xX_bgsQ`YsN|i%GqmR^FIpA4i3AwbeF;Rn1bedCGZ4GS#7aQCP97X1LDOGhT8{B}
zNq+pJ0p_3Tz5tZvoz+i5DA*!LqO<^HgAf<q`L0`J&Px3nAb%*iA9;qLMRx+>?MJ-{
z0qz6GGsf*KHIp9sr2S2x(NS*Z(4*QJD6@q61R5Z4=R6K)Lpd~NP)0y@LJTn`5S@df
zV8T6W0NcXxJJ5MN@a@CA6!3L<cXK3wb;g5ddZOSnVf~=U+*9NJ1%_K~2hn{ci`*eo
z<Ke*Q42N6U=WJ$mvAhG0JBcLou;4#j{><5c8s$$s($EwV50z$)waGvMqu;_3vwE+%
zmRV*vvQn;Gu+Sd~WVGVbYgX~S%pmkg;f9U`MFLC6gS;f~A=>BZeOMZbFN4miFGVBg
zXIt<bjJ*xyq8a0qu{+~~nUPoHv07Le59ESQ`r0e70}-tlZpV*SLUy=}rZ%V3MiAZY
zH)Ap8I2-1hBVhY>`_ZURdlj;d^?+@LI{AS564`=d*V5wFOkbi!z^wTHkY#%3kGI{s
z`l&VKhRUtBo#><5P3fb4y(mZ{<Bj~9G_ANKE}U%xtnt^2^ix>VNPfMjpZeE}Mx5-#
zyZxzx>re;~*bG?V4J_7=!9dKH)`j2=>L~@)t5}0g9tf!U^3837)bBS(sWjyX!iOo7
z4mBR3&AtyH4G~R;wzg>qots?QCn?Y9hstxu)#w)ZGr$M$OwH}`j@obnwyyA#I7?IJ
za|7hdk&@3C-D?1MfDxUrbRzp5O+Ld{4D}<Uy}u(-IE#J%4Phnmr%gV@`?#bnNgCx=
zrr!lgSfJwZ@Nq}mvgzZHwlgUf5)n_00n^0AjuG^IMC_H%C!;8NxHS|gq|yT}TsG%#
z>|GRnsnaEkS<1sD>*sjnk{th?xD6Qes>`|u_zV2!XaFBMVUUv1=kT?qaeTShnliph
zJzV(&nF5)AJ`Fu3A(U9$BrHv;sHmL_P5=RT07_U}_It39<R9D6v->+D=0bdgD*3cp
zqAq^oO>JA`oWW2;ZA+~*n<8nM6)`47>H`UdDAZ^jte88>9)w*&P{dlQ?t%=}(gQ@)
z`F^&C>3UsoSoGRoXeoWNl`rJc1TIE3c!|@e4>@A2aOb`CW`qz{6N#9HY9WsUxT7kS
z+ok5~wS4R9Gx-$#x)!1K^zK_*><N~u=HJ>fpE}73XQEn&<M(~S9d#I*{5}CB^$A6L
zM2NCaT6Ii&RAOVxA1qqU<DBYPJ5ao7r8D7nsOZZFE==0L_)KB87N>T}1DfktE1zaI
zPnY!`H&r@SD%`Bper*ChY=v=iZo4@lX>kqWdX60+Z_gEelA$3Qynq6MdNr<yJyhM8
z1sN#EmB^FeknPt?&gmYFPL^j!_eFmHL3(0|m}o(-Vu5({Ra+}q1^Po4fjWd+fwOg1
zazZb1Y<oWP21CP07OuhhI+h)wF3%@9GoLPcEJ6>;(W!r1xEKc<HzhR5<tom|Q#_{W
z`#b!RlqW5b4vH!3*1))wDY<fJlpsPFp@+5T)G44S8vG68lre)5on?Dmg9udgZ!{_p
zJ<D|w9iAh{V#=K<N#kLfzzBc|?MgU7*(~Zt7}yV4N@*o$A>Rxfd@(NC+mi}rwy5tF
zOv97|4N^jmQ*Vnw-wXPsz1Oq6FC^CFX6Ix4BQr>M0Fe;l8xSMev7U)Ez#q~!L-~em
zGwmUf2l6AL6tqOn2#&oUL9~4V55Qe^*zi;n<7-h<y}Qz)i=y~b4cQz??Wu7o#NEU4
zU1v1@F|XXesTyp~_h4V6<#zRWzp-<1r`yznTsFOG-|Xw;cE`-CV|Sl2dRP#N^g*6D
z2w_E$9KRvL(-9qRnD<`0Dw>>i$aEPQkJ?!1k}GyiJf#WhjgWtFBE2)7X`H@kAvCPa
zTJ?C&yh0q~EPOvqwj+~)a(wJQVq3KgD>Wo@Oau6x-9blwBk>-Faa>0>v8<B1qTy`f
z9|Jj$NpWEn|HPRTgMBskD^vEl=~NCCZLLVDH9agcP~Dz7$7Ps`9@X<ndzw9oYzvUg
zKvA*HLiG-}Wth@rEMd<&e;z9WIc@U#o*kXJsTiTex;Q?DsSUAwwdjU;9xIZ$jJqp7
zQdvTt`EUH0Y|dA_2$eL+)+x2U$q_0pic|@br+@^r3X^1U3fht>Q<h;Pwrhb+Mw<AQ
zv?){W*?tx(K95Z9giKCsOH~U`rW_!!Em+}Jt+2?%iqBWDg6C1K&_ks9XJ=H*ibr*{
z^%)aAn{IJwF)C^DpTYBmsF(ZZGtU<2u|MG%RxNc}(J3E~t?MGOfIbN9AqQ>+-5;$x
zsl&a7@bnTgs}hWBTpMKlE48>asmKDO>yTVHW)#jPR{pTx_Z{g(r{4j_5&~7LeS@9!
z`QfyWsKw68%I)F(bnhbz`GO<`iN0f3r#;28tUa-m7e8p}0mvf&RyN2Q<_@B_(Qgz^
zyHM?)uo`xPe3W+=g@dv>2hA)A!-{x$KRW!pKb-#Q@%FjzEw~WPLD%+HO4L6*H3w$P
z?ehM3KYW}%>Rdcf+~LxF->Z+pN?~#h89CcP|1e<2WsU*tyayPU90eQtC4o!h`18bA
z!zoI9+_Uj9CCB`B$zITZhn?uzAggGfKk;c39kF@?D1sB<Xgjk-@P(as`HIrHc@rk%
zi?*rI&!`a9_l)cqIrL+`@$Xf{A^_fR87$uA^T*{4=T7@*g<MfXK2?+VFO*r`Q=yhH
zkoQDU_a#5`&n}c{<?LwxhJ4|Jj5qU_o;$GWR~J&Bd>=LA1itq2%tU7)?bJ35JW*~w
zT^!SD<+bK$3$`*tTn>UxA9>fmF!baSvk|Cc-E*li=E$d#+4fap@Rq%gT9Z)rSJdz%
zfCUe|WY^IKC*dTLS`lBwFCiHb5!V(gAVM-b$i{mA<C+~oO!)G?&YGFCpB)%LDR#l(
zgIc-cXgV9feZIKL(CsYBpG2>{p2m9fv;Rji<E4k}+7*PKCd#>4xm)4l+d5;1VJbKC
z_C;=Y(zf$~yr0|{;MdU2FQEDUoz<qev&pCp!bS&q`SuCK1p<p6@sDQ0YCx@Bj96hD
zX-%ScJZdoK#AM`>%sY7{Kaz;jU0u6C1kEk^G~D4SYgt{Jt5C-9>5|A}s|$A$NX=2s
zs$*PUO#L>&3wr$!o1Yw8K$X2d|5F;469vFBBY%SCGXE6qY@^lP*Y775t7Fv{q&Dpy
zX7&sXu~xjOr3k2qBmPc5@{98k3C;9%uRb%qhC|sM=Y}Qf@aq}YbnNA(&ImLue5o!O
z#2XyhQWq$Rn;d$l$45&2?&F2_8s?NYEn|{6px<c6b#1tg?T_p=q-&jiMl9`3&HlF4
zAZbRZjPccWsqIhBAnChRsEjzhI+t}py2z*P0I8)Xv3sM<YOs6_Y^M1j>HSj+9;<>{
zl{L4up$gp$lmV&;`-seAW|#`IjT0~<tL0UGm<kN#0411>`tb1}<%~5S`yIL*_m}i9
z@Eq<}f++ukBKc1J9<umN5UM=3IJ@gCZ_is-L~%=OCe^!9DO>Q?mH-gqEr^*R5bE`J
zmEm#suVCE7Ll<Qm)k_eSy0Zpt#^Am&bMtxydy`+E(*m|4x+^V$A>x!WUgPR$xf&cj
z>wcZBJxGf{npj$!#5KkcL}#1!EA9JP`bD$ra$o@jM7?x2IfSaOQv!nF4=mk)zKYc`
z%NR=7S_eO615KCv7T|kJagV*`(O>{i?nY}W?|*}(;ZGZdRQNvAN@1cJ^8Sq4I-5%f
z4j$&9dgFz7$fwcDA@@}B91Ffj@TYt9ZNdVZB>}$=K%-7Q<LiPeV2j?8w^Q;K%re9K
z69^y&X*3w2Eb?(+&?O89Fy6(3OA#s)vP&Mw-;%9(-&2n4J9~!o(@goou)EK{NJVQ#
z#G_fH)Z7WtA}jTbNU4kC%n6jxhBqDfQGAS73^9QRe~2`nrksV?h3%b5X}WQ|gbeV{
zyeQ38+ooBQ;)9h6V<4v;h)YeZF4;zj%5IF7-%xH^j4^^j&=h;cDk6MJwXYUNfGMB8
z8`7x|A!iG%OzNfQzx=N2oRMsR%Npc=Mgag^3D>IKH#vRwJ8+e{{34s4<Qc`y$Wo~z
z{vrb~<_p0M$<jV=gD5%HyQ!-#K9GXzj+GF3jR9eqAdvSK8b}cw&Ho=>_Gw5L`n_v-
zvpe|H-PX4HKVnwnW>`*X1@{7pzi$ioO!ush+~-vroZ|PE&Gwb*SQkewc;vIxC@_uI
z8#?b6s-R340$e*n$3;nvL~0^yivOJ+h_=Ny=uQCRBaB(Z%JOrcf;_Yj{}QVY`Zx+Y
z7uMV_cR#sj|BXQk{I!@6l6I%s@yE!O91*JhD8FlPse*=zQmc6wHFI{=$y?@cn7o*T
zC|=?DszFx0ZA;cH(6KGx?<oN314*ID2!8<-Y%m_TrDsT6*af-B{nH3%uE!?;wDp{J
z^L|E__zUC-M*)57dWQQ9YM)UlL!i-|rHZ3>kqR<MWC(yaqSPTxh#GbefC!;AhuSQJ
zv+PLkfx~Z=mSb4t*6I$I^C}Sdt7tkWs5DIu4&~`QKC>Z|RP63g`DOLaTZ)DZ35pFw
zUG!gy7zz%=Fry^Z{t)0Pf`WLslw|NHSSl$fViu7jQAqFw-wr$@2K__9Bt;mZhF=FK
z$B~e>0kKCpP=^#Y=^{dgK{U785hbnq*Yp62&wnLpR$gn??~RyjI`PTT7@RGVs}32l
zdnqjSZq?8Rx4CIz63t|U*(fZT_LG>Xx)$d|d8I_jl_p?wP5_64dl(&DyAR9-QcW<_
zy~~JoMn&pTaoEdB`G_bSBC47!?qhpERjAmB5VAU=W{WqO!C)lE*n^~U{{e#~t-1v^
z9|U3S0hP;T^j<Am=vZ9@D>}`VSc0-h<VK9!Oc_}i6KjQulj>rS(-Gtq8;ezifkW1>
ze|6esIy2oF5nFkteLUSV@9;~jIBQ~JCs#Inowar98}3foHQf8466{27M`d6##ClkM
zW79p;Z)_6lfu$nc3AH)gI40U5BsVAjw+QDqd5>4i?hUnPHz=r(BhqVs&6jiAx|G$n
z!QZN^=7xNwn&=F!SA@^6W_~VUAc!Ra5Jnv)p41xh<JS&B>rjDvo98dJ@iI^3ZEt_;
zQc)51^WCrdlV4sK1^sk@M@QQc=EvPfhWGO-_x`&P{wlUQlMl=>1663GnKriZfgHy(
zAd|~%AeWVUm^(3Tmh7EP(rPqTziVrmubY$;?Dmuh=ot8|ew+gfDZ~sG`eHh3`d!_n
zdw9bWzU3WZ#@t{<!2V|gH0x9b&T!25%B7H#AM?zssV~p$(eNh2)R_aNR+yu62slEf
z;{dGqe7j2n+l6o;v6>&%cU#(`-zGdkd7N!#vq?EIf_(a76;paKge}I%VSz(0k(`tF
zo+QAT?G*Rk8t)t@DRj|>H9*-wIh|Rb!In!2Tj-Cl;+3E+<(+G)alGGX5X_(yc&$5!
z9)GnN0AHue8AqH^d5wU{88t-yNIv%^oY9b^lf<5YdehIPwq!YT>Plqf*s*xx^zb>h
z#61S~UBqEE^Q(V~mr>(LApnrY5tnQt@yP86zsr4MX<^pgSEBrG7FWZttDeD>JXy+7
zw)n)tp;W{wH4JKe$2Cck#nw~YfKG3t?!xjU%^>x5S@&&Fu@_^eh@-pA=7Lu6$G|ZN
z+pfY2oqmEQ7tV_7t+^5W`f5;Qk2#SAoddS$oG9)gri4;tCB4nAKu?0sbfC%+j#VLC
zhA56P&1mWMZB8LvsA6-I?^3{T@%?*$E$N2zJg-FN7h#Fw{1)G3L9FNazr~sY_<zNB
zAsmzs3so>K3IQS;gEg+_e+Ua={y&7}NnZiM^QSo<+zr8#|AxSQodH~9<N#Gnj^KA5
zF8NsFDZ1>t7>ZLL?NQr?KJfbJmM}&g_wV5D2$a)t1LvdZt25Mbvf(}S__<9%7Uat%
ztJm0tOYt}%^c_Ls<E8SkD#h%lBI-}V)O+JbNI6wmw*`DM*#oC5mxsM1)4_gcR^xs<
z$OEyuba0NycZ4=lu6K&-0`6!jl;2ILzyW`!4b;~rcJtkuwnBWOnVNbr5!x*BGa1CI
zMhq0;dLT+5)auhdH&6};#a8@rSrJogQZBlQdj!<Org1WFiq2SyF7e!j*uwZ=W=e1e
z?4<w%q^GbbXiNqX;F6wS>i36`gjmDiPnYSIa660T&URAH#D233LyAkHv9V@#?sS1J
zDYTv7$4D?5ZZ}sf$qPld9IZ_Fz$XgBl(tQ^w73GcdqQUh<(clfyTUhQ-gqs@5U#vN
zl5tjkB0ivYMYzmUG&zGe(p@Oz{wVjBfT}o39;O83+QouYZDfN4y_AOsX9O{t@b(oB
zcu<ikd{1vWjRDf)D*RlHP)n7_15ma=8d2bg3ks<(0x_^5PU(G|T2>i)3Nj%H*RX%z
zW3nZrIXxFwr0c7I(Mp9$hu7ONcXB{Q!C>m5{8%OOlQ=Sv&O-X+iQTCeTta}OxDs!F
zwCN6EysY4=MqLD@30p=7kV?1s+W~hruslp;Li3X7Fn45G+P(}7jSdr90E?rZ00bA7
z)12u27`>H|=z3bh|11>TuW6O#_WtJ=y56TH479XhPd5A#qmY9Cix^FWp8d6nm+47h
z9Xl=uSu@rlDZM_;39=To0$ckpsT(UvM?SI*w6^4||4r)RV}6sm28$r;|B^amrQf8E
zcZ{^PTaTcl1me9dLgC>w<3GUQ`3o2xPcd~WA!_HFS$j;0?pXNp>5unV9zo=cA^g@A
zSUJEBS(Lm-L2nPD8uM2tLp)*uLV$Mfgx8CXMOb%3W%E!EY}B`mDWqJS*%a7N+j+`t
zS;^E6skpx%zJEkkZX@3Pm|dLLz6#&(;{0TB>%6fBUam*^zBhQAlrRhJorh{bBNq~!
zEWw;)qdD%%k-;G_C6(~z3{RHEFpuKQGk^>(JfLD@-36Zuqyalq3H{rf7Mb#s&JERp
zhlT$PqPM^gP+pLl$%ROxq#J&ogQ`Yu72#4wt0A{cH>K+?P;%eSDP8){Hm1ja`uF3*
z_({;QB;qFx{2>z}rzLsHBcmU|K%CHQGcseBQj4EU;^;jK(u+8lzE%C08BR*hn>2K`
z3A+95N{1Ih<k4C9R}sV(lc0Bb`_A_GNven89gTn!a-yiO7gC}Nu%y=inW7f^!~v4P
z7j^0&yOnmiCsKu}Na=#&PfEI1p5|WCcQ(_%{^NA%2+o-OOY&t&w^x3<eca|JAGlEB
zoG#{lQE;y$c>+``PSmAaUCczkmwUhB8N3|7uNKS0Fqa|@#(WGbKU%!LzFECD{2@np
zcPhOyYt%cBH*HT>dz{?&NqQr&7;BUu*0Lo+Z8)2mI<zjfX4n=yTXQ4bxXcQK4>ox|
zT3uu+9+%zhr4rOPhPRe{J=kQg*IA9X?JtheCYo)pm#4F9TYcEveC8W!3Oiez^g-R+
z2+$m`G>p&LyE0ol5H&EHUv{&%J(Cx;?6SA9+&mj+bMrTDBRabpFVSTfz9ibZo($V_
zNci_2{kUoE3{*FZ2enR3sjh7u?#&eMqfp}8@{MXyY0y0i8e?UTFW)gvlPDEt4c-%9
zaUs&RT+iC>JFT!5=YJpue<Iq@y~f{EQC+o8jU@Ax&M#1ANX-aPK5LOq4?Gn=LpmJa
zu}9RxA!1bmpA?A*HXHB(<#Wmi;Hht@LW@-09J>y6CL9j8fJSTWM}@ipLOTQyC6<E&
z6)53L#*_z<-_irPlmpwFv~x~75j+BnoPJrO(*-!aaL64TVNlWRQK<yRD9GVkZR49P
zl&OkftRbX4PMAC?PeA|$HBpSf7(O8wQ4+IrTq?8p+1mId_W71sJy`oB#sb;%B5Zf&
z#@~pOu7Um_nK?pxpj<U6sh7hKs-BLAKViSawb-c_1x5G;0BKzgpeHI)L$Od|jj^n6
z$pc}x3Bi#YceEA<sm?v!j%_RkVgBRGX#&3#h8}o+ltQQNcR_OeMKS061KBFP(aRE>
zs}fl(=lL8LJ=sI=9kPZPNEciYSel>LV-ngc=Mz}A*+YWuzhayb4^OUr653i#*6R}5
z`to|iBHF=1`&0ka>=D^)U5FByEpPfe!(%AX>*qVd*{%sq(c+)=o05PFHB7l7>FO1z
zR~tddlK|pIrLuDVxSf&9zC7y3i5hXipk8apc0$Y>B#k@@<}7{rh#!~Qx(L2l+uoJY
zSL%6&v)<^;g!e0gKNvu*mCbxKvV}WF0tG%K3njOaab$pAt9`ee54~+=5uCL5Mtzkn
z!Dfj0p>O6%G@o1DbW?O5@4gM=!b_G_2$=2smvjVipV2y&?k3UjAk3&U<XfF7mp>1w
zPBn$|Ohih2)kCHwV6}8b{Nt&=>~h0#v;LQFe+Te7G84=s2*Awy9N@8H<dWQNJPZ)2
zf88(}t>_o@^bh{`m}Ruuj^v!Rveu58RpmFu9jmq5=IfQ^FUq6|^WT{>s@LJ*wNHH$
z^j17|&6qYkbrfcVI<=aqRvg@1yN))*7%iT2nHMHkkT>2$zdvLLU9;<&^AqknGhRkI
zC*3d+PuVZ9u=Q?-UA0y)C$OzEUisP=U3S?oZ=PJcU9~ittXExhu8vjvzh@N^-8ErR
zz20E`I-J3O4)^t9n*6hE{q=(NvXi^!YrjtyNOs*md#}sfJ4LqlI|jAbGX)^T>F3V<
z`tG|&9~1EtRrlM=ZRW%L`^d|uF7}gk^sR8(Atx7;>V(5DqProgp*-f%#PP{vfWVB*
z4&^jt%LFG77vS$d1&H@t)TD%PU?PB9*f(oA4shs|MWf6JsUIftgkHc0ekXc$bT9TV
z6waURcu-WP&D7aRMYR{`9k{{8)T$BmSvRuntXoI2#`GJ8bQB!J;(1tfuf1tQ*ZP(A
z)l5*P2Sd8dd7iLdgbf8@ECOZ%rB>64m(5oj>MJj}B4bBo7tO1OS}?AR22_&b96yRv
z1q6PRpiTsEd$#dCC+9P9QW5Zz6Am{=G0+01jjor*(?tyHV?gzM18*|#V$dXWLKox4
z%DxRf2HEPt9|iVLA{z>%Wvh3s2hNpj4nfV8AEA*dm#-DeCYP_$n!}lzT&#z-9gGdT
z#abK+=xRN#9r245Uq;`nDiS0c`<JT~)|Dr#$$0gh+O0Wh4>8}XjuOM)V7c-eEPbz*
zYkz|!u<zA+fytupmFM%1iua}nImx!U6DXeBfhrrJdf_u}SKLO$y@OVDoYw*GH3Y;t
zqtAZqH8rs4-ziU|SldeVDKkiUasb@8LM|3M%IwXFR4e#%pF3|p#y&2<DR_M|?J;|*
z&_WE#J*3Frae?o{;~ruhdLZh-6gB2UW)xcG50_wEP-rV-#+99OO6E<v56f0PR=N);
zK_xux&5XzpaGNV9%x)b<VTb;#Vsif)E?=xY?R%M>92=QhPg`O^sr_c3n#=lly9G{u
z>~6GLH%6M7e`Ylw;Hc$tTb2@VF7}CQILjk9YO);T4o-(8ROG~XHJgMtv=c<)$VnVj
z&Z|69JeoWb`$s}R`2F1!l7cn2IM5)i^$!~ABW?!4K-_XVmCOQDOimNg(&>=irO$5@
zyP)|$kl|S%870d6d`ot@EJ^5L;>OrJiLCJ<%;Asdyq6$zU$Sc9Z=p%Fr1z`<;%vQG
z8}Uen)2EaOul^+Fh4POqx`oy;vZ_NtL?B429zmaPinZqt5P10iL2cLqYwqY@j8)CF
zCO9~c({B)5E`JCi=?#s3S-D2Zd58%5D@mD+TW@`x)hI~Pb3g5~>LRR*HcpdUAv*<&
zA^z$T6)B(7BAbMKm?#QfyTmu&R|pFT2#+#>{D8`cCx2GwhjzX!NT>_zs_CecIbj&l
zmShaE50@h1zf0Mt!7hSGLEEjSO5JwJ`>rZs1u+$5Kif^|1d0MSB45Uy0=Pn<9W=-1
zkl2s%gTwe|)qIp0<TFCNAsCE>p(H@wa=j01UiuDwO^j>79-B4rz+cVqm@zA_JinKW
zlca^3b4<nHxH)7Dc37Y|J)gY@$&wt78)=$G69d5lc^}`T_#An^j~;u;0%nkaYfxZ2
zFm!sQ0t2qQ00ul6X&3_z<E1op$X+}OQNBNPudkR127J&y{J0Wukf7OuB6BY<#OyvE
z(^)h4F-R9qQOLBscvX?q?n(kSOrj`MNXSwhvm6j_WZh9Qh#O#ym}?VCaWH?oVG=fv
z1t3$*@--bBNq2kPCm&yki@qs{a~^I?X1k2a7OnT^`xOaA1U`fya}LqL>}97=)a}^5
z46<;1P859`2IVyyHW@*1w2#)5dN<*~TjYE`v~MyINQET*O=~>_h@(qg0U3H{-2Vb`
z*QAM+*V3IiR~`^~G-uCK7Qbs0ha0GWm6DtqLJienOGYqGtL)$J6omtyyGB;eu6Go!
zAwfXj^|+>BL(U9esSUenn6ch6snuHt64Ji_`xlc{y3&+S)ei|BjHdimMbjn_S?(|J
z&`m@6(s}G4%m^FgOXwCDXafCc69nupw%rt;GLE~srw54fB=?6%L=&fe=qrbEw#MIq
zq>UNk2&%SjxkiXtvOWd9@xV-Gp=n(I`hMVin)28w6~sk5O|F_V4^v}}5SWNzR`iM5
zz?z5MVMS{fq|@R>g7m_7=v2!2v-6KE3b<f<m{oMW8tI;`FQcXAL)_3{Ux*5df$~{4
z<Nn$63A0&j8EW}2s+d?YkkJWofoe3_r~uKB+>$UUQ%^OX>sGM}O6-1TB9JH$g!VPE
zfZ$@-0_Npg0>#}=v{HlM{u%=$H%5IL38MSLzJYQb!L9unOu#6Dd%>F}|E`3MW{Sve
z1VFY21UDy*V8yfn9FW}qZw!#!vxyMg{~u51*cfNjt>M_VZL6_u+je6%*2Kxgw%M?;
z-Iz_%G*)A)!I`}8Ip@ps17`MKxbAzeHH#Ed;SZ7MC*TRrch#2LLzyVdJ(T|y+V3c9
zvlet9^4<uCH{oeU)T;!<=p811gY!uulfrkv(*1-c+EU{bc>*X+i}s&EpFTa^L97Y$
zM#e<bqc}c?v^U4?mhL@5!H%HOAfwNdC1!&aCKq|d2p9f|&XoQ3OH+fmF!?P@fVcyd
zTi8)rmMLkBeE=dfTbeUM5@5?GcvMJ*O-Z5B-3W%8Qt@xb@o;+ED205c+k?GMh@{Js
zd^wc@i)`7JR8@iQ0LofZu@n7UVsekWlbPx$b@=(|+TL$`IR;G{LplpPLM1bO|6`Nj
zb;kt%W}sbWNnkc(XUdV$#_xjM9jG!bk8}R316$rWIx}b|YWSRTk`4X~am*jwx?2Mf
zQG)nEyrGrcK6HVJ_9}6+s9b?cZYYjjq=Fx?a6-jpKj*LKTNYdcC@ext{v8AC5b6^H
z!(k;!l`yC$W%MS4k4w@tBWo1X#c%jdVLK?4!dUV7kpBR1Y|N<{*UdAa2I{EqRQ|GH
zzHoIvK`{XF*d*0J3$i3U^en<6j{(7E_juZg3|hqPtT~e>1K=j(gT67N5ZyjZl{k+f
z&7=BM{=RtM6eSg)-|ddsYl_AsajY@PsC$J^iOI^$Y2>%q)RtJ0Fs*Vj={P*Vat^gP
z)$*~eiYrs;W+W$~7@4A@lW~3*g(71{DA;7u0irRcbs%Zv?HASgF{Pq^9~2cGYr?@(
z&brO1awss506BaeR3v=!B_({FZ0XA8R97!}t%@ZtXEvS0V+2vw4E=hs!&8sGowD!*
zub?=hkW+K;jPtp=<w%Jtn_)80ia<9R@b;Zh@H%*+TRT-64>(bYo;0GhLoDGGc6i2q
z+(4ozT_ehK!FNzRFc(g{pRP-I0b^4_Sh;;gOHe+Fz2@7x38!G%CB9z0nXapH*@HGK
z^3sfPMsri_JP*sqA`G>rgnw}$*{8X1%R9E5kd%qRue%faI&qAVg(f!K^z=loE(7HO
z@gPW)D+f)T0-s#-vs_VJp1M_ZF1!Mp3ZaGyAPd)>()V&aiH<uRcDJE&lV3`m(Q?}d
zmme6D-k3D>5fJyCO=6@6QgNdo$j6&S_TX0DyWgU7V3-;a*D&%hz8jv@f(kGWWUz)a
z`8}v6L1o77DzTK7l*7SXBbLRQz5rx<MQS#q%tSu>VJP2BPvA)Y?dW2G4NYQR*Jk=h
z0yr2aB%j~dB71h%ZB~W&$W1dCN`6~gI5ZiHB>)1=q~N|BOp{oh%46n)yI!#Y)8U++
z=1k!yn_{uJ{Qw*Noak9e(@$-TUI)$=T)95Qn*Jbj8~pPW1JnTSjX#8gb1!HBOIujc
z_-c5G*;ovKraTrclGSiPx+I=_Y>(OifNi*pGn`xkF9wuL%;-S5L>})aLg`@<%HLFY
zIpJA%)yU72Q2Kcih`%LC5`QzRl$b0;NfLtdku4^5=5v=N0XSCotRfuFA@*ct5Q;j$
za7Xe{sl=CIMlM0uhx1^uBOWuuD{^LXQ`|49au@$Xqdz9d=p$+aS<?{%|LBVs<qg?f
zkBCFyBtaSTiRQ)pK*Y_EL`%l9rxKZEU~!D9gq1`h*ZK~LS%We!PVqK2f-JZD1Qmy`
z^_^<*n+Fw%l|!r{fx5%ORa`x#m7hqnv(v^r-%@6y`b^&JOevf*EjNu!wJmwLtpo=f
zv!wWpgL7#2bgxif7@b6Byo8xBj*z6kyj%1vixJgbyilim1&X%f5IcKZ^0Y-NR6RO=
zJKIBEQeY&-mwZ+OgdryODU390fS!3K^~8u7IfXs8(aOp2eiTy!J_Br3O^t!Ic>l=1
z>??4j7y}V3@5R3o6I^+r3i23K7HpSOnQh(l@V{NPEH+tFNdjP|49X;3rv&yA4wBg}
zTe?Oy8wR>NJYa6QGrhS?kl8Mm%F8sT1n?opA$?Ch;0ONV@{wImsVg*ADsHYzY|6+1
zACp45Gr)ag+lrleHklK}xMvf7KwJth<oI-ew{V-fUpcKT>F54tKs?4#s3zL3=YE$e
zS4C+JwmT(K5Dz=muU2qpsv%!}spa_-zC-Qu(5!(}iRxucMC1W0!2Bu``R2;I8g02K
zRYqpFdQLa!hDDfGELCx+pk0KPq7_GHh~+}7Dsa`d@VyDY0jmGwfzc67spz=CpImsC
zA#=ALsCyrJDt=dGKJ*O^H)43Ak}4ba1p{x#KtT7NZ2oNsg4tP>ZnLi<Ad}k#=66rx
zXfE9TIm%p+VJ?EFZLI8#tPes!T!L!!AUZ#knwvk0g7-&cuMKjY8Ko_<I4Ul33b`>@
z7Z<OjdPqIr<YFnmGK|(iE6+dk+0mJHETg9{YYhrWU6N&4W*K;1a&E4=QE(`<Skdm8
z!PMlqmdJl8wQi9!EA-pgtwPguX<%fY3e24K3??_#YtL^ehh!M0WRk@wgB7X|DT%QU
zD62q0ROV+C9dmSID$a6AC^BiZg3XgGAQ1}`M1|EsL6m`14t4o(hy1Sx9KM7MpO0)-
zS-QDgR=4L7xhD#Sk8B>~kOV_Sq{m7HQt4h~q=F5MWS_}q-{qdeMq4%j3qO>rg6*b~
zZ&Q!}W5xLE8YQSY1J99=h*3@eMtH2u%87{M=WXM3+QLs3k?E-v=pP+Ndm<;UuMiW2
zti<zZXo^m1CtKdtHohHOkh|~NbiL{%6K;@)=?Q)(R_u*dvYpO_KO`vxh}Bu9pf#Y>
z&FckazMqgGGQ@Vna@jLEvmYUX|AS6cHJh>V<3EaNx)P2SQQbNeXGP#W<zX)6oTUP1
z%@}PDC=78p;Nog_@r$BCj!kFWU`PRMkI*Bh($|(gj#OZ5uNMMw%*>3T82)4j@7@ad
z*%OoKa=-o+)HmrKv2-lT*7JU_DYVmD{i*wwb!tZHXl^2q5)k{nc(|h>P!htfj77~L
z@vt3X=c?~Vz|>TeW2jvhrq9VAU5m%V(U9*pvQyshWu)CAgq^6CZ{mAk)J}AMRaVeJ
zut72B1$1dq`<q<s%S`37p~-{4EuPM(Q!9zSGArEk>T{pOYOs|(UM!It5!~6%5vz+J
zXyG(>59?@sDJK3XUTlI9=qtR3AJ^4b)1CN`f)>0C0TVxvr8aMHzX&J_XD!{IHIYdf
zS#2~;%M4EsPlh)m>O?K@llVm{Jhd^qJ?@kGBP8dabf%>6jqv<B8^RQn{)W@W_XJxy
zNndl^UVk|x9vqgtf8OsK`O^Vsn#f*Gxwx=gQ*pxck6W}fcHa4y5?A<@#=b-|s%u2Q
z^6&HT^%>^Y<$O|p*{1W(U|I9p<cI;y=b>k4^a@EW_;SLk8f51huLitZ?$k6X32Tee
zrDBlGqa_!B;xR)yVqv3(ves4W6ri<fjR|?VLQt%KTR@X<rKO4nL>~+zcaBhB41GI)
zzdr5C|3qJ5%Ey5xzM28Q#B3gAYSK#V0n88Q?<fzw$}q+SQmu{zzeZIP8~vj7@ezge
zquj@tRSkJS?hdEFfRacy%89H+JlTdty(c`xa(@?RYw?V!`kUG=o>>!xNH#Q<QI0~Q
zSNYET3QOV-#M2^K8C;`$D-V_Ni2*<f_#%vP3FM4*Qpwj_uU2kg#QR&2C5b_bFdYse
zOg-hkh%=D6-vCg1?sw!<=@Uj$&57D%Wpbaux@kJ$Vh#*@<`AUN^XZJD4mmC1fkWrB
z*G&E7!z?Uy>}EE*m#}BqI|xamIO!XBC$!5&yw{vqSUu^}yA@Y?LrEefo(IuIo#f`a
zMT7$gb<F=J8y+>Y@gFv68Xl_;_3(vLTA?~;5O_0-QZxw;8jDA(AIcf_39XBevJ|Q{
zt4?Kr0x(q3zQ<bJ*pGU^qKS6JvKGUiX+HteJsLI%{&FA8Zh1D9+WPBo%KmafXP8M>
z)6N)&J9c;!hT0T{P(Psh>&+<)k3^sElk(vzG>h5LSs2SZh$sy04YLrqC3#u$$OrK$
z47s*WqFw$fDX38x!YqiQaO7$yiUMkt2{;VBs>*aVKwaJhXv74E;cwuMJk8LXmoLXP
z&fX)ZWnEh?EbV7;ziu!P=5UJKwE?!i)+Z*&8)%%W9I_XoGaZPDm4o;2yR&%<X}(ri
zl5=Q4-vmW_n8k?|b`rxNOlS(dBSEbKinST)0qa18nxnE*&Hz4#LHbv5cy$yqgJONm
zd1kOlnMzryZk2%$<sXLnDfz*pfh!DKohLMs4sg^Dc#H`ZQG#evzMxW7TC6FN3(78G
zH_|!5G~@m)$(W6<QUt5{R$hQMiG51108-aPLyl(ENk90yp%-R05V{quPrRnO&CKd6
z1fv7AKgn`-R*0#nSI7I0s4ik>J9pExSCR>IHp7BSpuS50Rx>aBB3EhBR4KY|BB@tf
z4NZJYY_jxc#S?D{1(q&JAcr^z>Ylj<%Q#EXB?zKH6^|VisN%`sDh^w_xsvi=2%k#u
zLg@wFnlil4?)jM_kE&O8>`F@hFcyqG?7ZEH&qR_Wz!Bj2Bb0Sv{<jAx$u<WOKT}*@
z8g2~=tTgOC#o-JNL~q7NNK+*HUA`nN^ZNPi@~l-I(GeG4zauH#oXSjkpRFCExKM+2
zv8^9HWyTK9cD$vQrtnyPdF3-i_NCWKQGRMd{yPj*M*8nZ(hT=DMS10FQx?J{HXfK{
z8QPK$o*f^_KZbj)_U8!g^edOxq`hcj=FqMX#1-MnUI^B<%+*&5J%-(bi0osb2dEAM
zB18&2HTDClEmJ&`$>63Um9m5w%sR*Z;V4Y4fHT6zVrB<6>O_6*t9WRsML#6HG#2(2
zWzzh@CZ`_IRh<}Xq|f+TRIYyfJEhMqX}HhzPY%rdY-e+T!z1>~aEiq)+Wii8Y*g6U
z4oXnQZshyO!7j|&^%TZ$g6Oe_Ofa|N;mcx*i5%5%@>skkSuW5LLu^7t9J!Z=$-+ds
z8U|#fufucF$+1J?rB^gQ&l6zB&Id~VAz{FXXSDtK6-T=jvx6aqtDvSUyHLRzr-m3x
zq-d5dGcu`&rO*&fOPG3wbycG<<cUNi&l)yQ1;B4G+v@DjWqSEP>hx;4ooVQ?1{j`<
z%p~&AgeN!|p!JeSo{ZVwVV3GZ^%a~aqmXW1WM`QMIhCHLn`+ztH$Hz(Xw=#|0iCT-
zCo2x#hyG$)76!_Hl4VG9%>L9BI(go68##fUpP9&<q|+>+im)<CgAFuqn~+~^3{!jd
ztB~CpHsAS(`Xg(LP4j!6|E@aP`|G@_2gtMf-;exa`?6X{DU8{yI}{8BKGY~m?MVDU
zLIa-sB&&V^tUx~%I)*DFw{kyrSU1Abwr)w5`>B7c6U{^2$4!{$<rc~WziAQbj}D$2
zniZDAg8q2ThTO{qAEu{-YNMt8E*zVgt3{ozuz`0KAEa-KmujJNU89Mzp+;nQ(~*_K
z4aQ4UNf?#SqMZHYIyPU7&$)$*b7B2tbX2nAFNgYq)<-h5BEH0q>hCgS88wueX}$;?
zksz~j=^RUCjw^FphGEu$`y)yf{9w{@DpDdVxgsk>2fa1pT&)Et**(i3yFiv>BKtYt
z;4_^J?S8{pSGP<tvv#$JyxMxOrqWM%dQR;}QS|O3t+8Ly(G%CL&OE_IRv5XXBPY>v
zq(t18_GF;$P_sXB45`F&&@x-6>`03QB+C=WF=&4cp_+K$60f$1)$Ja4RG*fgh-rmD
z)cYQ#`Le=BB_Y9~Syl~+?K~t0aP7jwze^HQ8sdzzts*1F%iocI0yz&H+LhGETerFC
zVazZ>9qIV9==nKnA%ex1vGSbMViM$|cd_!~GABWH3p-a<hE-LMb`L<Y1s(sq|Chq!
zQf}r0X`O|Rf4+45{Mh0gN<6Sqw9QNENc1Uf4_JA|7*Z8Bbo>g1$FC|!*E)XeS<ZY?
zGM_Qy{zqu>;^P0tj3GLHoNPRte0(SpJs5Zyh9MVM`Mup*+N@EaX-tYK5^EWTF@oaj
z+&4ZKvG~3SBCJEk!H4qun}W)kAfb1c_xEHE?gEZ~U$mz<huS`#u8D%vJvm&>24Je8
zgus6vu}I1fp_*b;Z^I6sXs43(W6>+4$sR*+Ywaah?U6<+<;7E=nXKEh)F9;KqB?tY
zw4*RU_CZ77D90?3MHKXBX00-n3BWw`N6F@G`dlIQ;>ntpVLG27jkS=l^psifX0Kkn
zp>2m<U;UsKiQJHQ5o1U4N&y^mTF{l>MUr^MNZ5jvVq2gNduA1(;=Kfec!uZ$as_IG
zot`Qw4a{gt5sGAsV(b;+Nifg_zew$vp$E_nj(I~#p0|UEb%;6c*Wd6@?@K|UPO3_w
zdNFSS*&fVw@)MLD&)+K3A=>Q)eBqECOv&5jU=`5()zn$qr~#9kIRuaFaHwEo6n(Kz
z;Psgo?Vuy&T0$ix7<D1)g3Todi2k^J3lT(EQv~tPZv#b}!yw$%3PC8%8a0)e;$GwG
z`pk2BKl~4a^f8Q#-NcbAl7_BPei_NZG$y7tG^4OOeTNn=F!Vp4(1Jov+*L5Bm8m@Q
zQE;&jo|KwG+o)YdsJ#9CcBs(IcRf-?%C(r&Jr}rRc+sw|Eug_SH0JiiXQY7x7BVoF
zD7i`7V;#IRvJPK!TV%ug&;f##MQJOtJ&QHVjy8g;e6k%0(k0?EqD4CFTKS(?dc0V3
zH!X>vz3vLptw3uecr#oKPP)I?Z@E)3EmHMS7CV1RVuqGA=DI3m@rl^L4^g-N?BilZ
zLb6Rs4=RQo==hMm@&?U>vO?MQtoiG{C~0wNV<%vQ5s3sP;A685E3<+srUadV3pP)P
z5o{_%I6{fb`ef%c1bqi@QbJs}=B2+&v^#9!M7Q`SbwxrsYl+COmvb`lyOok(T=%nk
zyi#7xL)vZtsj@_00VL+f<kgy<WNMBqLc<M=+#yEbH4<g72%V~yrU;sDAD9NzoJ)-3
zO;g{XV_g9;5x(+f+E|69nGK}u1fb7}2cTRdvz*d`KA1vNX_1dfeo+k+$IDaDZS^pe
zXqi`~pb4{4GG^vHkd$aaahxj;6vzFum8GLNP(5WTjAWbmro{eCFtuV4PVUzUc^>Iu
zcphaHT`+}ox<5bOGTWSvLnbQK+ZYV2_?EZbxk1{}zVkPEZf<q-M(|9U5#Qk70>W~7
z2od8YsUA1)iECUR9>N<vG?$V_|8a8leJ5q!YP2a42u1~u9|bl*f_;y$&K~Jp;5Ux@
z(;=lCbx~1zSLxieIB5i(GA4<~jzluF&5o2Wh%Su<aCDG}x9q(D_|^rS^hg|?_wot&
zK0e%>pFaMp{OWzcboLIDi$!hvH8CfjiQJIHt1gbiNZJVvw>RAJ0Ob$iQO)V>+o);e
zaEPcx&~XZ)FH3g^c5wS3G;>^|q|>k(d^5ZQL~haD?qF=l635Wv8kGBMM5QK~G*wKE
zfn|nfNs%zRu{w&eHOC?qtH`cGr@GFN{O(>)_@BWGw;dW~M!YixGt2|B?NU2!i9Yr_
zLal0kpeA=lpu|Jbdt1jZtG_*^!L`T%wv1uTcsJtM`_R4)_}p4GG^~P*^2Vy5KdBq&
zy5%dkAJO9X0b<jvAU5qg0K~PIGnW0T9|OdV31;`@MdU9N_Zny>%8dZA4E8$0Aw8e`
zVLcxwUc>`89A%vMjV_ye5U_8{?IueU<(|xUhW6d**j)I$tYCm{AfOwp;B_-K$Gbxg
z5nZlq4r}J+GS}d!=6+%Q&8NZJ<6fp~`OQ7}{kO_L_ea=4Bv}=oC|ivFG{CJXFY13j
zakqtSScEblw4@)rCTi19$R)coiE#{p0#7+t_|R)b+_L)5b~I%Y53^rs)CEV{Ca_qP
zBHj-(D^~0+r%p8khgDH6c_VHDDOPhMxM7On7+g*t%NoYeZPi1~P1G%gvpE^4t^^;|
z;?J!OhH6Ed{vCgA@Tw$8JbCs4E`V2YY%}hyc<Y0mDU=Heg1#7jORsVv0}H~&iUS8c
z<QW;wIrz!8n!kTJ2XVOI^|iAQXFgE?a&S_g08KdCPm0XHodTaIFvZo!Hv{Vdwq|sv
z0C!|ZOCD=%htsKu1wK-xD_#kjkSJfl#>FRW=odz$%2$2)ksXWc2*L3#<#;s8pnOQ*
zS<v;c=wu)N7fZGO79qAdDYZF4gFM1~yc2ysx_Q7pez+D}*S~3UTnFkK^a&dhR=ZxZ
zQAf_mhFKAXD~2b9R_npLb}4yM>*-ps*n}WL9MHesh+7e;LX7MUXofKKxnIl|;5p9+
zOCrQYMV@!lpONZr{aNe%vRc%Yas1a|Uz^_o3>ngJ<o+Mj6x6G9C=d2MTuP9P%K#}}
z>O~DUk^UCblDoS%f3|^QAsFX>(LFW%q=dLd<I^{?Ydseq<ZnVZj+V;O%3(tr%RrCn
zuu%W9cDFeX$3m1r=Shhe_nl!g?u+j7d*V#_mc!>EbR^xVgA4z}>UeZru3<Q={9MS{
zL)h7m5F}S*jv9ipX{thCyiy~wXRt2ED>a!|i!^s|fJ%Xzh{27WMkSQ+_ix;uM=bWc
zf0^BY^P$J2iPD?q{2y0r2hxP7$#S0Rpm}BJu^ZoY4C$Ux-(n|6rsMy8Nd$VO7+RW%
z)**wnLVU!mI<`xMF!4ZNLoeI+@+;QRm_~!2fO^gb2h4t!PDRaVAFDXTzPrq;f$Hoc
zb+deRw06bYx#4h?x&eEOLD+hW^bjp=%O{9w&3kH`qRYIZqU7(fbnTK<<XkWiAZ2GV
zC#^wA=L^)k_}@~S;C|4di0tRQuw;RUQ0dB1geHW`Rj?s*feewkT?T{rJQflCm@XlL
zWbMjHX!U_fkWin;!u=;GYQhDkLWPpzqjg)N`JWIT8?fK3p7F0E9RHJbUOs@Cn|bvN
z@2wH>BAIG?#p6q9AhI;{<0Y!+<{lfEc6D(l+8~0>NDRCEVYY`73=888{MhC}X6bDo
z?at5mkbFZ1xLsd)vyFN<x(xlR4VrQ!q&;}Q&A+_|Pc|+tvl2%EYK#j{ffcRneB{gt
zZ_E1dAVXZrs92RGFdh+c*UXW*!3hu%9*~SAX!jiNIFyHZ-0-WCy-hf1H8=4Q`c{-?
z$ew4N+qM=*h0ZTe<c);SCvz_FcNuj`*@o-NagaWZpO(Uzab*yHHIl1W<HGmu2pLX<
z*IN5?g!g6O&y0A&Gt!sSx%}y~F_?GnW6FQ~m6GK6=jpA#oRUodCe8S-+3RljNVrmE
z_#Dtu(JBM9`dXgcuUSglvzqZ~%_Fps>hIs!vzYQEG5fErD4wX77<IQl<-L-+wS~B0
z?k(5`;i-IV*Kb%4%<z(5n9`=0u<><*iSMiR7-XdM7#OHynl(8>Q54LpN}&TQO^4KX
z7Vy(!%&I<1p0Z?6$up_0M(*z0PTzSF$&_3|w2}H5NsARXJKZ%pVc|DYFG6<8Qzw;N
zFN56cStlNLycRVm!V(X$Mu}Pna%5Bn)@!DHOTk-Gg1-Kx=fvA|!YcuvhL2T77_578
zJ4%3KlKKX;kk(}x_ITpD?^UehytLdxpl0zO8_N<VNfdzu6F~X?%$H-Xi3928+}+68
zNHCUR<D9L7%*}kJVyj%J-1~sz{)!-By@XC7n9W+5FI+`igE#sStjq~6b(I=1Wmm=a
zXgS~+3Z3DA@Qoh5s`4syYQdV`G0P-@HF6C1!{O=hNhIXPE%<%Ws0oN>wp%MANl<oJ
zS-J-h46rBOQy!^JN5d!()PLMWYWrBSk91*>j+6jkh}MA>OrNV<*#vj#@mx$5w259V
z-G~Yj=<<~EsIlWUZdM%h(fXR1?ij8t<y`Dw*|ugf5uL6-umfhnA8ede=n9=NT}Jcf
z3K#H;S+GK3U<GiUBW(h{(ekm8ZlJGNT#H7*R>pJ*6ZY}CfP>c;N&7IBV2|g|M6m2-
zk+2R?*uskh5i8+XM4iT`w*V)W#4%I86iTWz3L?ZElr%V!hEZqQ@bbfhTd7(6ZiWeD
z(7A)qlP!#ozb4l%qBg(@h_uLiN_f(S+Om@;<3NuVxv?&>iYJ|~K1v`U{a(3Bvy`?1
zhm5rF!T%#JpGJd12Iio{i?=+E6Q|fU*h{T=>gp^I@5MnI5;dOh{A)DcV$<u|ctEh4
zNOyBU%MX!a^fRC-mRW{cZ%k;VHy>frUxk!Hubcto6Q2{&EX!DIX2JB>_$Axj)n+o_
zJ5l-oy6HdB1Ix08DE>#>zO<1Tv*ms9O}f&WXvWu7&0o<<6e9-IRr^@eLxuc~-3**Z
z6|tpOkx|zg!XT6|r)wxh|28Z+w}r<sOr6YkG28upopXyG{IBZV)qXce;ai_6^gLyG
zYa)Y*fpPFoaU~aLcY@NkrzQwT#~xJ|KBh7Y4)PS_^B+6d7q6j-Rq@I|@=!l&#LtA!
z$l4NIv3k1ghZMwgvAn8yl63z9t4F5N0eSk1#V@0*5?>TvHj+uD=md8uJvS?1BL#$B
zxR?Xsa{OA3HYsfE0M&)(V#&N4)4uVK>9R-L)72vHaE5&%AC^citHOiE#4j6WM-`6#
z4`5%yrIqyS3jYl!AJbs{CQx8X%QbMTMZKI+GvALawiHu3F4u2QqaeYO=zD*nB=QS-
z??6>%dpCtls@72Ex%vZmG&ijoJ@~QhxN1cy08!iiCU{(2<ZM~yEcx)qY^=llMfy?n
zZ*E0}GhG^;;?{U4eIL<_w7qFK0{0y<OJ0#P-itJd0RANe5kT}8X**kW6hNf*5QqTU
z5&&dC1aMUk)al@poKpd0ezOVwwDRfh=_q<E9rPYgcNg5>87tTIW8@|I+A|H(<^<k;
zrSGZP!C|;A9MG6VnadaHl%h&g;PiI4Q<151sN+FPTMV|+UR)|m_%n*$k{eE-3{j2!
z0}jE4KUQd<_d&!CqOvBCuBXWDEnk>kT~~}gZfzBQ^g6#UJym`D+D5uhj2|$4wPagO
zd{?>sJr;xnqZ8EeZNc#sTI31-?X~LK_3|Gha9$?xI`PT(w!#RdljIC)L9P~DmUk6g
zQb6^7Zy>Eu6c`q|x6gDpoV7V~Nl@&ibSiUNh@D@Avz0uw($z(A(HnVfB6Crvi<glE
zrEBj7AG5I~h@zk#&XW%%KOcpE0Nc1Tw$2URlEf$M8zp4^wG>gSUD=r>u{rtP3!9~P
z#O+e2s1#FJQ=tyB)pn>wcJT``GbNX?2D^5&n;t!-BmC)-?rCXxNNKz=#xSEAJvwe@
zIO!AoO3HL_yX8;#B!+Ogak=OW6Sj0Y0zeE_Cl#DZ=pif)fq(Eop70!XMy3XMpXxh1
zeY~yMtHHRY6B(uzUdj_dLx$6gzpRH?R@RvXVx7!M`RfEUfT(!EF<_irs)dTC?%!EM
zA<M$!2?iXp!Nga+fjkjQ@SpuoRaCao9no}oIG&}7SvgUP-53%+Y9VM1Z^mDC%8XL4
zia{;%4mG8CBh{dSergl~cQ`Hx9e3jmDu6^pIMym9g{p8|q0o%Th2lkWs)81GRsB!M
zmHesc+Wn<c)8_{)sI!zEEcE1cF1lZOO*$_{BMEW$@EeHP{5@vw1aadk=VK<jW2T+(
z$$&CtI&(g*^l)9WQXl*?6U70d_V?-C$1PG52p^<zYsy*&8WuTB(oQEL(gI^L_egyo
z=?05c1;`|uH7SH`p@BX&-C<pdee{zacmBcS5OVUQyZSXpgn02MoZ1kdQuU#M;9A~>
zm>s2X+Y$n4#R#!cb-GYteTtCcnb+vn=v8tKnqv=p>q0q6TkYJO6f}Cu_E+f)3EVgF
z1}54~-QfC(#Q+=bTk9*7Ec}}&9u9MTKS8hPu!%V2$=jL6q_L85x3FaLU(wypF`Cht
zIHr4s8It(963grB;@YC2a3?alXaP&gXoFVbPL6zmKHCXCKiZ8`_@y0h<z+z^a0!!w
z>b}W^Qd19EX>g9}1i9InMQInWH!zye_0y?AN90HIYN~6&j3Eqzlt>LS{)BN!0+%tw
z!k1TE#CK0Ec*+0%X1MZ3rlevRW)uGbK&QCe8$$6~jsq&INk@U;QyefZ=T*TxycAj=
zl=|U7sb4zEEc`R|qkpFUZ(;ESaFatY^UEUpUp?F!#6JJa7|?$?3-gzzQLGbytj<EX
z|BJ`t*ZiLsM#ueuF&bTO#wRkP9-+?&@Qh4Kg-jY=;MRdp-VHo(5pO9{dMeJqUA3fd
zWcU$n15U1(8bc+XJ)s^gyTgFHjXGRe7A#l7lZwTlwnnbc#;xwP^4tE$RVP8aS5){~
zgQNJLcIki<UX2OUP_nWl;Gplef!Yb-93+9fgetybH2guU<t)eiqAU#m1++<R>Z#Et
z-=pkfGwk|`AsM>VM=H8Bm8OU^{+9xnUu*_sNtGC`W|G5pSie^tx&LC)<8!FH)52oy
ze7A~Wtbt%b#*a7GMBl$>nj;fEun@(~Na(dpf;`p0KyIyR2Mj>mp#6YS7I~E3l$3>-
zZ~tk%;({4{v@-nVlr>*OhtpAf+53^teERQ_$o=-M^f-G#Q90?Ziy4<~X5v&_2}Xov
zi@}O<ms}wJU_AK-oyKxVdQ(Su&i#%%7R`S5bvetoP;HJM4u##eTw(Tu88%{EOD-D6
zG^n+bS`fRA2a~}uuzD?XKJc%JrXka+jch9Pg>UOuBAJO+$D|-P*L&laJ5=A_B;2(%
z<v|{?3nCzCq9Vw0W6=cTjgq-u9GdV27DP2fklrXkRO2r3Q~iI5M7jSd0XA=krv9aq
z5030pQI^T-Zlw*rONJv8k^rO60J|}G+&??J+35P?_7Euus?$%tLjNnN;5h=34VzxG
zpi;9Ss9R>9drF`x`z0maFQ72eUkd>_Qot?x*mD#?R6M0W6a$W_pXAhZ)Qs>>D;EuU
zJTJ~X<{MsIFVd*-ofhw*ENE#HlF*QPJ6+`l9kLV&$AO!w2SKW|Xi{}Sen7Fa0e96G
z`qb`}2D@f8WuN@;AKhB+Dz6IO7igUmaN2039};*}lppb&eYb`1{=5!K$<LHtYsfDS
zuEg(8(|KM3ceM1)h6ph`Zg?y*AbFr23^3WasgGcYVp$QJ%sc2j9vWP3=2FYjDcgQ%
zCEB(}PozLNTT|A>=3K1VsUY=Li@D0Oloh3d+aF_ycFj>Z8VRZ&$7k6;*;q|D8g!@p
zljG<HlAoyTk_Z@9ujD{LSH=8^3IuewQ$Rqs>_#qCRiA_-y8eayyd)z`F<H-^UOIKc
zz>j0X3?plQ4k#y2o<jDR(<GOGYvJv5k^Z0fh|(6S<W|XZ2>O{T-m{zKLRCZu>BTrp
z@v5lOH87?+nQ}2I)!Q*(DAFYu<l0SPGTu4Gz(#V^LcdX~Q&~3L|J67>`tA-#6u-l!
ziW?SN8GF2pPsf@`z7!1H7Gc>k*1Zy9oWqzK6R1v-fcgR>fXv24`c_i_th0N)dz10I
zeBA5#=zMv&Hob&<`^V}xr1S6N1?uhoPapDJ5b{&STIUO3;T?Km)sJV)@B8<5k(_DT
z=>e2nL=<JLzBZe-ncO;pKn+XA@P78{T-jpX@oT`d`%hb#rx~;<14<vS&t|t}w@>6k
z;?UY%ghFE14$gD0UUNG(8SBZ%rF9lrT#f8v$0w>|0u{5A3kf4|9Avh;<Ey^OefYJJ
z<71MG??g6TCU}M5BpXc$YnLO4s1sR+eFBxS2(>Qz=!He?x8I#vUhH7EawAUQ)Ucyq
zr~2LXycVy&lhI<(SR2)EWiqBse!oCF9Q@^{<1_fH$7;ZKH^$wY<C!Xwh`F5pw^Q`W
z!CHtAjiq^ftWa11ko}xX9&(z{9WlmO^k4PFvN$Ojg>=%uOrR>Z8yohQ1_}F+m3shU
zUv~~KIv2NODT&w>{Px&&Q=gyRd8>h~j}aqt16l6u<8Y`d*7`7w@QAewLAooC%r+Yf
z@*eweoac&TKomZL;q)AVwv0m*(+qyYiad+bj(^HR6z+kRL(g~Bs%-pX&wvx|;}e2L
zDGw#irFvmA10+AmywL`kre>M__@LFB`fMRL-Bh8^wCzVl$<RRcAggZ)K;S+@XUQ{5
z#CwnhrR`NpP}){|kVTkdLJg4A`2ZffW`+rWo=fe|bNMpfO!YF(DM3n~CF~Z{X}>?m
z=?&$)=0*`M2)8Eb_XArp+2&i<r!5Z-k3#MnMYQ?*K}9NEcwM+*F$V)($ZjLRS`4BN
zU>S=<g+&qz+R(CN8sKdM$w30c;TLbHZZj1stUAm}mtw&=eqUI5N%B$;8K+)m!&E2!
zTR7Fc2t!sr{TN4V1ZIK#F>Q_+>JVkN6ApSnpwP4uv=&nskbYly@?nj42+q^su^c5D
zCrbjH;ELu7%l4EqU+2P#!4ls;Q&SHg@7SitzC1U8!)5!gZL5W-i)?S>`Aktix6F3F
zGdF(CB-K=m*I?X#v5R+g^kYc#I=NW==wb=J{@}Q|k1Pg)$7)G4a`nc`#PyfOFdIv9
zL`x%DJ-5F{3|7yL*g!xm{W2RNcjy`#Z?R?afaQWoOeA#aP`cL4<ia+bga^oihcrKc
zM*OKgN|H4=K|u@=jeBUxZ6~M6V^>zT{(!t?nG;<yt8Gf!^?yXF8#`hs!^U3Wg<s{E
z3YnS$_pQKv;H|Mn5oG*H^oc+DfUbl-a#JBK2G^PmW+)*1>E6!<3$o_+6M+EePb(BE
zQ%YZ6D1IgJmJdA?l>b*M_@HJ}c%f#IBMU82z)|L6d&y?Xc{bBiVE5<8tXFUA$WR4;
z<#>I{&09d&g%sGQ=!}9d{R(>UMxqU*>Rbr#f52eT5~F_tpWT9WkM(8Ame{q9q0%8;
z0@NhnrxPPCK}_~aI$7|WxgKL$H?CzQR=n(DBv(9A{A75^4o!?=J08tx8k5-zfQz8?
zw@K8@lfUO8hP!mAB-9%qqTyFA6gl>JN+G}1CRy?=3cBsvsJT4rYD0hA@%J?}X^hyG
zImd&aa<T|!3a*9`E*q|bv6*~niW*UQz}mF?=mj*)T{l*qVaOd`sCdAKV1<IVi^L$|
z*yA;A9?ZZm9g_jk#;3o^of=w5C0UAdF1bP&hfsSuZvy(7BIx>B5Pds&oNlCsniwpc
z?F;10&EzZsdt7+c12C${>1dK-E?(&{j(Fb&_#Lc|p#jD~Ln0iC!RVh6RhqS(P%|Mr
zqNR(2g)gpl$RtL>B+SkvgFp0^eeQ0HeOf@7!N+4XZ-jbh-p<>*$}~*I{Vx*9*Q;aO
zUV`m;&<*VHX>s}`go;+DK^`7ga0FJ&`M<VURLMSBh+-2wvQA5~7iOYsw^gUJbcy+!
zCkywp5pB_V);sM_b@<i9n{K^LnOO4;9Y)G=%k8MwQ^E;?bbxvjI3}}b%F$Tf5dT$Z
z5SFnE;J2lZUCXR&;V&T?=wW~X^KWrwtifn0-w!_Oaj_yD=T7?4JW2JA<jrJ@I3RRI
zPY{T9R;lOx*Yo@?ioK(PSTiEwIaD!QC~xmfADHWx0b?;TF*(H5vA~%>O{1i~NcW)2
zjI0>56%)qRfh$=Kv0~J&XTeRrIQgSI_MZcn`#cg7wkhuHo;p-$*y$#htPu$M+w87c
z90!MB*y5kHRCk2$#q+>Sa$LZc*RQD?6&1-oHvZ{Y?{n#WwO7GWZqDMp+W{n3C3-}l
zyT(dKevPL|5Q5GrvS)?&8Lm9LK<&b^*k4qrmtm5i%G}1X`N530GEN!7+r6~ZBo=wX
zCw?#C+>loK{bHiLSkr1;=_T_Qv5*iU&xGCA{^GL7vAMP5*6NW7fp&%cGtHDz(po!S
z;&ZqK-klL-!?t1WRDy?$I8|{CP6w<E#l-i$COmL5<Kbj_un?Wi!Pd|V%8n8Ejix~s
z({AuoO(Ft8W-?>?FQ%v%i+i_*_Ap~Z1j3PDTIXAYjq!Z~DYtz&k~?Qp=T%$*9=4Ud
z6vzyH#H;s*Zm3wcSz-q|kw1srEJdH5UhvR1gRfx1b-v~d0?d}lUJ=VsGr+@j=+%hA
zXWJ_}snCSad%3Y4MSWQEz;}@0NI^zHG+~hA1UGyZ0%afk(9=Ew?Io6|-~ZEbq66yV
zL!L{hOy9@BZmA(}1N?T0RStg#@*9%)I(iX*g{BHBZM*)g>E1gfZnOrE9T#@2m_>qF
zqN-l~eK3^s38`4=@1B2#rT@akP7E1lM&#z{p>O6n+B^?V90}s?ffn0L{ZTv_hzdSo
z4;S)2(jvm3@=_w*=|Kbb*Vocm*GE#N+h7L<0)z5cM-!4O#rS=Z;4IwkubpneAA<g)
z{t9aqnje=1dE&i)MjV?Ie!j6uX%J{*2qMi#Muia|v<kQ2Ir$SZF=<Zb_siWjenF_G
zzlw%yWb!)1vG+!%b$V1aD^*u1P^T7S#qlPcwpuL%=bj6DY{&%m?yPqP2~wHztnCwY
z^33S`D)<*aFe4DW`^p!*C*U&q0!=^_mRHU%FpxH(NP(I}ILHns{BFU9cV@`GB*Lo~
zBuJx3<#)sB9_N2$ddT_M+bFOqb^(u#tHJhmohQ;}<4)Rz4%z)uGEy*lEE4FG**;v~
z40ctD9S{Veb#uho?J4OVG4f+q0rX<pr;2_s<0qPD+$znBzHP`jk$f?+?RN~a1qs4b
zD!yl*K({}cR*JG!;U_~c9F_Sp?U>Xo_#H>I_LH4d2>}Jm*?s!`U^|51;heb9b?DHp
z<Ks_XfKP{^Bfr5P7#kQNqrYq5-S6j2XK){ntni=etZ6%5&&;Wxt$tJ!R-3El^76po
zZfP1CZgzzmbyd4wmlU_RgW^=X&uIKK_0FyxPX;JX#e(7#i<8UsXPnyoj8pCHUb7;o
zaP^Di;WdeF!Q21mJcS+bgM}yax$F<#rViV#MZnYeb7QbVxd&pw0OHn>9M}kp^JQzH
z1+evJ=fbNy)poXf1QI%2t2!vGNZd+wkgx`uu!ZbJ@Z?|rvDlXLJk&O^8u;`u5@~WV
zY!`@X<65vAL=c~N)%P@EvR%M>HH-GX*7YqE_532pZ`twPpyb-Kv+dVwbpEZ-sz9-w
zOY$M+D}nLg^%m`xa52~M*mBAtk1X4J$)A(==#=tj-{3%Qk&8B$*52-yzoe`mH{aVk
zKm2b*9_ruEOKx1<8zcxr?_uGMn4pPp`5l07EWR-<JsrbEQ!+m;xf<yF6_dk-q@6F$
zVPn8B&N89<NWve&dn-2K6&hkujVZC`j<fkw{@{$h8d#3QsghL<DBJ+V*Uw~m<5UEB
z-uG_Kp-KKw9lae19i2jAO%kuZWpR*uh*J9XeTOTV>AM}lF-L2PSKJ&&R|nZ%dK=sZ
zm>(J&pZEeU1%prk+UokgqWa+qRbu$4W&$Z9?LT?Yl$nV*w?24Rciaqsehu!_Kfp+E
z>A%C6K5jZlGZO!-x`el-LAR2p=o<C_3g-$hwvu>c0Tt1i6j!`c>Gx4(*os(>=zcv`
z-eex{zKT{jxuFR1kP4Ez)l##|5C!dAzZKSDO9*Bm6z1dAR$x1)0fS7vJS+RuRiC#5
zRZ(A#sG(P=wZVV*HI1;ld`S1d4HO4{x&!wjVY!_VLhC}C)$ya^jL@|2;Ip4z7MogE
zN`9=i?XZAQ><09Zkt`h|BD$KjuauDtOc-BXy|RVs^Hin3B_TF98l&`qAFTW=qY%S)
zkaLltz%$X4uhRb{z=>hC@Wzlo>?fh7aJKV(rT@1@bruHFM8W;w!`2um4$FWA(c3jp
z7pn~FVj~ZK%gy=!7QMBSxJ`T?1~ss<#w6a3POWVa$<C)=KgpA?Gubl|P%z(3s?mpH
zI9HK}c2PkfOL<h&x;_{oG4j1k;x2!q*wKjfP_nh-ZNg0DZ-Yxk$%J{_tm8if$?k01
zv(nzX1sh^HGB>O&mO{H3QpBiY4ik>j%Bj(KyMupRI)S&r#q#3|vnYtuDrmzaM1yve
zNBGRS!eS)sop6NNHUVMuPEh5tFFkZu(&4ozxz+II7HB+a)-bM|Q3m3Ay0TcV2E#58
zF6r46UzhW-X-*sY=!vk+!6xd!sScE=R)wnwfR4D(R3I@9mWuO&jTs)O*fl8wO(>eI
zU;`!xDJu;U<A91FF%E`m`S*8Upllutx%KKyh@^G8ehjhI%?e5M85MaFahPO!oFs+!
zqvdXba1te+L4xehy~OFp8Evv;;vTh6xbuNbkwub(Rbd>cs-D`MJv2~^os@td;|xAF
z5#<>@hh?H(y_ZPqJx<i)-X9t6Gtq>kE$$=kaRHJTN?m2zPk;tm$UZFj3Ro!|agphQ
z)@@}A9{a{l!RvEZIp5qT^Zgr1!;(N^clsqbceI(@(xUBtA)xQ!&|8yzZV-PlB~R7K
zf*m^c?1d+GD=5f6+V8hL9CC0v*)_P17Q`!bw(3;82)2CwF$!P-W-Kz}867Rwh!zP3
z-gad-4CgQ3UtYRjl1d#HQm!Wr4ERa*P9A5|ME)&LZ)<F}uQ;!v(;Rqn$3bL}Ty>r9
zY8DRHR*ic@wo|n&WMuAh2h4&oKa<xS-As@2<43*OK*J(k?E-f>R;dt*Hgpw$NPlVY
zFt`zRlkLV4H!Nc&<XOvKuh@+EM`J;?Ft%cnvAV{{*J;<ZnItLi0nYCM>kj#pzN=QV
zFu+YPQGOS<3D91ZhkfnPP`sjjVlC*v6`WHp-Bx+dFfC^Y?Vixd{2?iN$WhyRe`P&-
z_k(7d)`8kzc+Kf;_-0{s_EVi2Sk2m?vY>gU9kzpNivL`g4cn2;fhBLC7TKB@R2EF}
zf0hN!E0;4zA$6Ye;b0)@<(LO*_sT!pz17YfC<AX~M<WEsfR&2M`@e%0X{&DI`Xqji
zfu3y;O&2Hsxhoxghrs)uH_`r+=0Nt^PHaSNcTN^W^>_wsmIzq@Hg2bjMZ&Cl?LjRm
zye(2ab<f^u$ig+q%706rOPaUKj+rL0*zkLhBY#<Hog~b@bY*8kyY#*XmfiF6tZErW
zCIz~gp9pPE-lgYwV-y*O&f!lxXV50ZfW{=`we9}KTuFIvghOwlLXe7^xZkeee-ySy
z+nxU^Y}aCj7fZ}1sNWcV(QJpu3b&B*$)3Ee%>@*Ool`U5Il*e*$uicuTve>Dz;i^4
zULcF*TYRIXqwUU4n>B71JgBtSs~($A)(LdX8SF<E&)Ghkx`vQm$TfBm6y%$oAc|I0
z@q?l@h_vu$CAW_+Qdul6ir(=N<Sk0J)Iib2V<8zTfp1FOxBiMc$|`6cGC&Q0Q>TJp
z=<3A<tB|ndS8WvZC-DjhE|RI~^cuU75H(Z_p;+aCzt2Ajwd`Qkw-ti>-DSn>Z^I2$
zU~w$L=HDN&&5A(-_TDs<^CQdy#eW`ofP3)!vyQi5cUiG8Um~wg>Epi56f<5zf7)^%
zjO|MFBnsK^SrQT|v^42gaAY>t7D;_e;p_>~TSBPmUpR<gbbrV<WBwxb-Qd?(rKXuN
zy+&uocF7vp)rlN&p9F&M?VUDnn)<gMos}3H0;C!5r+Ul@Xp3ZE@@J7|Ck?6_vUI-)
zZZRXw)}+#*%-U=?8(|0*c+KV@a9@Geul3);<R^j*&w>T(Em#pp8e$l}4Zff_6SFxT
zGHvsJaVF=I+U!;+Y&s)!x(g)u1o@nRC(Nk6R5>T4F^-bu*!0x(ANze9`s4~QwUp99
zqj}U7<J8;7xEWBqSMUU=<3d?ncss+hn+4#8=Mc3j`qSB<DalW=OJjSJ%{(A^c<@}s
z)~DpX6C@A&NHmC@{6RDBzaPw-dIb7ATgT(P6Jd+OAc|RswFKLTz!^$$2zY5wygl0L
zmC5t&Eb!kme`|E41S;eLtm%(GSjRGk_F_N2_`AOr1mBPre$auFonCvYKR(*LD=_Yq
zx}g^bW5iNPNf;p5<Sgcg8$X*_7eVh}eVa>%U)SFn>@=A>V;%FE1*)u=7tb06y<-$`
zKN6EiQ0G>ZPmq6+n#*$0v~U`3Ve%UO*h|xuT@>es)<@eB6#uF>)a<AGo8a>u2e_3V
zy~M06KMos6VzvB7VlpE{${hF*r@i6Koz;NG*4wU#J)7M>Vg}jmFV|?US=Kl7y3InI
z5Ve#SYm6b8^X}tTT75i!q&5kH9dN!O_iB^o-vB{L5;tNBO+JNcg&46!XJ@Ehbd_?J
z#V-O-D<1R5?mHRY5*U{km)toBYfBqR<f97D7iA!GLQ%A@lESF@6P8M?7p8;Fm0DOL
zgT^wr)P|uyR#tYXJ`^eUvT^n+LHq{mgQOn^o7H(^t;Vn3JPHGtc1tb!SKQi=2xmW-
zmZh8~mGoPLz1adK=k8O`R?*$Fuk+}duKTZjd3W=bxN*i}(7<8x+BMpvG<w(Tg39Lk
zC5aDv^!C)&v0|4uR?x#0{2EP*fMetcIXcpd?>3bvURjW+h$I{nL)S~+n{JhXWBlOG
zT@C0ZZcW<4FLSEO+MZhAZab%=obdJHvL@g6e`Ctm;y$DNR28tiv?KX?pU(ZLBgYTl
z>!&mFg?>)`H#%d9DC9^$2-A?VRldi-;lhHCf;<hvW}dL;;W46d^Mq3fE{P*IdWGO?
z)#!T|Gljj%;MU0<6MTVT3fIOdf=HGHm4boEa1k1*UA2enGs=&!SH82Pd2*_Y3_CYz
z?`^WS-75Yra}l(g8j>3521=DFZt9#LdB-S}+)ncq**`GM@ZN2>0w{Whu8ufvk1X3U
zgL|u=-Fu2(`9M#!pWX2rRUP<VJ6e3WupOV=4f%%(IA1$J<@(i;dQLjUYlpaK5Q%c0
zat-ipWpbcu5@fsi{b{?YxL}Lc@V4dkq;@+QtmFZxR1gI@CJ;M87hI@1AAcHeK0Nmq
z&7_HF23^})`qeopO-6+iRBsMui2n=>yumu32#7xXn8=_FcW$Ut(YTyk;=fgXsMBXV
zTNqvFpdI#fnwO%Wh^;rF=we}vyr>l!{uM|ixjuo@9h&T<8bm%pIV<gMzR!gL(Jnbu
zM@LzN<i)Z{@tc2jr}#)zY>S+DwT1v{PINjpM?1)5bg{yA8-g+^C<-u6JLcOkht(w}
zbTRA7PE{CjQ1YJbW1`=$G)yGzKM=>`NvDEsRXz|z!~!wfBjhSm-zFNCe=!2QM$QTt
zcL&YMz2o#4Vcx0v0<&mYZ>WJU4u9Y)L(5Jrb0Z{%GwSCZLtXrVZ2+=faz(tQl>-04
zdZWxT@9|mr52OMB6$GBBf4`f|k5f@*C#c)o5}Aq>%Wy8qOZag#5`6a}3>$cwFl``x
zD>!s2m92H~!AHk`Epl0!YuE)ji^SO+ns_<r$bY5!BT_HChcBt`Vefp<{|&E_4Kdsz
z>v=LJJ7@8Z{sD<RHsf*zdY>Yi%tj<I)X1m@Kh%h*j-O!UMa>;<(N=WU%v^**kdU{t
z${cIa)*{v|--P!ft}l_jnvQ;=uDn8>RJanlMCB-fCywb*p%_j>{RqAd%U`-lq2mbP
zml0@@-F1O|Y31o^JF=wX-I;kI4I-<#Jt}Zy&4w<C48FFQ9PLsg2(bMM!OR8S5a3r&
zW}t=jXA!j|Ew<=#{yWIQ0DD~!bTMR&xd{{T=A*^+dKxWMemz4@)EO%*R|p6$^4)jw
zR$cAgN!1#pPazip>#9CXCB`{O{e0R;KN$t9Ke>}yHev}fS<~+=;45eCq)LHgM~!q)
z&NxUt2>o$;HQ_-JG4*|j$iM0H9cm5e9qR2wKK1oPKEALXy?;}%+~Fo?3=}v{Tdpb%
zswnpaXs|%hS=Q#y|4f=7l%TUHT0eemIELDpu(|@5eKtB?<1HmwPW?)w?Ae)oc#tP|
zPQkKtGs%B7e-ZL;dmXb7c?ZrI9(}V(+Ein6qgAq+Ku4lpHmOBBcHAY5e$1%ZeoB4u
z`h+bgUeYh6Tvaef3IB+7l`;<MLc-zNIRoC1JD1{12C^sjKhE?n>-jlf)#s70WikyK
z%LsTK%cR~TiaBU%w_j<ld@%l+y+ZzV*^sUNVgD|u({xH9Lh|t$f^RArL^~NPiR}r}
zRWtV?37S#$JS?%~&Un(R%FaTqV<+8DW>mFI!6x)zJq&ysAcNd#AXJ{M2dQ1#`33J2
z303JUgADEMYMF)Z3cfAfC@oXO=ShNbG4;ipJ`;a<`BrtmK+r17^}L+l{Cb~oXmQh=
zog~8qi=W`b?~&qjdHRXp`J_1ouqYs!_d9i`qkyYXjM$osxd^y6`M)6(Y7q!^+9{qk
z_t2R8H}idCQCl4XMz*X4)wBcOomIN`CN@fL8;?cxjhs#0P6(Y(ifQ9bwi=Y654`nZ
zA_4;>eu01C=#l)N%B}+_iswr&Sp)<mgG5;}N>p+dP;y>ak+{MV7GX((<QxT&q-2qt
zBrT{&k|pOX3rLoXu;g^Z@9OIA>i$(%|DBqh?cV<Sd(%@r)AL@x*X9$MwJ{_=8ZKtO
zPO#Q+ynXm~(o?l8!wq7O&A5#A@89Z`bdwXagq}U^izz8P-OU&-l*6BYF+&-eB8Kf>
zEvv+Zwh0ny91{A8`|<hogiEoSiLhIYg^@wY{9JJ5o*R`+oWIh;<}N@gV`a)7QWVZZ
z^qo`-__s9H8`BuS^1b1H(dOx@?zZv>g9Wb?jOTq{n1jCb7hoZ4-C<&8UD%}u2V}*A
zX}Y<r_4J*@jzuIZIw#%-L*!<+Ixj|Z2(B&+I1924hp7^eN@CY7!GB*EP%q6wJo9~e
z!EI7UQxsO^jFeWe65K$n5tUUo4Y;l3J&$&1f0s>FigKt{FBpi6K$)Up7g-g4iwPK#
zb2#0&^itOIOmdMc8W+OVVSXtgY#)I!`B4fmCJ){^;0)eEDklhrvGrDF)2_Zu2-FBb
zt~Co(lrMEmWkM;Kta^!S_5*E`c212cUS@Ba-~kGJLMvwCnhmD7ZVY`^1{7&uy=P`q
zo8oH1xCYK3Tug1}Ab7DT>0@o){;A$0LY4Vyab;N3$EGI5m5+Gc)aE=<DBQ?my!CNS
zHU<BeE?E2R+tw{loN-&@d~+8wdf<jzMp}$$m~%8GdC-w+<frL8g*;<#mnBt@mJ23b
z9#t^sPM#Vy5!BtLxV>ZJz|)BrmaB#?((=~a!B4^!k2U|j#5=>6^9KkT*N>mB!gd_~
z>Z{E!!JgZz1auE|rsoAUp326*|GxMt4ab}giHve>>2>4q`e?U)yG&bKeUYF~V#r#6
zu14p0JH@+H<cE+XO|yQfna1)2VI5i=$8ALzW|7qrhM_PP-rG`V7NMF+ZjWK=sWRFc
z+&(87+Yla?+sw8UV57$>jsHDd(8n!HScpL2%e&tfUiZPPn`z}$k70DVe^0C5AvvwK
z?VX)M5lZ|vMBdI<kZJg_kmb5i&UYL<D7jI4;9yK!ATW=zJ&?i6E(IU2V3r;5*e31z
zEGm=}gyTqzR{)rO+X8!-hh(O*0JHDyV;Q3Q)El#}yG>OS-P5T#l927>;B6p6I2@Fb
z6osN^m6u67AEQ=I(5j(>2CX&?F?j%&lgqMy_<I6)V`<yVS5B=a@j}+~w*XSCjBq)G
zP0YY<5`}Kd%%T3P;ej&E7W+_Vw_ZWlVKA<Q93RP^H@6mJi20u0aP>waJJxS=g-tS2
zb3#Z2M&#7ZTpc#pGmj3F4tt^fWMs(se2=VT@gJkAsivD))!Hk0+EX;yXfD_~z(hOt
z0~5HzRPNE%bf5n{?Tq#9i;AFZ@!=f!<I244h~s$12J=;xM$Xb8TVAuXxvOPTKf8E~
zQDFr>aZ)pPejk~iRHv}J<Lp};+rJY;6s66EjcupLzjz9L;C|4fKR!@^0tqGFCj)s_
z&nqj$FMr`LxY8pAxwV~lvc9Ccha!G7hGAOc|FGk4Q>Bde9te`5tyJ@z%~!2m=m{5&
zW?;JS{1o#R8#fpIYx}aZ0qaNb-%20OUxg?cJXB0mf*0rz8$`T(myrh%cpuYF#UO@5
z|BNL@mI@jv1&Nb^-ra~QAnW_kU?`jv>7m{LS!A=efTijsJk|suM<aC=Ti7=~sw%xX
z$rQV*AJ_x`sq)I+Dp?(&i7@>$T3KEDI)nwrpyw4><NefX8oS-)23pnh>M}6OVYQsG
zRS>?baN+&jEeC9#^sKyn-GSmDPN6TA=7ajZenP!?dpO04Jt8~?J$t7yRyrSdDHVr$
zMZ}pYwr|fegv~`LSit41)zf7B);`IKR2q)r&HKILK*Rk8PJGGj3IQ4?3fl*niV0-F
z&o%HR>)_pSY;-fagLwR#?zeG%(@9#c+&n?cnDF>n!L2=NgvJjDjM1Hpq$L?LxYGjC
zziu0zs{b?MGYfQ9Oa4O68PwA#w37W=kw&qH$VR*XL-xY*@Z~`H0gbGG-TB+MM{~QK
zzSkaAUSgPlYOlj(qZ802Bk57&{JDwF73?@7^x)I<L($^a&+N}46Em3Gnf$lDb383p
zq=In@2YSez3^;i|LMt$Jtj$eZyb_u6oQ*iPTPoPU5a^%Ll=#up9=qSIVfZ;pqkt(O
zR+MD#WmtzOYzLl$E0WS?)nVm6Ot@?*#m7yZf%ge2B{x~!;4tDzVoy}d-~EF~D*_W@
zVm~f#?=RD!^rP(`|Ik(R<%jpVaiaFxTxg?TY+QuG!jauQlu0$kBsidWwfl$h?*6sQ
zd($<7k^!kS{0kQk1@UueQh%6@>Dm>U?(4OPlysz|kkXJG(D&Io3sIdW(aNospf%&8
zt+{}HZ^OmV?3Egto<EDs2_}09xcsI?wQ4#<rQi7PS#g;@irrV>l1f&3wZubYdt+7)
z_b^~fY7fEhTHb3>;QFk<RXH1V5VJkcFvj_sVkDz&>eJEd16``Jre9-fj0%qU^~~ap
ziZ#7ol}AfSm+=cq4oSG34vF^fD!%QPi0+78u9Rp2Z<*fj97`7uT|1-l-LPeBz`uN0
zom&x5b8>mynaZicZ5#QUr)*b5-6284DOXO9S8|WsXIIqcVgN^t`Di=6`nhP6q^t_-
z3Wgml#?~6Y=M^@pwk2eoVC-<lhWE~tc&N39{F;MXHq^%z6ed|}xM~Wf{UV~Zs-B>+
zZ^9ba+c(WlB}YW9I^4&m9Q~vFvJb+*%N^O4s#_@gjV6B;FQ)>#l~m%DA0978U+K9e
zMjF6)GT0J8cm;LM8Ga|Nb!6U0TvhjdQNQZ2RBGZq{7q$b-IPybI2pkgni6J6-_x!k
zh;Fx82ET2VMzSE6gbo8^T>fM|gqTNecNxZT21KEewDI~nGeVZY`m&fLfpr=dcG(df
zbkUCYS?425mkFO9eb?Yuf^YZO<PRT7&^QIY0SsmPK<R#z51V`woR_?7Fxp}nbWrC&
zAY!{c5_o!}Ierdkj)@Lto?80P1fG5lJhk(~TjC~{f7I~{inD||41WO_Ua|9@^zx)Q
z7WmC{xZNf=7)Nbcw?y~BGbN|-{FaiBZlS{8_1uKCTrUeU)R70aBLo@NPLtI;->CDA
zT^C@(xX5|$DAgLF7dASXcWQ;5?tfyxRSg!F(4T#7`mD=%Wj0y=PY?KslVA)tW${D!
z`vgn<KzhpCym9Q5(S2IUx1PL5r{8*#qLB65kh)B(Iv(SkpG%Q^+T9-&87ZiQ{Vf$-
z!*06xv!qfPyadtuSd=2pjv@cJ6m3GKHZjCODwy}EFpn%IM@XT|^rv_zy40C}JlKj+
zkV9qK-m$N_sJ_W?2VKIbWp(+^5*#vPhu&UsHk#5cV??>ob!^|b0&R=#G(I3k>3rJ-
zT!An*u0XyaGdErzD8TEZr+wRCiS{+fH&c$ic5VP?>P7)%bfajl+U3MKV#b?F#hn6f
z<OquM<-eV)5IcT~^Z0+fB{Q#Q;(^r(j0kN9qlz!B&INvd=gZr18ll!Pr0dv1avU+>
z5*MQ3?P={N4tiLda8)gvs!>qy@o@7QF+($2XMVJ3z+_&IWs5mC;2P#~;&5$|ozwi|
z9EEdMiE}LmHJR7_)vUniySwVWdq{I^S96+Ae4JF@=%~iPp~BSwEIVJjmubrSnX!@l
zNaapmX-q`lp4S+|K!)JE=gVp@!VOP4LrVP+Q>99*g{>8O%BnWhYvei^-j?!4y4L!I
zKa);6?kvzr1z7y~<M-F#IErY;qpJAmrIx+Wy}QYz5AO{~|ELQcQ}lG*D@bU8*_*07
zkM6T-OX(m0>F@|^@+?b9YnAY&(iWF|*l?Y`zi!ldvZS*|*Pb~Xx)>g+6r{dedX}`y
zl6#qt7W-4HSV$)2JOoc^&~*19aQz1EO~WC*Z+cb#s#8POmg&nXLkZ-m!0sRYce&xk
zi#aCv9eIOYd}=Ia^`c_b`7b>1oTtmb5|~Ao2lqLbjOBspVvtdSs5hdm(ut;Du?q_V
z=r-EtK1m?qc8RV&i3C)bm2#~ETCtF4Ndbr|gjPh$E`f#bjO@%9w1&F^5d&lK+9hrx
z1}?Dys^+(@2`rx7%92C8)bH@5BzcH#42H%)$11$%p2S0Bt}My(ShdBa$ie2^wYQjX
zzrhAs`i;ggq++iACPv(`qqcZecXGJ`bB-uSAc)wbB})#MU}tOlDJ@@6w6xkvstS_?
z9RzP;v~Z#rxunhP=)VRD^s{L1C5jD)Jf7>TzL`fSNiAE*8G__}pirGA`M1XWiobj1
z4y@D34*F~rCxDTaTFZk&{)4Ws+>0b3iNANGnmxJge_CBCnMZDal%!g#kqxsXrkyi<
zn#c00yr(y1Iqz?Qy%h_FPJ26EhDmENaa29>R>G^hV)lwfQ&C<4WU|aWgqa(;3=7{z
zp|)q;U4lu}9QR;hd>3SKN*Gdz)0FB-o&|<EUiRyf!@CfDj>Af=eYaWRX62>R0afy0
zdd2>0P+D4Wq*C5($i&~zz5%33#OI&Z=E~jGS>>;24%zw0j9jafxvwnMN^Xlv#B(SF
zg^%YknsWMX6)l311`F7ONK)d)M2SRunOIkQBYN)ojfCdI8F=WApqbxph{4qc{sgSo
z9f4;JK9H{~?a+~7TV)+NH^G>WWl|SHnKWMXyO0f3Sqs07y(snTsDcM){AsQE^k%-N
z1;ifr!gFpV9J8`;rCBlK_6`K?tK?Zn4~cFJ=MerH!oSF8*Wt(|0%dXsz?F%MY;aY6
zi5HPfHq@dONs{KRL`UbJIy+B47AnZ;uzVDD6t}##doW?B;rFFM?C!~C2YmC-F1^VL
z_;FkahdPvg^?~c(blCUYN5m%eu*3{YFI~wl870N=<|@jIuwRSkPavejQr}U{Uv~)Y
zX_pM`hC-hfmrO8q@|pTp6QVfB;)oIxPpinh$|}hw*<R%scZlou&2ujQR2WUqg}-K^
zd^A)NUhwTnE*#LM<*vv2#%cr?jP4xhw-SC>9bvHlr7#N2-3%-+_?Utja_@1zkP)h_
z*k`xI^y4Vs+{=hz`zg1SMJ>fxZ)Y+IO|+F{cPI)3=elkxhc~j3qfcPAYgVqZu9wnw
zo_wn$f-B(I#bQyoY1Bm0v4Vg4yv^q6WCZK=#-QCC_NWtBZ1>IeWFa<nJX@lE7b1!k
zmkyD{J@<P&XS?X9SW)Y-jcG9z^V%46Hbi3a=R_TYe#%@(q;V`<?_OV6Y%(td?-7?Z
z|Dx5uTwP(S>Ok#WAY9|f_Jmu|%k#1Y^P{JIu32;Ucl*<2VVS?>!DJ_?132@cI`fhZ
z`#Fit0rD(c7wXxNlVOYOU-Gxb-@Nr2-rZKqPt9{U;`Y6s3)mPf5dvTQqv|`n3|sod
zvG*|MBJ{3hp+DlA0Y+lTzry89G^#AZ{$NfG>LFjmRg(AFjUj|KOgQq{f#6<8xg`>K
zjs1FDHDEfY6?sSiAy$nv#EUj1bPPAeXCuNZ&7r8yYq&?sozNd}GFxqVWbQl1U7hTM
z0$HJGokH@6QG<rRqgkg7><{<$j!gq5U2v>!T@h74BW5NRZmmw?sp6jDRbG-dD2O9h
zKUL*Uy$WYm;m0T~s~%bPT1WYRs#~!@wNE<fweB>q<uP%cg>9U8<=xNbD|?U7v<k;(
zg4k1JN*_5n%(nAXRW@}z9~Sm@@*5>LP_z{??wnHx%cVVC$cTi(mddg{Ka*zMlFZ%G
zS4nNhnyUR=yc%z6uDh6ybWBOVgk{syNw6prtZ$Qw3j>{YEy+vy2r+;CMtbUWF@DWU
z{pz4SqB4Yeb08@B!O5kK)Fe0h%ZT4xhpk?~4CkBC{OgqNE3*41O&cyL`7X)Wc^)OJ
z4=(Qn=IPUa2)>hZs}4Y3@IIJsK`5K&O_@ynmB?8=QNm5}9MXSFSnXKI&if^iqvb)g
z)}2dlmIFy0NOk=O%%{J)1Po(w4r<M6NnSN6pS26Cq%x(7M+M8YQQ8~W+ohwWNm3DE
z<B|e-caU)+@V4*G8H9nbhc-I~sIA>J>r}-E=?AQ*n&{lMlTO7KD;^q*vtw?jg_@gE
ze=x%vWu%Z~v$c4$HEm}19S09%5j%rTjL{~hJY+z&e4t55>Ud1*cq8W^*Lba6Ns6_^
zL$0q9iTnH=%+81vCKf|!&}-zxPAg;$<|~)~^S&dxc!lr%1IvzQhGxxSSsk(enM6M`
z{90%v6~hda<}q)HPcFjdvIy|zV{-{<i^4_*YoE#U=VL|dMg|>nvB>g~K@#4}=jGS~
zGoDMOQf!RUvu0iX%RJg=tng$xzI<$=+4?6lp4o|c^Eo-5)hv6&5`uM1`7b@HEXSe%
z*|)KfUUyhw`Yp|6VnV`h+sE6^xykn?{z;wq9kXvNEN0N%yt<fEd*`^MiHeBSiHUFU
zZEJrs=u%PL=0Y(5HT#xU2|yhIsH1b!Hvn1*K%oE>3f-*+pia(lqX2XgfI0(ED0Ha-
zfHrzyv!I1(YZJrXh)f@E1as5c1n+92hZvB{k_F{{X;A*V;sXL&4kXle8$F_5BbejX
zCW<2fgfAk~8pvI0^w{|S>iKt|=70!-fC%DQP!zyw0<gxsMwkPv<pArrFJcy8H33*}
zq_<%k4o)k&L;WxQIt1{*iH&<BW`Ps?w`%?0P+34A{?*1qpiL?Pfpm5o4}oTo1q3Pu
z1RC{4GywwXEHxei&2R`bXC=To>WyduSexjTpo*#=<426i2g?hOF+LqKs4O&cbG#k7
zxh{)(Aq?dH#rPcVVSIcB%T4-_n{XM_3t6Dh9CDN90OP|5<o+M1^q4Oq0;owjZp{-y
zKDe#B+sI6NfVm@{HDd)}%O)j~eIvT~Xa;>K6^r#8ixw|*%nb{eyjBO#IR|=p8`pzX
zOQbQ5F~XL?w;oB4Bs%Qud7Y$@mo$nhy>n?w-=Ka>=E&Zw;sPu%*PyEAs%lZld@gEO
zQ&!~DO_%n&EoxPI&ibk<Er~?z>O4UC`uG}0SA*zQJYg-fLKg@$+)E77)xg1}#-j$^
z0=CDFFHI3lO`1n{L7?|vKp;908|c42^+7kkY}{a0?l2>`3hX5u0e6SHARag%T@Xfw
zWFR73c7D5?T`!Qw&cmAogoA&B_~+|?lJEc||5E_U|3w0&0)d>Z;0QyQ^D8HS>c6XB
bVdJ-31NMJeJpthj7cQ{<1deAjH>v*s2xh?z

literal 0
HcmV?d00001

diff --git a/Solutions/Threat Intelligence/Package/createUiDefinition.json b/Solutions/Threat Intelligence/Package/createUiDefinition.json
index 863d79b9586..af6fbaf66d6 100644
--- a/Solutions/Threat Intelligence/Package/createUiDefinition.json	
+++ b/Solutions/Threat Intelligence/Package/createUiDefinition.json	
@@ -6,7 +6,7 @@
     "config": {
       "isWizard": false,
       "basics": {
-        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/Azure_Sentinel.svg\"width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.\n\n**Data Connectors:** 5, **Workbooks:** 1, **Analytic Rules:** 52, **Hunting Queries:** 5\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
+        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/Azure_Sentinel.svg\"width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.\n\n**Data Connectors:** 5, **Workbooks:** 1, **Analytic Rules:** 53, **Hunting Queries:** 5\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
         "subscription": {
           "resourceProviders": [
             "Microsoft.OperationsManagement/solutions",
@@ -954,6 +954,20 @@
                 }
               }
             ]
+          },
+          {
+            "name": "analytic53",
+            "type": "Microsoft.Common.Section",
+            "label": "TI map IP entity to Workday",
+            "elements": [
+              {
+                "name": "analytic53-text",
+                "type": "Microsoft.Common.TextBlock",
+                "options": {
+                  "text": "Identifies a match in Workday Activity from any IP IOC from TI"
+                }
+              }
+            ]
           }
         ]
       },
diff --git a/Solutions/Threat Intelligence/Package/mainTemplate.json b/Solutions/Threat Intelligence/Package/mainTemplate.json
index 6f962281184..6661e8757b2 100644
--- a/Solutions/Threat Intelligence/Package/mainTemplate.json	
+++ b/Solutions/Threat Intelligence/Package/mainTemplate.json	
@@ -41,7 +41,7 @@
     "email": "support@microsoft.com",
     "_email": "[variables('email')]",
     "_solutionName": "Threat Intelligence",
-    "_solutionVersion": "3.0.7",
+    "_solutionVersion": "3.0.8",
     "solutionId": "azuresentinel.azure-sentinel-solution-threatintelligence-taxii",
     "_solutionId": "[variables('solutionId')]",
     "uiConfigId1": "ThreatIntelligenceTaxii",
@@ -150,11 +150,11 @@
       "_analyticRulecontentProductId4": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','96307710-8bb9-4b45-8363-a90c72ebf86f','-', '1.0.2')))]"
     },
     "analyticRuleObject5": {
-      "analyticRuleVersion5": "1.0.2",
+      "analyticRuleVersion5": "1.0.3",
       "_analyticRulecontentId5": "87cc75df-d7b2-44f1-b064-ee924edfc879",
       "analyticRuleId5": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', '87cc75df-d7b2-44f1-b064-ee924edfc879')]",
       "analyticRuleTemplateSpecName5": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('87cc75df-d7b2-44f1-b064-ee924edfc879')))]",
-      "_analyticRulecontentProductId5": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','87cc75df-d7b2-44f1-b064-ee924edfc879','-', '1.0.2')))]"
+      "_analyticRulecontentProductId5": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','87cc75df-d7b2-44f1-b064-ee924edfc879','-', '1.0.3')))]"
     },
     "analyticRuleObject6": {
       "analyticRuleVersion6": "1.0.6",
@@ -485,8 +485,15 @@
       "analyticRuleTemplateSpecName52": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('e8ae92dd-1d41-4530-8be8-85c5014c7b47')))]",
       "_analyticRulecontentProductId52": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','e8ae92dd-1d41-4530-8be8-85c5014c7b47','-', '1.0.3')))]"
     },
+    "analyticRuleObject53": {
+      "analyticRuleVersion53": "1.0.0",
+      "_analyticRulecontentId53": "a924d317-03d2-4420-a71f-4d347bda4bd8",
+      "analyticRuleId53": "[resourceId('Microsoft.SecurityInsights/AlertRuleTemplates', 'a924d317-03d2-4420-a71f-4d347bda4bd8')]",
+      "analyticRuleTemplateSpecName53": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('a924d317-03d2-4420-a71f-4d347bda4bd8')))]",
+      "_analyticRulecontentProductId53": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a924d317-03d2-4420-a71f-4d347bda4bd8','-', '1.0.0')))]"
+    },
     "_solutioncontentProductId": "[concat(take(variables('_solutionId'),50),'-','sl','-', uniqueString(concat(variables('_solutionId'),'-','Solution','-',variables('_solutionId'),'-', variables('_solutionVersion'))))]",
-    "management": "[concat('https://management','.azure','.com/')]"
+   "management": "[concat('https://management','.azure','.com/')]"
   },
   "resources": [
     {
@@ -498,7 +505,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.7",
+        "description": "Threat Intelligence data connector with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion1')]",
@@ -657,7 +664,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.7",
+        "description": "Threat Intelligence data connector with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion2')]",
@@ -816,7 +823,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.7",
+        "description": "Threat Intelligence data connector with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion3')]",
@@ -1059,7 +1066,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.7",
+        "description": "Threat Intelligence data connector with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion4')]",
@@ -1327,7 +1334,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.7",
+        "description": "Threat Intelligence data connector with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion5')]",
@@ -1486,7 +1493,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "ThreatIntelligence Workbook with template version 3.0.7",
+        "description": "ThreatIntelligence Workbook with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('workbookVersion1')]",
@@ -1590,7 +1597,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_OfficeActivity_HuntingQueries Hunting Query with template version 3.0.7",
+        "description": "FileEntity_OfficeActivity_HuntingQueries Hunting Query with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject1').huntingQueryVersion1]",
@@ -1671,7 +1678,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_SecurityEvent_HuntingQueries Hunting Query with template version 3.0.7",
+        "description": "FileEntity_SecurityEvent_HuntingQueries Hunting Query with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject2').huntingQueryVersion2]",
@@ -1752,7 +1759,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_Syslog_HuntingQueries Hunting Query with template version 3.0.7",
+        "description": "FileEntity_Syslog_HuntingQueries Hunting Query with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject3').huntingQueryVersion3]",
@@ -1833,7 +1840,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_VMConnection_HuntingQueries Hunting Query with template version 3.0.7",
+        "description": "FileEntity_VMConnection_HuntingQueries Hunting Query with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject4').huntingQueryVersion4]",
@@ -1914,7 +1921,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_WireData_HuntingQueries Hunting Query with template version 3.0.7",
+        "description": "FileEntity_WireData_HuntingQueries Hunting Query with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject5').huntingQueryVersion5]",
@@ -1995,7 +2002,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject1').analyticRuleVersion1]",
@@ -2049,31 +2056,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "PA_Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -2129,7 +2136,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject2').analyticRuleVersion2]",
@@ -2189,6 +2196,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Name",
@@ -2198,35 +2206,34 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "FullName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "Process",
                     "fieldMappings": [
                       {
                         "columnName": "InitiatingProcessCommandLine",
                         "identifier": "CommandLine"
                       }
-                    ],
-                    "entityType": "Process"
+                    ]
                   }
                 ]
               }
@@ -2282,7 +2289,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject3').analyticRuleVersion3]",
@@ -2342,6 +2349,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
@@ -2355,26 +2363,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "ClientIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -2430,7 +2437,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject4').analyticRuleVersion4]",
@@ -2490,6 +2497,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "RecipientEmailAddress",
@@ -2503,8 +2511,7 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   }
                 ]
               }
@@ -2560,7 +2567,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject5').analyticRuleVersion5]",
@@ -2577,7 +2584,7 @@
                 "description": "Identifies a match in EmailUrlInfo table from any Domain IOC from TI.",
                 "displayName": "TI map Domain entity to EmailUrlInfo",
                 "enabled": false,
-                "query": "let dt_lookBack = 1h;\nlet ioc_lookBack = 14d;\nlet EmailUrlInfo_ = materialize(EmailUrlInfo\n| where isnotempty(UrlDomain)\n| where TimeGenerated > ago(dt_lookBack)\n| project-rename Email_Url = Url);\nlet Domains = EmailUrlInfo_\n| distinct UrlDomain\n| summarize make_list(UrlDomain);\nlet Candidates = ThreatIntelligenceIndicator\n| where isnotempty(DomainName)\n| where TimeGenerated >= ago(ioc_lookBack)\n| extend TI_Domain = tolower(DomainName)\n| where TI_Domain in (Domains)\n| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId\n| where Active == true and ExpirationDateTime > now()\n| where Description !contains_cs \"State: inactive;\" and Description !contains_cs \"State: falsepos;\"\n| join kind=innerunique EmailUrlInfo_ on $left.TI_Domain == $right.UrlDomain\n| join kind=innerunique (EmailEvents | where TimeGenerated >= ago(dt_lookBack) | project-rename EmailEvents_TimeGenerated = TimeGenerated) on $left.NetworkMessageId == $right.NetworkMessageId\n| where DeliveryLocation !has \"Quarantine\"\n// Customize and uncomment the following line to remove security related mailboxes\n//| where tolower(RecipientEmailAddress) !in (\"secmailbox1@example.com\", \"secmailbox2@example.com\")\n| where EmailEvents_TimeGenerated < ExpirationDateTime\n| summarize EmailEvents_TimeGenerated = arg_max(EmailEvents_TimeGenerated, *) by IndicatorId, RecipientEmailAddress;\nlet Candidate_Domains = Candidates | distinct TI_Domain | summarize make_list(TI_Domain);\nThreatIntelligenceIndicator\n| where isnotempty(Url)\n| where TimeGenerated > ago(ioc_lookBack)\n| extend Host = tostring(parse_url(Url).Host)\n| where Host in (Candidate_Domains)\n| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId\n| where Active == true and ExpirationDateTime > now()\n| where Description !contains_cs \"State: inactive;\" and Description !contains_cs \"State: falsepos;\"\n| join kind=innerunique (Candidates | extend parsed_url = parse_url(Email_Url) | extend BaseUrl = strcat(parsed_url.Scheme, \"://\", parsed_url.Host, parsed_url.Path)) on $left.Url == $right.BaseUrl\n| where DeliveryAction !has \"Blocked\"\n| project EmailEvents_TimeGenerated, RecipientEmailAddress, IndicatorId, TI_Domain, ConfidenceScore, Description, Tags, TrafficLightProtocolLevel, Url = Email_Url, DeliveryAction, DeliveryLocation, EmailDirection, NetworkMessageId, AuthenticationDetails, SenderFromAddress, SenderIPv4, Subject\n| extend Name = tostring(split(RecipientEmailAddress, '@', 0)[0]), UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0])\n| extend timestamp = EmailEvents_TimeGenerated\n",
+                "query": "let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour\nlet ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days\nlet EmailUrlInfo_ = EmailUrlInfo\n    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains\n    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period\n    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase\n    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated\nlet EmailEvents_ = EmailEvents\n    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period\nlet TI_Urls = ThreatIntelligenceIndicator\n    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n    | where isnotempty(Url) // Filter for non-empty URLs\n    | extend Url = tolower(Url) // Convert URLs to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL\n    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        Url,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nlet TI_Domains = ThreatIntelligenceIndicator\n    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n    | where isnotempty(DomainName) // Filter for non-empty domain names\n    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name\n    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        UrlDomain,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nunion TI_Urls, TI_Domains // Combine URL and domain threat intelligence data\n| extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column\n| join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID\n| where DeliveryAction !has \"Blocked\" // Filter out blocked delivery actions\n| extend\n    Name = tostring(split(RecipientEmailAddress, '@', 0)[0]),\n    UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address\n",
                 "queryFrequency": "PT1H",
                 "queryPeriod": "P14D",
                 "severity": "Medium",
@@ -2620,6 +2627,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "RecipientEmailAddress",
@@ -2633,17 +2641,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -2699,7 +2706,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject6').analyticRuleVersion6]",
@@ -2765,36 +2772,36 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SrcIpAddr",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ],
                 "customDetails": {
-                  "IoCExpirationTime": "ExpirationDateTime",
-                  "ActivityGroupNames": "ActivityGroupNames",
-                  "IoCConfidenceScore": "ConfidenceScore",
                   "IndicatorId": "IndicatorId",
                   "ThreatType": "ThreatType",
                   "IoCDescription": "Description",
-                  "EventTime": "Event_TimeGenerated"
+                  "EventTime": "Event_TimeGenerated",
+                  "IoCExpirationTime": "ExpirationDateTime",
+                  "IoCConfidenceScore": "ConfidenceScore",
+                  "ActivityGroupNames": "ActivityGroupNames"
                 },
                 "alertDetailsOverride": {
-                  "alertDescriptionFormat": "A client with address {{SrcIpAddr}} requested the URL {{Url}}, whose hostname is a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blade for more information on the indicator.",
-                  "alertDisplayNameFormat": "A web request from {{SrcIpAddr}} to hostname  {{domain}} matched an IoC"
+                  "alertDisplayNameFormat": "A web request from {{SrcIpAddr}} to hostname  {{domain}} matched an IoC",
+                  "alertDescriptionFormat": "A client with address {{SrcIpAddr}} requested the URL {{Url}}, whose hostname is a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blade for more information on the indicator."
                 }
               }
             },
@@ -2849,7 +2856,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject7').analyticRuleVersion7]",
@@ -2909,31 +2916,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "PA_Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -2989,7 +2996,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject8').analyticRuleVersion8]",
@@ -3055,31 +3062,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "HostName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IP_addr",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3135,7 +3142,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject9').analyticRuleVersion9]",
@@ -3195,6 +3202,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
@@ -3208,26 +3216,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "HostIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3283,7 +3290,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject10').analyticRuleVersion10]",
@@ -3343,6 +3350,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Caller",
@@ -3356,26 +3364,25 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "CallerIpAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3431,7 +3438,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject11').analyticRuleVersion11]",
@@ -3491,6 +3498,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "RecipientEmailAddress",
@@ -3504,8 +3512,7 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   }
                 ]
               }
@@ -3561,7 +3568,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject12').analyticRuleVersion12]",
@@ -3621,6 +3628,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "UserId",
@@ -3634,26 +3642,25 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "ClientIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3709,7 +3716,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject13').analyticRuleVersion13]",
@@ -3769,31 +3776,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "DestinationUserID",
                         "identifier": "Name"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3849,7 +3856,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject14').analyticRuleVersion14]",
@@ -3909,6 +3916,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "EntityEmail",
@@ -3922,17 +3930,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -3988,7 +3995,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject15').analyticRuleVersion15]",
@@ -4060,15 +4067,16 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "TargetUserName",
                         "identifier": "Name"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "HostName",
@@ -4078,26 +4086,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IpAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -4153,7 +4160,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject16').analyticRuleVersion16]",
@@ -4219,6 +4226,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "UserPrincipalName",
@@ -4232,26 +4240,25 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IPAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -4307,7 +4314,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "FileHashEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject17').analyticRuleVersion17]",
@@ -4367,6 +4374,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "SourceUserName",
@@ -4380,10 +4388,10 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
@@ -4397,28 +4405,28 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
                         "columnName": "FileHashValue",
@@ -4428,8 +4436,7 @@
                         "columnName": "FileHashType",
                         "identifier": "Algorithm"
                       }
-                    ],
-                    "entityType": "FileHash"
+                    ]
                   }
                 ]
               }
@@ -4485,7 +4492,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_DeviceFileEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "FileHashEntity_DeviceFileEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject18').analyticRuleVersion18]",
@@ -4545,6 +4552,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "RequestAccountName",
@@ -4558,10 +4566,10 @@
                         "columnName": "RequestAccountDomain",
                         "identifier": "NTDomain"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
                         "columnName": "FileHashValue",
@@ -4571,17 +4579,16 @@
                         "columnName": "FileHashType",
                         "identifier": "Algorithm"
                       }
-                    ],
-                    "entityType": "FileHash"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   }
                 ]
               }
@@ -4637,7 +4644,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "FileHashEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject19').analyticRuleVersion19]",
@@ -4709,6 +4716,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Account",
@@ -4722,10 +4730,10 @@
                         "columnName": "NTDomain",
                         "identifier": "NTDomain"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
@@ -4739,19 +4747,19 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
                         "columnName": "FileHashValue",
@@ -4761,8 +4769,7 @@
                         "columnName": "FileHashType",
                         "identifier": "Algorithm"
                       }
-                    ],
-                    "entityType": "FileHash"
+                    ]
                   }
                 ]
               }
@@ -4818,7 +4825,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AppServiceHTTPLogs_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AppServiceHTTPLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject20').analyticRuleVersion20]",
@@ -4872,6 +4879,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "HostName",
@@ -4881,44 +4889,43 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "CsUsername",
                         "identifier": "Name"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "CIp",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
                         "columnName": "_ResourceId",
                         "identifier": "ResourceId"
                       }
-                    ],
-                    "entityType": "AzureResource"
+                    ]
                   }
                 ],
                 "alertDetailsOverride": {
@@ -4977,7 +4984,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AWSCloudTrail_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AWSCloudTrail_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject21').analyticRuleVersion21]",
@@ -5037,31 +5044,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "UserIdentityUserName",
                         "identifier": "ObjectGuid"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIpAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -5117,7 +5124,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject22').analyticRuleVersion22]",
@@ -5177,6 +5184,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Caller",
@@ -5190,44 +5198,43 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "AadUserId",
                         "identifier": "AadUserId"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "CallerIpAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
                         "columnName": "ResourceId",
                         "identifier": "ResourceId"
                       }
-                    ],
-                    "entityType": "AzureResource"
+                    ]
                   }
                 ]
               }
@@ -5283,7 +5290,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureFirewall_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AzureFirewall_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject23').analyticRuleVersion23]",
@@ -5343,22 +5350,22 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "TI_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -5414,7 +5421,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureKeyVault_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AzureKeyVault_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject24').analyticRuleVersion24]",
@@ -5474,22 +5481,22 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "ClientIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
                         "columnName": "ResourceId",
                         "identifier": "ResourceId"
                       }
-                    ],
-                    "entityType": "AzureResource"
+                    ]
                   }
                 ]
               }
@@ -5545,7 +5552,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureNetworkAnalytics_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AzureNetworkAnalytics_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject25').analyticRuleVersion25]",
@@ -5599,6 +5606,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
@@ -5612,26 +5620,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "TI_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -5687,7 +5694,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureSQL_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_AzureSQL_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject26').analyticRuleVersion26]",
@@ -5747,13 +5754,13 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "ClientIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -5809,7 +5816,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_CustomSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_CustomSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject27').analyticRuleVersion27]",
@@ -5869,13 +5876,13 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "CS_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -5931,7 +5938,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject28').analyticRuleVersion28]",
@@ -5991,6 +5998,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Name",
@@ -6000,35 +6008,34 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "TI_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "RemoteUrl",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   }
                 ]
               }
@@ -6084,7 +6091,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject29').analyticRuleVersion29]",
@@ -6144,6 +6151,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
@@ -6157,26 +6165,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "ClientIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -6232,7 +6239,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject30').analyticRuleVersion30]",
@@ -6298,27 +6305,27 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "DstIpAddr",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ],
                 "customDetails": {
-                  "IoCExpirationTime": "ExpirationDateTime",
-                  "ActivityGroupNames": "ActivityGroupNames",
-                  "IoCConfidenceScore": "ConfidenceScore",
                   "IndicatorId": "IndicatorId",
                   "ThreatType": "ThreatType",
                   "IoCDescription": "Description",
-                  "EventTime": "imNWS_TimeGenerated"
+                  "EventTime": "imNWS_TimeGenerated",
+                  "IoCExpirationTime": "ExpirationDateTime",
+                  "IoCConfidenceScore": "ConfidenceScore",
+                  "ActivityGroupNames": "ActivityGroupNames"
                 },
                 "alertDetailsOverride": {
-                  "alertDescriptionFormat": "The source address {{SrcIpAddr}} of the web request for the URL {{Url}} matches a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence feed for more information about the indicator.",
-                  "alertDisplayNameFormat": "The IP {{SrcIpAddr}} of the web request matches an IP IoC"
+                  "alertDisplayNameFormat": "The IP {{SrcIpAddr}} of the web request matches an IP IoC",
+                  "alertDescriptionFormat": "The source address {{SrcIpAddr}} of the web request for the URL {{Url}} matches a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence feed for more information about the indicator."
                 }
               }
             },
@@ -6373,7 +6380,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject31').analyticRuleVersion31]",
@@ -6433,6 +6440,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "UserId",
@@ -6446,26 +6454,25 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "TI_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -6521,7 +6528,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject32').analyticRuleVersion32]",
@@ -6587,6 +6594,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "UserPrincipalName",
@@ -6600,26 +6608,25 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IPAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -6675,7 +6682,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_VMConnection_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_VMConnection_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject33').analyticRuleVersion33]",
@@ -6735,6 +6742,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "HostName",
@@ -6744,26 +6752,25 @@
                         "columnName": "DnsDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "RemoteIp",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -6819,7 +6826,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_W3CIISLog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_W3CIISLog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject34').analyticRuleVersion34]",
@@ -6879,40 +6886,40 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "csUserName",
                         "identifier": "Name"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "cIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -6968,7 +6975,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_AuditLogs_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_AuditLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject35').analyticRuleVersion35]",
@@ -7028,6 +7035,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "userPrincipalName",
@@ -7041,10 +7049,10 @@
                         "columnName": "AccountUPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "TargetResourceDisplayName",
@@ -7058,17 +7066,16 @@
                         "columnName": "HostNameDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7124,7 +7131,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject36').analyticRuleVersion36]",
@@ -7184,6 +7191,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Name",
@@ -7193,35 +7201,34 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "FullName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "Process",
                     "fieldMappings": [
                       {
                         "columnName": "InitiatingProcessCommandLine",
                         "identifier": "CommandLine"
                       }
-                    ],
-                    "entityType": "Process"
+                    ]
                   }
                 ]
               }
@@ -7277,7 +7284,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject37').analyticRuleVersion37]",
@@ -7337,6 +7344,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "RecipientEmailAddress",
@@ -7350,17 +7358,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7416,7 +7423,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject38').analyticRuleVersion38]",
@@ -7476,6 +7483,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "User",
@@ -7489,17 +7497,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7555,7 +7562,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject39').analyticRuleVersion39]",
@@ -7615,31 +7622,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "PA_Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7695,7 +7702,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_SecurityAlerts_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_SecurityAlerts_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject40').analyticRuleVersion40]",
@@ -7761,22 +7768,22 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Compromised_Host",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7832,7 +7839,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject41').analyticRuleVersion41]",
@@ -7892,31 +7899,31 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Computer",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "HostIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -7972,7 +7979,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_UrlClickEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_UrlClickEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject42').analyticRuleVersion42]",
@@ -8032,6 +8039,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "AccountUpn",
@@ -8045,17 +8053,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   }
                 ]
               }
@@ -8111,7 +8118,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DuoSecurity_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_DuoSecurity_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject43').analyticRuleVersion43]",
@@ -8171,6 +8178,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "user_name_s",
@@ -8184,17 +8192,16 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "access_device_ip_s",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -8250,7 +8257,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "imDns_DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "imDns_DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject44').analyticRuleVersion44]",
@@ -8352,6 +8359,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Dvc",
@@ -8365,49 +8373,48 @@
                         "columnName": "HostNameDomain",
                         "identifier": "DnsDomain"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SrcIpAddr",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "DNS",
                     "fieldMappings": [
                       {
                         "columnName": "Domain",
                         "identifier": "DomainName"
                       }
-                    ],
-                    "entityType": "DNS"
+                    ]
                   }
                 ],
                 "customDetails": {
-                  "DnsQuery": "DnsQuery",
-                  "QueryType": "DnsQueryType",
-                  "SourceIPAddress": "SrcIpAddr",
-                  "ActivityGroupNames": "ActivityGroupNames",
-                  "Description": "Description",
-                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "IndicatorId": "IndicatorId",
+                  "QueryType": "DnsQueryType",
+                  "DnsQuery": "DnsQuery",
                   "ThreatType": "ThreatType",
+                  "ConfidenceScore": "ConfidenceScore",
                   "DNSRequestTime": "DNS_TimeGenerated",
                   "ExpirationDateTime": "ExpirationDateTime",
-                  "ConfidenceScore": "ConfidenceScore"
+                  "LatestIndicatorTime": "LatestIndicatorTime",
+                  "SourceIPAddress": "SrcIpAddr",
+                  "ActivityGroupNames": "ActivityGroupNames",
+                  "Description": "Description"
                 }
               }
             },
@@ -8462,7 +8469,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "imDns_IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "imDns_IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject45').analyticRuleVersion45]",
@@ -8564,48 +8571,48 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "Dvc",
                         "identifier": "FullName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IoC",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SrcIpAddr",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ],
                 "customDetails": {
-                  "DnsQuery": "DnsQuery",
-                  "SourceIPAddress": "SrcIpAddr",
-                  "ActivityGroupNames": "ActivityGroupNames",
-                  "Description": "Description",
-                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "IndicatorId": "IndicatorId",
+                  "DnsQuery": "DnsQuery",
                   "ThreatType": "ThreatType",
+                  "ConfidenceScore": "ConfidenceScore",
                   "DNSRequestTime": "imDns_mintime",
                   "ExpirationDateTime": "ExpirationDateTime",
-                  "ConfidenceScore": "ConfidenceScore"
+                  "LatestIndicatorTime": "LatestIndicatorTime",
+                  "SourceIPAddress": "SrcIpAddr",
+                  "ActivityGroupNames": "ActivityGroupNames",
+                  "Description": "Description"
                 },
                 "alertDetailsOverride": {
-                  "alertDescriptionFormat": "The response address {{IoC}} to a DNS query matched a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blade for more information on the indicator.",
-                  "alertDisplayNameFormat": "The response {{IoC}} to DNS query matched an IoC"
+                  "alertDisplayNameFormat": "The response {{IoC}} to DNS query matched an IoC",
+                  "alertDescriptionFormat": "The response address {{IoC}} to a DNS query matched a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blade for more information on the indicator."
                 }
               }
             },
@@ -8660,7 +8667,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_imNetworkSession_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_imNetworkSession_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject46').analyticRuleVersion46]",
@@ -8805,29 +8812,29 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IoCIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ],
                 "customDetails": {
-                  "IoCExpirationTime": "ExpirationDateTime",
-                  "EventEndTime": "imNWS_maxtime",
-                  "EventStartTime": "imNWS_mintime",
-                  "ActivityGroupNames": "ActivityGroupNames",
-                  "IoCConfidenceScore": "ConfidenceScore",
                   "IndicatorId": "IndicatorId",
                   "ThreatType": "ThreatType",
                   "IoCDescription": "Description",
-                  "IoCIPDirection": "IoCDirection"
+                  "EventStartTime": "imNWS_mintime",
+                  "IoCConfidenceScore": "ConfidenceScore",
+                  "IoCExpirationTime": "ExpirationDateTime",
+                  "IoCIPDirection": "IoCDirection",
+                  "EventEndTime": "imNWS_maxtime",
+                  "ActivityGroupNames": "ActivityGroupNames"
                 },
                 "alertDetailsOverride": {
-                  "alertDescriptionFormat": "The {{IoCDirection}} address {{IoCIP}} of a network session  matched a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blead for more information on the indicator.",
-                  "alertDisplayNameFormat": "A network session {{IoCDirection}} address {{IoCIP}} matched an IoC."
+                  "alertDisplayNameFormat": "A network session {{IoCDirection}} address {{IoCIP}} matched an IoC.",
+                  "alertDescriptionFormat": "The {{IoCDirection}} address {{IoCIP}} of a network session  matched a known indicator of compromise of {{ThreatType}}. Consult the threat intelligence blead for more information on the indicator."
                 }
               }
             },
@@ -8882,7 +8889,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intel Matches to GitHub Audit Logs_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "Threat Intel Matches to GitHub Audit Logs_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject47').analyticRuleVersion47]",
@@ -8936,22 +8943,22 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "AccountCustomEntity",
                         "identifier": "FullName"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IPCustomEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -9007,7 +9014,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "DomainEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject48').analyticRuleVersion48]",
@@ -9055,22 +9062,22 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "DNS",
                     "fieldMappings": [
                       {
                         "columnName": "DomainName",
                         "identifier": "DomainName"
                       }
-                    ],
-                    "entityType": "DNS"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IPAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -9126,7 +9133,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "EmailEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject49').analyticRuleVersion49]",
@@ -9174,6 +9181,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "Name",
@@ -9187,8 +9195,7 @@
                         "columnName": "UPNSuffix",
                         "identifier": "UPNSuffix"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   }
                 ]
               }
@@ -9244,7 +9251,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "FileHashEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject50').analyticRuleVersion50]",
@@ -9298,33 +9305,34 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "DestinationIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "SourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "Host",
                     "fieldMappings": [
                       {
                         "columnName": "DeviceName",
                         "identifier": "HostName"
                       }
-                    ],
-                    "entityType": "Host"
+                    ]
                   },
                   {
+                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
                         "columnName": "FileHashValue",
@@ -9334,8 +9342,7 @@
                         "columnName": "FileHashType",
                         "identifier": "Algorithm"
                       }
-                    ],
-                    "entityType": "FileHash"
+                    ]
                   }
                 ]
               }
@@ -9391,7 +9398,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "IPEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject51').analyticRuleVersion51]",
@@ -9439,40 +9446,40 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "TI_ipEntity",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "NetworkDestinationIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "NetworkSourceIP",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "EmailSourceIPAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   }
                 ]
               }
@@ -9528,7 +9535,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.7",
+        "description": "URLEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject52').analyticRuleVersion52]",
@@ -9576,6 +9583,7 @@
                 ],
                 "entityMappings": [
                   {
+                    "entityType": "Account",
                     "fieldMappings": [
                       {
                         "columnName": "AccountObjectId",
@@ -9589,28 +9597,28 @@
                         "columnName": "AccountDisplayName",
                         "identifier": "DisplayName"
                       }
-                    ],
-                    "entityType": "Account"
+                    ]
                   },
                   {
+                    "entityType": "URL",
                     "fieldMappings": [
                       {
                         "columnName": "Url",
                         "identifier": "Url"
                       }
-                    ],
-                    "entityType": "URL"
+                    ]
                   },
                   {
+                    "entityType": "IP",
                     "fieldMappings": [
                       {
                         "columnName": "IPAddress",
                         "identifier": "Address"
                       }
-                    ],
-                    "entityType": "IP"
+                    ]
                   },
                   {
+                    "entityType": "CloudApplication",
                     "fieldMappings": [
                       {
                         "columnName": "Application",
@@ -9620,8 +9628,7 @@
                         "columnName": "ApplicationID",
                         "identifier": "AppId"
                       }
-                    ],
-                    "entityType": "CloudApplication"
+                    ]
                   }
                 ]
               }
@@ -9668,17 +9675,150 @@
         "version": "[variables('analyticRuleObject52').analyticRuleVersion52]"
       }
     },
+    {
+      "type": "Microsoft.OperationalInsights/workspaces/providers/contentTemplates",
+      "apiVersion": "2023-04-01-preview",
+      "name": "[variables('analyticRuleObject53').analyticRuleTemplateSpecName53]",
+      "location": "[parameters('workspace-location')]",
+      "dependsOn": [
+        "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
+      ],
+      "properties": {
+        "description": "IPEntity_Workday_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "mainTemplate": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "[variables('analyticRuleObject53').analyticRuleVersion53]",
+          "parameters": {},
+          "variables": {},
+          "resources": [
+            {
+              "type": "Microsoft.SecurityInsights/AlertRuleTemplates",
+              "name": "[variables('analyticRuleObject53')._analyticRulecontentId53]",
+              "apiVersion": "2023-02-01-preview",
+              "kind": "Scheduled",
+              "location": "[parameters('workspace-location')]",
+              "properties": {
+                "description": "Identifies a match in Workday Activity from any IP IOC from TI",
+                "displayName": "TI map IP entity to Workday",
+                "enabled": false,
+                "query": "let dtLookBack = 1h; // Define the lookback period for audit events\nlet iocLookBack = 14d; // Define the lookback period for threat intelligence indicators\nThreatIntelligenceIndicator \n| where isnotempty(NetworkIP)\n    or isnotempty(EmailSourceIpAddress)\n    or isnotempty(NetworkDestinationIP)\n    or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields\n| where TimeGenerated >= ago(iocLookBack) // Filter indicators within the lookback period\n| extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity\n| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId, TI_ipEntity // Get the latest indicator time for each entity\n| where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired\n| join kind=inner (\n    ASimAuditEventLogs\n    | where EventVendor == \"Workday\" // Filter for Workday events\n    | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period\n    | where isnotempty(DvcIpAddr) // Filter for events with a device IP address\n    | extend WD_TimeGenerated = EventStartTime // Rename the event start time column\n    | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns\n    )\n    on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity\n| project\n    LatestIndicatorTime,\n    Description,\n    ActivityGroupNames,\n    IndicatorId,\n    ThreatType,\n    Url,\n    ExpirationDateTime,\n    ConfidenceScore,\n    WD_TimeGenerated,\n    ActorUsername,\n    DvcIpAddr,\n    Operation,\n    Object // Select relevant columns after the join\n| extend\n    timestamp = WD_TimeGenerated,\n    Name = tostring(split(ActorUsername, '@', 0)[0]),\n    UPNSuffix = tostring(split(ActorUsername, '@', 1)[0]) // Add additional fields for timestamp, name, and UPN suffix\n",
+                "queryFrequency": "PT1H",
+                "queryPeriod": "P14D",
+                "severity": "Medium",
+                "suppressionDuration": "PT1H",
+                "suppressionEnabled": false,
+                "triggerOperator": "GreaterThan",
+                "triggerThreshold": 0,
+                "status": "Available",
+                "requiredDataConnectors": [
+                  {
+                    "connectorId": "ThreatIntelligence",
+                    "dataTypes": [
+                      "ThreatIntelligenceIndicator"
+                    ]
+                  },
+                  {
+                    "connectorId": "ThreatIntelligenceTaxii",
+                    "dataTypes": [
+                      "ThreatIntelligenceIndicator"
+                    ]
+                  },
+                  {
+                    "connectorId": "Workday",
+                    "dataTypes": [
+                      "Workday"
+                    ]
+                  },
+                  {
+                    "connectorId": "MicrosoftDefenderThreatIntelligence",
+                    "dataTypes": [
+                      "ThreatIntelligenceIndicator"
+                    ]
+                  }
+                ],
+                "entityMappings": [
+                  {
+                    "entityType": "Account",
+                    "fieldMappings": [
+                      {
+                        "columnName": "ActorUsername",
+                        "identifier": "FullName"
+                      },
+                      {
+                        "columnName": "Name",
+                        "identifier": "Name"
+                      },
+                      {
+                        "columnName": "UPNSuffix",
+                        "identifier": "UPNSuffix"
+                      }
+                    ]
+                  },
+                  {
+                    "entityType": "IP",
+                    "fieldMappings": [
+                      {
+                        "columnName": "DvcIpAddr",
+                        "identifier": "Address"
+                      }
+                    ]
+                  }
+                ]
+              }
+            },
+            {
+              "type": "Microsoft.OperationalInsights/workspaces/providers/metadata",
+              "apiVersion": "2022-01-01-preview",
+              "name": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat('AnalyticsRule-', last(split(variables('analyticRuleObject53').analyticRuleId53,'/'))))]",
+              "properties": {
+                "description": "Threat Intelligence Analytics Rule 53",
+                "parentId": "[variables('analyticRuleObject53').analyticRuleId53]",
+                "contentId": "[variables('analyticRuleObject53')._analyticRulecontentId53]",
+                "kind": "AnalyticsRule",
+                "version": "[variables('analyticRuleObject53').analyticRuleVersion53]",
+                "source": {
+                  "kind": "Solution",
+                  "name": "Threat Intelligence",
+                  "sourceId": "[variables('_solutionId')]"
+                },
+                "author": {
+                  "name": "Microsoft",
+                  "email": "[variables('_email')]"
+                },
+                "support": {
+                  "tier": "Microsoft",
+                  "name": "Microsoft Corporation",
+                  "email": "support@microsoft.com",
+                  "link": "https://support.microsoft.com/"
+                }
+              }
+            }
+          ]
+        },
+        "packageKind": "Solution",
+        "packageVersion": "[variables('_solutionVersion')]",
+        "packageName": "[variables('_solutionName')]",
+        "packageId": "[variables('_solutionId')]",
+        "contentSchemaVersion": "3.0.0",
+        "contentId": "[variables('analyticRuleObject53')._analyticRulecontentId53]",
+        "contentKind": "AnalyticsRule",
+        "displayName": "TI map IP entity to Workday",
+        "contentProductId": "[variables('analyticRuleObject53')._analyticRulecontentProductId53]",
+        "id": "[variables('analyticRuleObject53')._analyticRulecontentProductId53]",
+        "version": "[variables('analyticRuleObject53').analyticRuleVersion53]"
+      }
+    },
     {
       "type": "Microsoft.OperationalInsights/workspaces/providers/contentPackages",
       "apiVersion": "2023-04-01-preview",
       "location": "[parameters('workspace-location')]",
       "properties": {
-        "version": "3.0.7",
+        "version": "3.0.8",
         "kind": "Solution",
         "contentSchemaVersion": "3.0.0",
         "displayName": "Threat Intelligence",
         "publisherDisplayName": "Microsoft Sentinel, Microsoft Corporation",
-        "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.</p>\n<p><strong>Data Connectors:</strong> 5, <strong>Workbooks:</strong> 1, <strong>Analytic Rules:</strong> 52, <strong>Hunting Queries:</strong> 5</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
+        "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.</p>\n<p><strong>Data Connectors:</strong> 5, <strong>Workbooks:</strong> 1, <strong>Analytic Rules:</strong> 53, <strong>Hunting Queries:</strong> 5</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
         "contentKind": "Solution",
         "contentProductId": "[variables('_solutioncontentProductId')]",
         "id": "[variables('_solutioncontentProductId')]",
@@ -10017,6 +10157,11 @@
               "kind": "AnalyticsRule",
               "contentId": "[variables('analyticRuleObject52')._analyticRulecontentId52]",
               "version": "[variables('analyticRuleObject52').analyticRuleVersion52]"
+            },
+            {
+              "kind": "AnalyticsRule",
+              "contentId": "[variables('analyticRuleObject53')._analyticRulecontentId53]",
+              "version": "[variables('analyticRuleObject53').analyticRuleVersion53]"
             }
           ]
         },

From 2db2d1a48e6cb42b145cc7d8a959d923bc2324f0 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 10:58:58 -0500
Subject: [PATCH 06/16] Update DomainEntity_EmailUrlInfo.yaml

Fixing format to meet requirements.
---
 .../DomainEntity_EmailUrlInfo.yaml            | 110 +++++++++---------
 1 file changed, 55 insertions(+), 55 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml
index 9dc1b0f59bc..35fd0588fc8 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
@@ -25,60 +25,60 @@ tactics:
 relevantTechniques:
   - T1566
 query: |
-  let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
-  let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
-  let EmailUrlInfo_ = EmailUrlInfo
-      | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
-      | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
-      | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
-      | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
-  let EmailEvents_ = EmailEvents
-      | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
-  let TI_Urls = ThreatIntelligenceIndicator
-      | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-      | where isnotempty(Url) // Filter for non-empty URLs
-      | extend Url = tolower(Url) // Convert URLs to lowercase
-      | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
-      | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
-      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
-      | project
-          EmailUrlInfo_TimeGenerated,
-          Description,
-          ActivityGroupNames,
-          IndicatorId,
-          ThreatType,
-          ExpirationDateTime,
-          ConfidenceScore,
-          Url,
-          UrlLocation,
-          NetworkMessageId; // Select relevant columns
-  let TI_Domains = ThreatIntelligenceIndicator
-      | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-      | where isnotempty(DomainName) // Filter for non-empty domain names
-      | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
-      | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
-      | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired
-      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
-      | project
-          EmailUrlInfo_TimeGenerated,
-          Description,
-          ActivityGroupNames,
-          IndicatorId,
-          ThreatType,
-          ExpirationDateTime,
-          ConfidenceScore,
-          UrlDomain,
-          UrlLocation,
-          NetworkMessageId; // Select relevant columns
-  union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
-  | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
-  | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
-  | where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
-  | extend
-      Name = tostring(split(RecipientEmailAddress, '@', 0)[0]),
-      UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address
+let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
+let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
+let EmailUrlInfo_ = EmailUrlInfo
+    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
+    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
+    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
+    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
+let EmailEvents_ = EmailEvents
+    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
+let TI_Indicators = ThreatIntelligenceIndicator
+    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+    | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
+    | where Active == true and ExpirationDateTime > now(); // Filter for active indicators that haven't expired
+let TI_Urls = TI_Indicators
+    | where isnotempty(Url) // Filter for non-empty URLs
+    | extend Url = tolower(Url) // Convert URLs to lowercase
+    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
+    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
+    | project
+        EmailUrlInfo_TimeGenerated,
+        Description,
+        ActivityGroupNames,
+        IndicatorId,
+        ThreatType,
+        ExpirationDateTime,
+        ConfidenceScore,
+        Url,
+        UrlLocation,
+        NetworkMessageId; // Select relevant columns
+let TI_Domains = TI_Indicators
+    | where isnotempty(DomainName) // Filter for non-empty domain names
+    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
+    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
+    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
+    | project
+        EmailUrlInfo_TimeGenerated,
+        Description,
+        ActivityGroupNames,
+        IndicatorId,
+        ThreatType,
+        ExpirationDateTime,
+        ConfidenceScore,
+        UrlDomain,
+        UrlLocation,
+        NetworkMessageId; // Select relevant columns
+union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
+    | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
+    | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
+    | where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
+    | extend
+        Name = tostring(split(RecipientEmailAddress, '@', 0)),
+        UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)); // Extract name and UPN suffix from recipient email address
 entityMappings:
   - entityType: Account
     fieldMappings:
@@ -93,4 +93,4 @@ entityMappings:
       - identifier: Url
         columnName: Url
 version: 1.0.3
-kind: Scheduled
\ No newline at end of file
+kind: Scheduled

From cc198e92e2ff1eb81ebe0f3c60cbcc35d412514f Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 11:20:16 -0500
Subject: [PATCH 07/16] Update IPEntity_Workday.yaml

Fixing required format
---
 .../Analytic Rules/IPEntity_Workday.yaml             | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
index 59276b8906d..7539acdfb11 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -23,16 +23,16 @@ triggerThreshold: 0
 tactics:
 relevantTechniques:
 query: |
-  let dtLookBack = 1h; // Define the lookback period for audit events
-  let iocLookBack = 14d; // Define the lookback period for threat intelligence indicators
-  ThreatIntelligenceIndicator 
-  | where isnotempty(NetworkIP)
+let dtLookBack = 1h; // Define the lookback period for audit events
+let ioc_lookBack = 14d; // Define the lookback period for threat intelligence indicators
+ThreatIntelligenceIndicator 
+| where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+| where isnotempty(NetworkIP)
       or isnotempty(EmailSourceIpAddress)
       or isnotempty(NetworkDestinationIP)
       or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields
-  | where TimeGenerated >= ago(iocLookBack) // Filter indicators within the lookback period
+| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
   | extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity
-  | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId, TI_ipEntity // Get the latest indicator time for each entity
   | where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired
   | join kind=inner (
       ASimAuditEventLogs

From f50d50216301412145a5cbcb7ffc6cae65e1418e Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 11:56:15 -0500
Subject: [PATCH 08/16] Update IPEntity_Workday.yaml

Formatting
---
 .../Analytic Rules/IPEntity_Workday.yaml      | 77 +++++++++----------
 1 file changed, 38 insertions(+), 39 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
index 7539acdfb11..ce55abf02f8 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -23,44 +23,44 @@ triggerThreshold: 0
 tactics:
 relevantTechniques:
 query: |
-let dtLookBack = 1h; // Define the lookback period for audit events
-let ioc_lookBack = 14d; // Define the lookback period for threat intelligence indicators
-ThreatIntelligenceIndicator 
-| where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-| where isnotempty(NetworkIP)
-      or isnotempty(EmailSourceIpAddress)
-      or isnotempty(NetworkDestinationIP)
-      or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields
-| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
-  | extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity
-  | where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired
-  | join kind=inner (
-      ASimAuditEventLogs
-      | where EventVendor == "Workday" // Filter for Workday events
-      | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period
-      | where isnotempty(DvcIpAddr) // Filter for events with a device IP address
-      | extend WD_TimeGenerated = EventStartTime // Rename the event start time column
-      | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns
-      )
-      on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity
-  | project
-      LatestIndicatorTime,
-      Description,
-      ActivityGroupNames,
-      IndicatorId,
-      ThreatType,
-      Url,
-      ExpirationDateTime,
-      ConfidenceScore,
-      WD_TimeGenerated,
-      ActorUsername,
-      DvcIpAddr,
-      Operation,
-      Object // Select relevant columns after the join
-  | extend
-      timestamp = WD_TimeGenerated,
-      Name = tostring(split(ActorUsername, '@', 0)[0]),
-      UPNSuffix = tostring(split(ActorUsername, '@', 1)[0]) // Add additional fields for timestamp, name, and UPN suffix
+  let dtLookBack = 1h; // Define the lookback period for audit events
+  let ioc_lookBack = 14d; // Define the lookback period for threat intelligence indicators
+  ThreatIntelligenceIndicator 
+  | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+  | where isnotempty(NetworkIP)
+        or isnotempty(EmailSourceIpAddress)
+        or isnotempty(NetworkDestinationIP)
+        or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields
+  | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
+    | extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity
+    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired
+    | join kind=inner (
+        ASimAuditEventLogs
+        | where EventVendor == "Workday" // Filter for Workday events
+        | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period
+        | where isnotempty(DvcIpAddr) // Filter for events with a device IP address
+        | extend WD_TimeGenerated = EventStartTime // Rename the event start time column
+        | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns
+        )
+        on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity
+    | project
+        LatestIndicatorTime,
+        Description,
+        ActivityGroupNames,
+        IndicatorId,
+        ThreatType,
+        Url,
+        ExpirationDateTime,
+        ConfidenceScore,
+        WD_TimeGenerated,
+        ActorUsername,
+        DvcIpAddr,
+        Operation,
+        Object // Select relevant columns after the join
+    | extend
+        timestamp = WD_TimeGenerated,
+        Name = tostring(split(ActorUsername, '@', 0)),
+        UPNSuffix = tostring(split(ActorUsername, '@', 1)) // Add additional fields for timestamp, name, and UPN suffix    
 entityMappings:
   - entityType: Account
     fieldMappings:
@@ -74,6 +74,5 @@ entityMappings:
     fieldMappings:
       - identifier: Address
         columnName: DvcIpAddr
-
 version: 1.0.0
 kind: Scheduled

From c3b66266f512aff3bab4071c53f26e1d525b8f42 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 13:25:32 -0500
Subject: [PATCH 09/16] Update DomainEntity_EmailUrlInfo.yaml

Fixing the YAML
---
 .../DomainEntity_EmailUrlInfo.yaml            | 110 +++++++++---------
 1 file changed, 55 insertions(+), 55 deletions(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml
index 35fd0588fc8..6cbc6b6c4fa 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/DomainEntity_EmailUrlInfo.yaml	
@@ -1,7 +1,7 @@
 id: 87cc75df-d7b2-44f1-b064-ee924edfc879
 name: TI map Domain entity to EmailUrlInfo
 description: |
-  'Identifies a match in EmailUrlInfo table from any Domain IOC from TI.'
+  Identifies a match in EmailUrlInfo table from any Domain IOC from TI.
 severity: Medium
 requiredDataConnectors:
   - connectorId: Office365
@@ -25,60 +25,60 @@ tactics:
 relevantTechniques:
   - T1566
 query: |
-let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
-let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
-let EmailUrlInfo_ = EmailUrlInfo
-    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
-    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
-    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
-    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
-let EmailEvents_ = EmailEvents
-    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
-let TI_Indicators = ThreatIntelligenceIndicator
-    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
-    | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
-    | where Active == true and ExpirationDateTime > now(); // Filter for active indicators that haven't expired
-let TI_Urls = TI_Indicators
-    | where isnotempty(Url) // Filter for non-empty URLs
-    | extend Url = tolower(Url) // Convert URLs to lowercase
-    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
-    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
-    | project
-        EmailUrlInfo_TimeGenerated,
-        Description,
-        ActivityGroupNames,
-        IndicatorId,
-        ThreatType,
-        ExpirationDateTime,
-        ConfidenceScore,
-        Url,
-        UrlLocation,
-        NetworkMessageId; // Select relevant columns
-let TI_Domains = TI_Indicators
-    | where isnotempty(DomainName) // Filter for non-empty domain names
-    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
-    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
-    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
-    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
-    | project
-        EmailUrlInfo_TimeGenerated,
-        Description,
-        ActivityGroupNames,
-        IndicatorId,
-        ThreatType,
-        ExpirationDateTime,
-        ConfidenceScore,
-        UrlDomain,
-        UrlLocation,
-        NetworkMessageId; // Select relevant columns
-union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
-    | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
-    | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
-    | where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
-    | extend
-        Name = tostring(split(RecipientEmailAddress, '@', 0)),
-        UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)); // Extract name and UPN suffix from recipient email address
+  let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour
+  let ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days
+  let EmailUrlInfo_ = EmailUrlInfo
+      | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains
+      | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period
+      | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase
+      | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated
+  let EmailEvents_ = EmailEvents
+      | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period
+  let TI_Indicators = ThreatIntelligenceIndicator
+      | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period
+      | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId
+      | where Active == true and ExpirationDateTime > now(); // Filter for active indicators that haven't expired
+  let TI_Urls = TI_Indicators
+      | where isnotempty(Url) // Filter for non-empty URLs
+      | extend Url = tolower(Url) // Convert URLs to lowercase
+      | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL
+      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator
+      | project
+          EmailUrlInfo_TimeGenerated,
+          Description,
+          ActivityGroupNames,
+          IndicatorId,
+          ThreatType,
+          ExpirationDateTime,
+          ConfidenceScore,
+          Url,
+          UrlLocation,
+          NetworkMessageId; // Select relevant columns
+  let TI_Domains = TI_Indicators
+      | where isnotempty(DomainName) // Filter for non-empty domain names
+      | extend DomainName = tolower(DomainName) // Convert domain names to lowercase
+      | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name
+      | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired
+      | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator
+      | project
+          EmailUrlInfo_TimeGenerated,
+          Description,
+          ActivityGroupNames,
+          IndicatorId,
+          ThreatType,
+          ExpirationDateTime,
+          ConfidenceScore,
+          UrlDomain,
+          UrlLocation,
+          NetworkMessageId; // Select relevant columns
+  union TI_Urls, TI_Domains // Combine URL and domain threat intelligence data
+      | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column
+      | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID
+      | where DeliveryAction !has "Blocked" // Filter out blocked delivery actions
+      | extend
+          Name = tostring(split(RecipientEmailAddress, '@', 0)),
+          UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)); // Extract name and UPN suffix from recipient email address
 entityMappings:
   - entityType: Account
     fieldMappings:

From 76ddb22bc94d67ebb5bd088455b7f08894b120b3 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 14:10:54 -0500
Subject: [PATCH 10/16] Update IPEntity_Workday.yaml

Added  Mitre info
---
 .../Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml    | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
index ce55abf02f8..66b6b96d7c2 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -21,7 +21,9 @@ queryPeriod: 14d
 triggerOperator: gt
 triggerThreshold: 0
 tactics:
+  - CommandAndControl
 relevantTechniques:
+  - T1071
 query: |
   let dtLookBack = 1h; // Define the lookback period for audit events
   let ioc_lookBack = 14d; // Define the lookback period for threat intelligence indicators

From 77bcde7a4485e0b295a8c225e5c1bf9144d42917 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Thu, 21 Nov 2024 14:55:15 -0500
Subject: [PATCH 11/16] Update IPEntity_Workday.yaml

---
 .../Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
index 66b6b96d7c2..705b0a25933 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -1,7 +1,7 @@
 id: a924d317-03d2-4420-a71f-4d347bda4bd8
 name: TI map IP entity to Workday
 description: |
-  Identifies a match in Workday Activity from any IP IOC from TI
+  Detects a match in Workday activity from any IP Indicator of Compromise (IOC) provided by Threat Intelligence (TI).
 severity: Medium
 requiredDataConnectors:
   - connectorId: ThreatIntelligence

From fbfd486698b8027162878b4910fe4bed8e21af97 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Fri, 22 Nov 2024 08:45:42 -0500
Subject: [PATCH 12/16] Update IPEntity_Workday.yaml

For new validation
---
 .../Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml
index 705b0a25933..6a7ab357682 100644
--- a/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
+++ b/Solutions/Threat Intelligence/Analytic Rules/IPEntity_Workday.yaml	
@@ -1,5 +1,5 @@
 id: a924d317-03d2-4420-a71f-4d347bda4bd8
-name: TI map IP entity to Workday
+name: TI map IP entity to Workday(ASimAuditEventLogs)
 description: |
   Detects a match in Workday activity from any IP Indicator of Compromise (IOC) provided by Threat Intelligence (TI).
 severity: Medium

From 1f4f0a2be1e3f7904b2b9c566a5caabd90f71b58 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Fri, 22 Nov 2024 09:51:59 -0500
Subject: [PATCH 13/16] Update IPEntity_Workday.yaml


From a3604e9dc511009e65b699983a469f14898a9bc7 Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Fri, 22 Nov 2024 15:03:30 -0500
Subject: [PATCH 14/16] Update IPEntity_Workday.yaml


From 22749e26a8fcda28c8def1870391939c18cdbfaf Mon Sep 17 00:00:00 2001
From: Josh Kolka <120500937+MSJosh@users.noreply.github.com>
Date: Mon, 25 Nov 2024 08:47:22 -0500
Subject: [PATCH 15/16] Update IPEntity_Workday.yaml


From ccf1254983233e27784865bb7ab759d1bf4f8392 Mon Sep 17 00:00:00 2001
From: MSJosh <joshkolka@microsoft.com>
Date: Tue, 3 Dec 2024 12:08:41 -0500
Subject: [PATCH 16/16] Creating Package for new detections

Created new detections
---
 .../Threat Intelligence/Package/3.0.9.zip     |  Bin 0 -> 57318 bytes
 .../Package/createUiDefinition.json           |   88 +-
 .../Package/mainTemplate.json                 | 1696 +++++++++--------
 Solutions/Threat Intelligence/ReleaseNotes.md |    1 +
 4 files changed, 868 insertions(+), 917 deletions(-)
 create mode 100644 Solutions/Threat Intelligence/Package/3.0.9.zip

diff --git a/Solutions/Threat Intelligence/Package/3.0.9.zip b/Solutions/Threat Intelligence/Package/3.0.9.zip
new file mode 100644
index 0000000000000000000000000000000000000000..d38de41431fe2eb4d8741ebfd6031ef7e7a074ad
GIT binary patch
literal 57318
zcmagEWmFt((>00@?(S~E-QC@S1y67p+--1o2=4Cg1Pzej!QI_G_#wIPbJp{$^S<9V
zYu5aj>DgV^uDz?OuWl82NGMD&Ffdp!M592RbYb%c3^Xt>=rS-cocC`(JDM6hn|`#E
zFg3HZvvjru+A&!<0qsupUmTZP(cZe*eE?C9#y=>2%!QuvOzTNEIfWOyZbiB{@Hf+l
zhsOo6OV&bJNV<(F<P^ou(Ht^~s1-^q{*cVYeXz4T`+^Ep+tIDhfGxlAb^R?S?ia~-
zBLy1GLteV*qML#1E<t^@9PMh(e2k-??YB-F(~thjedZ>>?zK{G>ulw7ysWdV-!lm}
zLuYhEY+q#uS06n#WbS;`-em3XQHsistZmww#eGhWGm*TReyhy!m!C=?81H%=Ay~kE
zDB(jO@k#+ImIleGY~wHl^ntsD+Hf%YlT%kOOr!wCHzysTss@!GQ;Y%!mdhuLO*Yt-
zLj>P~6{RG82jXzEx_MjclCbh3KZ0_FZfN7hhY2LZUxBCS@M-c{f=1Ygj^|Oat&<Z%
z5)(&TzRv3DY@cHCUJ4-3w-v*q=m?@spYPqc&!Rgzo<igwz1_a*@ywtn{dSh|A?J<%
zEElrk@H?rE;#Z0InR=fd8RJkdx;IlR2C3i#T=Q-B+w<2>^(X~F%K7tBJAw}MmfbKt
z#Urc7LS;*d9n*!>h2v<|Y(J|rH;^Dp5}FIZnfXNQRwZWvix8z3{B{s?P_WKS1fuPm
z)58pvLKrD8>M=4Y-JQgO1BZQ{)$vcPEmcEZFi}dPwtlE^n2%IzY}eEy0u|e(Mj{f^
zA_<tIi@}beF;I1kmYar5L^5XxaUseJ1KZyyy=5deHkGXsM-1*sg6{nStROrC&pu<3
zqOn&%X^f}Ia*_IOsH`pwBm}ae&m13(7n7oioo^D|x+N>L`OWV?BOA8-;OQBZ+A##b
z#k=6m4{YNi(6)+#9Fde#W(Y;XMS(grI0>VFxLn111r8JPH4mir0W*~2e$s;%nIqTP
zESHG&43`qpN}Zl%Z>1`kz>vzJlz(x%rzcFNw=|NaAwMHRFQIR)eRkp5BDo2hg|vBk
zjMDukPfbfwF#(y@TTkUptBwUK6nj-n`4n#acrn7-XCqW<QGtOEhjx>wNp38>LB`Po
z=_kVM?K@#(n^T?0Df8>G3wl7e{Ok3?%Gq~88ZZ6Z{9R{#5SRD~8ETL@Qt85V{@Oi5
zZL6BYGiXjtk+w`w1<wYLpfp{aMIb+^(w+ZpTRp)P8E|4+hhWnh%wpi}KMmbrTRwVW
zZAKxIF9mj$6h&*Kn~*m_^D}|h8?z#ol=XvJfjlx?2`;tvdfwDbt;s>Wh~b04Mam$G
zRG_k<?-vL%MCBq9N`eUA5aIlg{X}KN=pBZgzL^kb$Y}Gdiqxc?(w$NDk9#KJ#`@>K
z6Jv%%Xo@DXZa!u53x;SUd0G&P&O5+Uy)0&ahFE~R3m{iC;>2`X4;CPefRpeiBk}(z
z--IMJsp%x#>?^2-(QfEk%Ac_97!kfJM?_btasQ#EjM^JsQ+}8sE{a!avq+2C%koPA
z1?f<^^a06+suDeo^T5fGk{E%I7U<Q=qY}HFlsWxr>}Bb-VafM1049@a^+;ST)3+E*
z`S%xy?CG+JF7?!DwI-qpWunULXqX950;`+9RHbv-j<`|v@R=t#G}n#Ab|$}Rj5uKu
zzgrd*C3+aDAuJr3PpW9)uqL5ZcMBnE8~Vn;)ld95(<<WKtVW0vjiY<*F1bEWtgEdK
zcX}pyUl_*6P4+nNBDwr}h3AjCVrjB`s;B<abQZi4Q{&9s>HFM8@9!-7RD3>F;Kv{1
zie;YaY7{?wA1wjtN@V;4T-P8`c`ouFb#1b8n(!c30v(i#=1%EofbMMD=Y;6u;2-=S
z%g(jAPFc&Ou8kB?1;;<hv#;ihP7v!9P#;RSajaL)#1hZE5-32s$=BEy-N>s<j~SDo
zZBVG=wfR_F9Rz$R$*e&nsa1OY0l6!-iI}uYi3~wztkwr7%Lxb14tZhf&g_I#kvNVj
z((%)+2ED5h{9c0BW2Om=YN=Nrmn-$^A;JigWx0>F7q>Bx)y>!eNkv&P7A~?Gc60*E
z?3&xyE|%p}H=L7K(Bi9N>N3S>;CfJ-U|(hL<av5A5$Or#vFI-%J^19HK#6AB6iXUU
zI-XozIPa7wa`73c0Po8MR{zqz4-Qa3W}D6s#`*jd9D>&y)P{Y(72j7i8@kST13gCJ
z5UgDtZHlfSP#6b;AsFLS`8_2JA%ue@L(z@{+4OmqBR5{@@5Uvh3F6JKd>fa;SKJgP
zKW<}S)I)wV21yRhTuvHNQ)tf^Gd6L|ld12NYYfQw!E89+q^nyVB{;p5dia}!{emI)
zL`NFP-I~CwnW<Bu?<Ouv0Z-*H<K@KV3e4fud!)sBW1D>?cjXewN&IRtE^>@*7>1Wn
zm;b4}Q*NDYFkNs>q3bCb)g2Lrj>tQ?NF(wIG8Yv!SbSl-lMak5ux@Q3bsoe$0A?~W
z(B}{l^vX%<?F^pIS&@(elonoZZ$ijX!nGmR_;IYW9@>*>Wnharr$k7+09BRI&q(0P
z*nVBj)DNx=xyJ&hDtV9vyYL0H27);1$5??0q~b?LZEW*WrCRUjg1Lbr!28Gnhl;1Z
zdiX;zR;TJGTDr^0X9zM!Q32Np5PQ#8@Oz&l5jWZT*}akaDi7psB9Wk}*&3xv{_;<;
zX&GTC+VG%*C<fgm#42t2)|YlX7UX#I3I8eLF;BCe(eZDNFr)80kNaN^N3cK^yE&+P
z`LnEokE313dUeomWjnjzxMGYcT07a<y)>GMkAwfN)UA<J9D029oUKrXAxVANf^hZ9
z(^NPFbnWIS0JYyZaO?c4rj2kaQ>B$=VOYTA*m%XKU5$A=w|h`lQ5zvUlh_w9^p+X$
z5*zAt>LXJ!k<!vFXJ7>AC#-&jYdjX;ku$nsJ5)X0NqoI+H?%$IhJ_uwh1m2)4*JT9
zszet4MPywiTxm>RK^oOsTEvxu7X^w|KAH}by${_eb%bjZLnIrZjkxex;yfft^r$ug
z?!M@&`I}?Sr(XX+*NVxgAsyl+DRY+QY-Vp=-i3H|EnEmi*BMVIGm7Fyp1ZuPKz~D%
z!8kHB^Pzffnk}d*$qabpEA-n~p&eDkhb7Z2qNBCiN^uhs9M|!bCl-LE;gnFN7qr=6
z9P0J%xaqyXt;jx{)?7?T|ClF~m28SVEIQ?}&DdcoxPnIJuPatjumt)axG5bnuse+q
z3C^C@UvrGC%x0)}(2rd<T!y|4tpbK|kzV9s8AV3?g?Em5TgYrhE<4amm_rsLi4Yen
zX!z_3oRpj9*@8h4GF*H>>D`;$?JZI&`dSe4e$+w%;XH%2^tNiR4F<a03_6vZ0Nu0N
zt`725?C`k}{mGK(MWqp`jOr&22a<iVvo!yeil&i=RtrbXFW8Db(J#01+HHDp;1#L5
zfVHmBfZNclI|S+j%(lp@xz5GRR)W3nwvJSb7T)~wKNKU|Ee&RXq2ggaY3iqDy@grD
zEfx^KG#vNrWjIL$M4_V$pzf>f^%eJVI``6g0`ME<8B2QZx1S(0vT*RZ<NKK*#ufYM
zP>r4xN3dB2nLeIFJ+WrU6FCvAtYODZr<K~M1YYU|v`~>iW=EK5QC}mq>HWuEjYgR-
z5i9wNG5v%CV^T~`y>|Ha2q=-%$EkDqa7!X!DC#X5d)RUw9w{7!Ymx|iRit{McP5t<
zHJBA#q5kF}Xt~@2b+mdocn~5}5FU%pILfa>A-g2NAlwA6O$aYKPxhTE-iEdla!9go
zXOe8+_C3DNNMCfH-7-ZfT#WTWKcrY>j}WFd@EUU~AUqwZQTg3_Uwocp-p~JjueO6N
zF#z)m8kGH&_xo{1@Gv@*-f@;|?sJ7BWCaQ}pjbQYTGOY&bP1ExVVylkiE+rEj#l@X
zS(1q^6fehJ1LJ{x9Dp1EyQD?ML!kk0!o1|M;s2a9KJ4|uo-(`8xCfF}*M=qXC;;}E
z6a^IeJGT4$!QK%@&fy`#`~0G8@a<7lr7?AF-_Zn%#aVM6)1;Tk=bPHN4DV=vGU-?0
z%rPz5tR6GAQ3*X^5#*dWr@DkH4}N^<5Y;cf4RszjLG}#;<DHjRqbvrF4|8Ryn?smW
zX=rqr{^T~cw5MGjHuzwJ-!!d=g~`Ox8d%R!mK3BJxE~cItlu&oXvv>%z}#_&scerD
z!+?(&VJU~H6`LF#n%i)TjU3F^QW1xfRlS6fbLtVx;}5CaV!9z{SFZvBSUksLHG?w8
zaK@BBesrq-;)+VBn3HYsvNS1LwGt)^8?YHAAORc?0etZ?U{8!&e~bz^sr0Bz#JM|3
zhYgI55>SU08z)Fp7Q6i30aN#9H;+*eA3C7Jsw$ufO`{aPh8ba>Hq!acBERbE;3FrP
z1HoSA)8Pvy_yNivDh(stFo{K=S!T6FZ0pH~g#`i*fvGF>7hXY(B54xjr@5p0x-owT
zQG+9uiA>h_<tJXYIED@0Le`>!4)jD5O)SRkEzdLF2l!9y6seZy!n~t}ZSCOv({{Lk
z7$NOGL=${v6xQ^t41c+44vn4{eh`PG`iDB#>mPYkV^f{rpZT=C@kjTIZVPtlpd&$v
zXcX5lvcx5!V#Ok!6fZYpRBarMpfx64dKPqf5<zzCnzF&u>lu$rtNCYqojXad%@;6i
z4^9gb73?*`)D`sD<1Jrr29&JH+C=te1sVzpQ~62u<c=vJTFo<<U-)Z%8KbNIw_N~R
zq3pIgOO`!b1Qet|R>U7>G&qbx95BBEvfA-=enLNLQ4)xzMb9s`^68hR!XnGc%Cng>
zkl+noeV{f3yr9sS9|J6=#_hsn^#!UvC+1u>&f{@*Ul@;sDal4xI&R)1D-lhw-`Yxb
zpyEwC)ewIq3D{H94dj3MWQYxU0>UEN2FE-C<NOvn*jvOOus}CxOATuGu|da=1l*@e
z4_<1L22wvXr!7O?DQ=ngrbxyt@GPvu+w>F@Qf)(>a|OnR$a)uc0<L>3Y@k{86qXUm
z)2Y!wb@KvbQ!DT?l&#Hp3aLUo5a&ouRd|&VixRuv=mb(9zC0T_sqU#$oy>?)6bhg}
z*?c$mK=l!lmCpG9_1YdP*%WQO7bOq;i0BE4lN1Bl>F5yD>kQ_QVCaO{Ip;Erf|vZO
zC0Iz~TK*hSF}BhjCp2W6ViSy{i)98yj{#hSp|h-dGlU#V84lR4=ix>B@OUhagWFN%
z78ddazZHz5w<isB1GZaIGaCKryv&<UEuuCj)J-lDpf;9}BN5nsU{CINg0%KKsdbRg
zHt<#=)7aG|6Sa}sj^fA*!j;&d1+w#W$uSo#79sWM{8G-gmsJyP2_ACDL4yADlluaD
z2$6o+)+Z%JHVd^5q~BTL$ez?lU|%LwW67rk$eUf<QDZncXLj?mZ{zD8UKUE6OYPRi
z-L+V4a=YC?n<+T0?azbWY)?%SOz$JvhgxiyUHS(eQCSi0=;PwN1~zpGOtlZ}C}S%^
zJ_=b6j0zu2AA>GWXMUu3WX-@C?Qzt9RESoH>*{(e4d<u|t?*ogfwm#g>e&fxf|;$=
zm*Lc-_O(t{B|>%^*N34@TF-IQ@0I!t=iwSM%l>`qRO1)qww&j8?{c9Awvt>xu*M|E
zrm{FMMS66F+2{&TjIkl0=yAw4>>K(Hp$ABTtU4%7ysrVK5k};rj#60LG1+x6gLrLc
zW%tI1d&XXv{7&}#tIELm&$qvnihO~*;8h8=2Em=bk-2ex_DI8(!R0eN;AK)Bg-#rg
zhV1N=BC?fXjvKsRKK)GQqc<p03nml;)4YMf)+{*N-aOOTAUQ~RzYxgUiuIHbFG~3R
zvpy-G;jtjI9KEID=*x{O0lds5<}2jeD~ZZ~?V}7&d1lUzfq`X?!hyYSr-0cSTiR)u
z+S=Q^@233SK{@I2aa)#3V19lR-1h}Yu$xnj!D516%;K3AX#bGl_np#Js`p~7!G;on
zvrgDREwuf<%{%cn(bAc-qj`%k35G8cSSS$@kjR5Rc~JfL_2_c@_3fpb!}dHj&*?b&
zw99;H?bKTcDTjz;nkKqVunyQ+$DPJ~vW~-EvkCS2j!A$kL&^}?d{gXj;yJBqAG*8d
zxqUdC?G^n77x;tZE=C4Yi6yPS!>~)|0DxgLWWjMsa_4(8W;>rv0d05zE>Mqiy=)XB
zY4|wK02{ceH{E2<ng!GFaR2!g5iUPD&TLRdEX+_Jrr<jv{`6iHsV(kkV@nJBM7H(5
z$hgJMx;w_ua(`^M8ej3<D2%SZ0w_UsV?kT}8J2kbyqK5^W8D08Cq&&}|B{Be^T*gT
z_8R`>=Xrvq$f;*7uSU}Kt_%<3+Em^(L-Sq}Py2<9s!p8apS8iWSbXe$KP{HLutu9C
z589-cj9BNXv-dr#xlkI*h(gi@368HH02^XF^RG|P))L*FNZ1rwp~|-;0x#xXdwk&D
zck4)sPh->1vOM=TIM%a!E!lVLIRT5I_E!Aa<3FB(r_)vED^|XxZEK@%u!_j$y{VXf
z4&{<0sApR_H8+5t76%f|a-6TlcsgnN=OVayy@4;>Ye@02A_c!Hg7v=qUI<D@Cg0D~
z$bB|?<EguF-{Ji|{i@2q33z&bdEMN6y81@bt~c4>ZK-~A1?&{Gg$POrzaVd&Qlhy#
zush=?iz?#2ZgkJr?_;>4S%VGbzS)bkG}eL<z382+JK7CV;i8kLN!nW3c#&+|X*A=b
zu<(z)8*KqlC~JV_o;;%+%I4j*#r*7wwBlW$LAe*j%{S2-jcZOg8w!S=wFGUQNK?6k
zoN(6BsEF#P3g|!WcOP|@3ehk=iUmHdyq-KQnpswv_-%2UlwiMJ8?oI0$Mq@B5*7+t
zemtu0euoLtGC|;(yD))BWJ(n*IS#k7hF*_g+{YX#3eej02}$7L1E#L=xS_PdgGlZR
zJZ9YmZ$*+tWWAh`4Odpi`?qEAf}W()OXc!$a^+(<@>1j{bVi>a^fe>{=qsfTGz|8`
z0}`A{qc|l6Hb>reXWoYaB-P!$n=^~I)?BA2X;Z`F>Vk6;M(Wpf9O92$04qdPojBU>
zW*KNY^t_oSu4CUB>~WMR)uPtgUV7zG$(6DSTrud@g_qp2e69ke`0Zu+dya-*GQB;i
ze~DSE9`V>R1KmCL)e$51i|BHk>lbbJChQu#UB7Z^T<AOujMMmQUE<O->+sY?>ZlJS
z-VAWHxR_+XV=Pzl)s0EB)G2-s&oWaHpkjRReuA$2yeyd0Dx`w!=<eyjlyR*2s@L*!
z|B=lWXGTNl<=S%Vqrl)H5KHOJWDfI^Qt+k9HtRK|@1~_($?q6V!B5`du>=ou;urSa
zmC0W8%Xc39R(9ZlqEX}<#<2gdg!P|VkX4SHweU#LoGBH7-b?OSv8qIk@Ux<<))DRr
znt&?Xj{rt!m&x*SWZhU1qDIVF(R9&E8(W&p8gJxsI*{u(bc?SaKu3%?GwMRO*K~iv
zDO+dCeEeQXw<YU&)Y9T|)Phy)+i^4l6b>j`*UWshgmHK)J$SL8aqpK;dRX_}&Yrso
zU6CZu5eUZ%{H~smZ7W2!{d_Cst&#&HiB4Z6z$(03iDh0|8S`Zyj<YV}r@g0MX|b=m
zsycea{3g^Bhqh;gz0SxuGG0F$1_k3ynM0d??)CHDI?me3+3kj((Iaj+Y3OgEQ_jX9
z+QBC6IESdZa#Ifdj#Y=-l-0VM6zlZI+-awqS9_xc&1rmhBCS%{N(+hv->3V=!t)Ae
zaJ&(56T|C8>y)~A4RdBXD_zYBQ^d#i?Hk3e-5Y>s4S(ZpHRnOoviOiKl4ryTC-;Cs
zG81k6JpJdIqHzP=M(&e#gPNiagN~|}M?v`(B7#>oPsoz_BSc*T_4uy2kcEn0(2{q}
zKNptO%$XUNIBiEbVA>&_52{=n0OIG)&J!m$NF~dscw^P%UY{~dYQ%6b7nhkn13zVT
z6<U<cw>(ubMR``hHF{)yTWbJ>*tG~Ym^yo&=FMt-0eXp_d^`+D>f%Cp>(+@9So}r(
zO_|BIDuk|Hiy>8SNw3AyE#1uUo)8!&zCP>aQ&NONRI%Ee)oh6yqLQesT33|1xq3L9
zF?Pu>#9%RSQqjnat4fE?Ro}kUFbZ37D^{!P2xCfxFqX||n<vSGQ5ZazKS#5)A%w;w
ziN-Y|!NW!prG`c=NmQ{&kSZ>J-w6WTMK8`gjWrkW2WBs}z>LKlB0EYh=;;T2T++fZ
zb`mGAoQs4fx3Mz_N`Ax)XMxSkhy7$qKB~~D=@_3F!9uqb2xr=&Cl2g@VZa!pW<Z8)
zL6I8Iop-P)SUz58Be$ty>Z3och^%cQL(@E#ghp%TV(ydkL2s-rqV20<LyH;Ra1;-~
zJawxyYq93IT?1<ttrD%Mx@TChT6!s-=IrXNoyXgYu(x(W)3h|y5BfxaZro&`fx0=j
zC#hYg9DuFKNx5W7&aiGJBbkaBEEqd&+abPsifn|jj*rh*iN>fc_-Hob6slCSJb|@&
zhu>H$_H;zPvX+FcdGsEQ9T0@Ad6-DrSFYQtPTfbu)R*;#9)Q#YTWD7CnghedtxNBi
zIrnL^UE8VB$Tc5~`<tU=YePG1MPtqT!ARk?y3F)p_U6~*l`}M=LHrTqD~uSM)$P&&
zn74$}7PpMj-259C){8L}_kfr(w?`s3qYnKBQ`dKpj(<T`|6dTdKOiMk0_a_AXlG@>
zeVHkPmU&?NYPOw+BFhpZ$`%9Hf)M0IJ#z0y+tgFDYS{ZZW0|Cu_c*$u@zCkJN=f^=
zY*{EV9~%c;s|~69d|cj_vfQej8k2_ta0NuUF3$l1!JnammKcGsHP?dZFSC-`Mej$Q
z0cC<_Jyk`6o-%NZi-Z`-`lK2-nx_iIY`EHYdy&-UK%|?wk}Fi$HiFUA5(Y3n^5=~J
z$Oga~CW6iA%7K&<(l=vh2>KxI^bAMj4=x3A-UV&YYsSe+k^zWfCG^9)qV2H$`KUz&
zrqN_jUj*ezxcGSvdti^21s8&wJ@qF*B8oK`-8BUtE2)R+p)^o;6rqo1+EpdvT1eGO
zX3D4tZKNzqW0F*6hYJ}h(fgbC#Td{wWWbUxjR^Qo5M4@u9b8a&{9}1(%){1Ub7iP1
zqH)|<)#}GmSfXnI?pbOjDO1Bm;QVR<u#Rm7(J4d_r4_5TD3c(FjHztPW7nb6L%Zo)
zMC-}AEC^+SDicmoO|skoQXsuW$y_vjKqs^+e~}VgK;@AQyIj9(Ar#t<K^tjeee<CX
z(UA2K%l95uo&$H!8o)+P%DfdmQNJZhh|)LG8ZyTcF%f9dHH`zMDuRzt9tb9Ga#`q5
zZSRB>_42DhKrO0G4Hs7OIxjJaU>UdB6M}`~*Rn#dH?LXaF*aCxDc1BHOI2tq#(jh>
zB^}Oy-zak_h#&=uLMfN2$CCz5mcct(!p0`4G{wv6RPZ)3_B%U|T!1lK_4ct^K+Hm#
zZy*CSOBUG?Y<4&$E;ata*!~xT@Ev1hVYmn+peFW_BC+0fzCOh0=pZl~y73O_ciH;g
zjSyIRrSWuA`-`^%YL$s3b3Ft&7L<p2uRxQX2HFl|*dCpW6<)L+{x}5{CfZ=*Nspx`
z@`6}9zXdn=+osD6v4S{hm*5G3_(G#tF1J?PJnEGCKcp7^ODd~ikrE?_jY}@jQwnod
zee#`(RcLE~AcJDhCI}0K9cYx6g3NR1JAr!xs1gN98HnpC2m8YZbe8pG>vEUFUSUhz
zCGk;7+-Y#u>)<a^P>IAX!-J#gx-OizJZ5p7NOWNHW<gxrE{Lg=Er+5$)gE(sJ%kF)
zp)S4$(pMI%D0%m;vE7BCzc^TMY_M77q+g}(WZ)zl2^je~qKe@h@K<Y>1X%*ptJm0d
z^;ey|SdbVS=3#_Ys^7C)|8I7`DF2gPaxb|o-91Eu2QmS5A{L2}ba$||%SX@Y8>3qb
zSAZvq%CzUa?R|%M1@{5c)he(t0&5ir|5xmP1NkHN`afb95jV5^5}QP7fB+q>@RJMh
zVpf6BFj~u?Ep|~VH}QQ1QoO;M10Y_bU%U7phWSqnx?bzN%6NGSuRl`N{3F%V>giig
zY_P&l2lP;>VQa@3wJ~6){l%;{i)Q?W@45Ly$sfVj|C^im_uRk*tf*n_{2C^v%d^sr
zt9PxiY(BLESeyoien0LRbe=pE=UF9muM)+8Wtx1q-O0bUTm08{!`bh)V`Y?kk0Pkt
zQuJrL;_}%oi089E9Gu<-`kf$Y*W&$Bzta3+M;AnNXUK3i{9k>=3;wIGlRx^J&gZC?
zmWxAe3V2^cR?IZJP0v1FKe18CCv11^PBV4x&_K{K$$~9#V;A8HpWN%8;_+WxkV#ZA
z3>U=<s)=#Bp+=vioz>2s_c<Cj*@zq=^~f){JUyc7g>wDw@EUUkk$4cr3%(aJ*sH<!
zY_67)4==w{b2x(@FWB%WkkX~$LYord16M@>!sUM1`NKd#VT%@*W#=j`|MDlLnx1!&
ze)(6V!~Y@Drl4q><Uh(X(QO=2H;%8b6|@ph8l0>mMqP0{$+Ppys$R2OR*aJ9OHTmm
zPSR^CfaQva1b@-ah&XvStQ=P*W7s<%ax9EX<pFwsw65XQUN>y8e8d&XxO#|ae9My6
zycSASW(P*&CBD#frwbj>nKEp^`-f7ec){d9maTe+aQ<uA_y1!mhfUUtPZQvtf)5a%
z67#?U%;W*ed3jzN^fzG6@a{9-HPG*_7u6*F|LKC!L2Q6txgO7Sk>Or<vi_yo*dt|n
zCOQSYx=(3h7O?s)G*Y%=)>=oTE8|Z&{vUPGqpSTlB_HD~zf4#+J!wvZuW$5-pvbEO
zju43&W)`bgowLk@qNa7FzbJ$Ln7-~^Pk&6$_3n4Rrl^06`f)lS=@fr&lDJWE6>126
zLkv;5B|}h}1o=sm1lD!b74&}*7A>_!o+*Ddzde~hGOjw}n)7B2NYFpJ%yNSW#iusz
ziXCZ+Uemdo?w^M8pUQ?3uCJG3iav=)FAq@o89?&=C{5GwJiV6R774rz5O$bn=hEB4
zc5>$_wbh)P^uJXLskpx;Wo3NaeMiwH>NpoU&}-2HjFQ?r9^Xwi_x77;6BY2|@|nFh
zk-irUWz`S=LnzZ?x4zUBfAt9?VX<gdVy=BAa=zi(2#ulAvOEZ8L@r)3TL-f?`D21Z
zqC%VXKI5NK{$ExL_m}w#L2Gwsv6wg8_(?w%n01FrT0(6AnhSO*Ts&z(9P*!3VmG9i
zrq{focn@SVCN4T_QT<3NSzfI9pW4OcRrR-Eq&~fOS#7E5BhThFJlCFmL8x=?g=^~K
z`+zv55!O(pUVZNWSs75Gnu3z6^nZzU<GRdndkUGhKJ2PSXlz!5ExFf4)jnS$a)L$1
zDIl$%*Bwgx*RA94?)cjqzr6P~d7C@kzv{YNBG8@VBwJYE?k!@wU=W~<{D!Tq;CX6X
zW9l9_H#y!tn50=pUTg4IU}gVlSSr{*>Ft(?mApg5B1khRm_PS=F<zcs1s78Sj4}D&
zq!X>4@H5s-A0oFK2oa}g)|rIq{-e{#o1}jxmp{c^CQkG~1G?=`Zcqu@o-gPamk(V#
zP7PX00<BT6XKvHmPaDBEzBCH<AE$NsHi%IC&us<W=F4n<$v@P#FH)EaUbu~rmSkl^
z{5dl{aa-o!w)me5Xc{%E`RA-Uq7>7^*{6+<wjDJnf&mDJJ%f#lfvN4r&bqG4M}grv
z%)`g;mEo_hu>WN9eP(*E#&RW41UfntfBWHgYfsBX(QX7UWv~Fmb|`*Zw;O|zTW1WG
z5->M>WSB09`(?iO4E%*~HB&D8JM8>vhv-l`4}CX(6+!<#x{-=L27>1*>QDE4VLSb{
z=G2*oOiHut%%_jSRrwI`zw`h&QM<oE%tlVj>NqXnA%=8i3)!H6@vjb@wCv?p-FKk+
zo;d3ojEpIp$W&<G9tAr>(CcM=`zN0(S>K@lG&4que|o^jIN8ON`9^;6k`gx~JaG2X
z)j5EX<&oeBu7Abk8G-AoDbKslIR71X{>veFqW_=YJq4GKGpZ57im?~2Z7a&|VGK~b
z*OWRe8#B+qT#4HLx261xAQ6}G$L>o$4ZFHhT0q@uxWsWNE#rCIqYG39%6U8RdcOZd
zPfmh&oY8KNly_z!WL)i)zYEe-(bi1tGF3<H7=D!TY90D69Q4{*;1ff0_-uD%Ec_Yd
zC3tJbrD+jMo)$UqK_GiPAod%AEfKq`WP@ZTgnCZAcr!q;QxdFJFGMKIgT&`NQN<a8
zO#zqj=10^1-TUqkcozC7+gBk<^JQAFx%!Yb*^;2~NJ?Snt}<?i{`tgI#+?WLb9QG0
zOFxWbq&9duGps1}aZEud4~EoDJ!IScKp*j=ABiC{shp=iE9|)Bq&8=XXt5#b&b-cM
zuSpHZr>CP0`%AoyT=);%YXg@YU%K|}*Q|4%AF8;_DRO-ZKbPyUe1#$unh|Jzfg>sX
zQgCtgcW>0z=E_wlCuAZf_Aqe}mt!=VJ7k>ezc)s6BF0#wW@%gd9XsO(--3E~P{@%c
zQ9oyrdbX*3uTha5hT1jYFk6VP`SDfNCBZGhWAKggcRc3PYzl-b3;K%}vHr7IA*E=U
zcLaW}WRW_@;}>ZC_*}-MnXVI#82aBE%3*!qGR4XEzdFgrcY2WhL@Bz!AqgXT<i2uL
z`Bf4bIQ$Cz6jG}vMrN8POybeEa{axn#2Tplwyh_|Tja}%`><KXEsrRwWNcjA-Dpm-
zvN270ndS=Dx2fETmbU=|Glg*Yg@)3?te|WW1LqZ}lH4QlDFcws-OFUXZL|ehVdTUA
z%Z4NCK>1?o6yo^X6gJtb55Ums+QyAwi8&9z{H!v`t>Oc#i%0CG+nTBrxVYlfG}5yF
zmIpmBIHLk9Zp(u(7&SAQk!R4S+^}kGfmWbTG5`otb~=H3K8nJwF3B>qXg=;6Me4ec
zae|!re9_MgGze;B7AI-<w1!;o54poo;XyVd_7*}k`%E4!Edu7+KfNZ~dJHoTF^f%C
z?sNa@|Dh)%mo=ss&8lm&BwqNzUO@0w>$&?pJGFR`E&bH*fdd$oW$lhyFZV+tRvU&f
zXkOt`pFeS`31ca5n}o}e5^~Vf^XVJ`xHp1{^+u8Gc_lbHlBSGpLO$5LLaYjx<`J{+
zcN2t&p9YjBjuJ@Yb=DY2-p@o)>Ai>Kzlpo)NT6@@v&b>ZcVD84UmEE^O<_4D@XIIC
zJ9S`u)cP_oyB6=-<Q8GA%wch(<H}NVhumb*ruh0m??qTM9IjLwe=Q7wGyy`zh4U(l
z-#AL0zUPi}2)By<>DMTYz}!uyMm;jqa%a9iamaP!;NqKm(fM7r3lZfvTYIKJ^ohMM
z%viT^euvItdwSTw3*^nZJL2)kdG_5LiPus%SF<q5My%g0b?b@eneiirTpEcIMC0O~
zTj6hGs=P6w(Ik06nRHRM&*sqm;4{(D==mnSJ9cbywk~xw_Y)EoF!!dkDu7Mr9U5*g
zxZ}_Tz$C<SDWh>Q*z7<fh2Y|EJ1WbiBCZd~Hoq1E%zf0$Wew1{0T|+xj1LaUs}L1|
z_5Aa?Q8wz$E+abWi9Z?Ym`5H0P@F<OZBetXQS43VsAY7eu0teVdG`MJ&>(1hy%)=d
z8DD}GW;|!e#K|I@#IT7tyL4>?!#TYwC5wWKwoaqalo>l|BX8qy*h0q+1j4=0ztSI=
z$J^#&gf(mcp%Vs2c5GrBVhZo;Yua{cUN8;!ytU{Hx40FM^w5?4MQW072x~-*FW_G_
zi<$5ANH9BmaCE*|5wr@Hsk43^cRoaHONcgaf-f)Uf2B(lV{*2>BsIgiFA@m-)S9~Q
zg%eqk@OYi#>afQL;WiPVt&f(Zi&&uz&x<V<ZklU{rqKe0UJ>fO%lzqbR_jsXGw%nl
z#Rvmas+z_CEyK3%6#DOqZEhc0UC#TnIy%dLx~=b7*QvRkqMvC}aa*4nRIOIfh10rL
znCX+tx2k@1$+62>=4dOBRjl%MGxEi(!WYgiUako{j1W5Xo-hbUX&=6?JaO`^S<AV)
z&`bXQd}&OnwqI%$C7~;46&3VoKuxF65f<Nb?a3*XZ*NdZKoO5su2&!kQf>$146VDj
zZ=elth1I#{WO7|P{QeLEhGCf+h>0Q!df(L}KeGY=CzyMzF_<zxjUjvJa5=>^B6wk1
zlu%e~C3DlLqb;SkGIzy$6?O@9ck=x5Zw6CAYe;peHdF4+kaF|e+?F!a)^9MRV4rLH
z&ci#!CUr9{t~)~-Ni|RiqbPtj8T2qCioq*&gr0|TEh>u9RyCUo2g2jD$cIt1VYKMe
zW4FlnmTn=p>C?mFiZ9D8@2fDz7-86#@1;h6t~SO<wh5d4*sE)dk+x*LATb(&&*cCl
zUdQKBh0Rd8>{;Ws&%bM(BcA8<&~wAB%-fJ%#k=@Uy$XtjRd4|Ez&qVLV3v7}SrJOU
zGesEuxc8T-g4%4{m;eTH0wu2aWO`2a*RO}PwfX^CJgvF?_P=XWBaC<kI+3_Ii$u<q
z1jLYY;bFoO{2BcbVH|2uVa|I=5h1)mJ$N!;q)gpxg?ae7dDG`QV?$sTsM`8;n@|L9
z1D?;n(GHm5*K5MQ3ZaqvO>LaifKQ+<8D+VDVBtu9J9OqqP$EkWA`{q*V%nHl*AiDc
zr>S%s{go1=xQzk#0j0MZ#mvdpzJyA_1L>*deuqtM$3|z12ziRxde`@%+KOP4f1hj`
zBD3aL>LQGd<oW<Q>M(L61f?uV{{kErk+L^lgbI^rso=sOUi3~{+wBB|a*2=GNXT>+
zTwBf%_aucpefJ!fhNcpx!ua8ybExma?6a^0B<ql_9BvoR=*$QF96ih2V!Susnx3tq
z=1>byLO(IqQJjn~%HtL%*Npy(wNzJC)SdHS@eq*<>o~8YPEK=^nBObqzEQpop3e5g
ziUSx_Z?`h@5t3Pr*Hyj=Oz$-WYpHOTt-2<|x39rgI%;xs7i!EP7<AT<CL2|WZVy<r
zW_nG#FtlkUp8JxK8k$f`Y3>RV)R(@6Qz4k`&O%wZ+ljM_K<g&3iL+V8b&w*Ddpk=r
z0=>kdO?uG>bvgCDphqUyb0?<nE^+tCR{#V#jbzkGPz8`yJrjZiR&Y%(GV7<-t#L$_
zkP~${P{*U_Y7jek!?#AKjt;XV%Otoc@d5xobrzp3+etqd1d|+gD@V{A9#~6|q)0Hp
z7!C+?yGOfO@begx=BC7m173)X1_UQ@69+#?{mcryZ;&$i)h32FPS^w)1&IzS2rS-0
zODIqjz$I|E;+OD&6?k%B%UN7{!0UwYHPI4sCuQ^I2x)BS`%*w4jC)NdVw7#^O%k{q
zJEIgri9|)<yTHmvVsw7)GqW$s0w3GEZ?B*ieEoUZb#uN9`E6cy+pqO<uU&BJ$3CAx
zQPR}c9T8$QGZH*c)+-}^)Z322PaK+(9Mw`bVX5Ah)zcxzNT=T|kP)>|jSBK!W)pwe
z%UQZda;$uXy#QC2n}ofF+^14fPnum=CS6~!x+B#dZIdCgL@rH1S>o3KTuNa}nQ+C+
zfvwjNGt2OMcFNC)A|t2GJw2Q*BOq}lw}23~A0Mw6eV(@mvS3)=w(|mj_)guu)>wn`
z_B>sYDbv>t_voKRQTAWWv)HJ-rQn{lN_EWL!!RxaK{-oM!l_blX!PDv+GtHM-MtD!
z(hwzO;G!R>ooYmnd$arK5$GSal0?SbL-ti=LjZ4XeWw+IwG1_PzF@v$Wo}eg60<@F
zYh`Agp~^Z0y7_1r1jaEUMBK`iNXE%LgGpT%xHP!lZ{izkQ?n*u!g&!bO@1BTFA*bX
zeE2=aeVAQ>8H;YMnPG@3zaGsXn_R`D!ufW~JI7;M^hJQjWsqG?od@#%O_cy>&;4di
z$S!EJ8Ig1RgRZ9cUxh$xrf4Nttm|{-spksNA6?dcAV^)wK4v!wjk*P_bMAE{@Yc0!
zYJb?{SNDp3h|y8~{Ouem>*|1Y9sTA9pVRI~iO5QVH~j)}R}7+h?29IJ_(J^0ZBZ4H
zSX8eU+)3#Bh(RW4Bn_x9!nks|5R)BHx=Fj^?YR=MU}72rEhaY-LRR^>jPVdp*!dJm
zDrjoLhmWeL$CAPf!JaA-{2HRXNd*LQsz|05A@v_f*KlN{dFAq)@8(K_0OC{v9QdM}
zj>WeH$Uh0Hrl2#Va4N&-O9civJ#(c{Yy>@xEN6Oth0<273QH`Oqo~f|xYiu^ofWd2
zZjs3y82f}>flyS<is(DYdwhLPm<I#0ocEB7!~G={Uit>*r0Jx46;<pB1FE3RI=;G5
zQjpH!T-nv*M$?n7&#vCsxWK`|q>6N%(p`scI3C8Lk<qWttw;#rEOZTU;_Q!LPn#k<
z)c(Mxi^t61B<#qxzx5-I0vRlvdoA@o9Pe+E1#^{0m%3hDot!?9xo&*};tT)kY?}_d
zxM`h`crvqkvRje2V41WRjv$%#q1}Z%OcVwT;IHZ_hz^N%Id6M5g?5qhYgnxY%DOzX
z7#>J#Z}er485=e3Pcj4Vl7MK+)G*<1J2Vt!#pH7d+n%fDV$2kw9HVkvw&D3Yr>F<B
zK~ASb6Y4qX6{z7CVWDsQ_Fdk5JW(T+<2ti<uK@q`C6MdkdXFaf%6Xn^sc76mECosm
z&@~&zjA`;>2#;wq`Z`jbFA`(iiv}#&*<NPlM-bsk{|XMWFsnp}YotLMIBjAR(iGof
z&P}zSTmB+<FGy4j5AW_}{q6iM)Xz=ul7HKDKyF+%>|l;}GcrI#$EQ;X<dfQ|isB$P
zuOXC|p=A$?2tl%?Ou;{&jXko7n5GsItAAmQ4gNFHaErB9U|ERX8Z(oR8hW%ILQ@BX
zja}-VaC1z-zpi&et$U@y4)ZMxJU#qe@C<V7=TOqDve5Z3XwO2pvv^F4Q&GPe?o-AX
zRc*PyVz3J(Lzq>CZyhBSk%6S7BnsTnMa|GFE#_>1Rx+EW21?S0ApZIAUccx0^2Y2(
z%ML=fV|12>xxnn^5!)&uTN;)EAzQ7S=H;bn*D9B+=1)Q#bz5m2bLHk|Y*-qz{`Yvy
z>%r`9RkvAf@)sRKPFg=owe`6xZ%6fu?;c0>M<X6bSGz!XN9=CA=4YDVIF(O3`b59{
z<j7vKS`l}9#cyLTNY|AHCYtZol4m>1QQXy(i8fRr`Dgrzl4He6A$f?|?LQL@QBUWc
z{6clrIcWDB)}_+OBFG;{Qrr(I+|4_1PWmj59I1&ySHqmt$yp*UKjE7~Lb6&vofk_#
z@TuBoM7-?^r2qLqlkSTbNuI8(-tDo^Dqw!;r9k2IkyhO&$x>fBEupV5QaWu(`Ggi@
zDU9G7GSdf*Mbno}C6-yGAx0i)4U)|t&+&Gtmz1!-)v(-tN*}mIt5ZjHEh1$re>U~I
z61cZIx1XP2lRzw0W~%JH_C$ebCECX?2U=PanoDL%Kb39sIN6L*<>H(IzB}wSYi{$r
z*D0QH{Gqlcp7FbO`%ILWb(@-q^-&F#kJqauiS{@b8K<|K+!)W*ml?@X;j=D%x|bR6
zGuE@&`;67?0VH0Lj$I%1w3v4^6+>EHIaE+kCSvt?%bp?{R2MR-S)0petoWTZ4-K?9
zhw22+Ab{!(<*4s1jYqPU<f5FbSjU~Vd_Cj++%<^kizJBp62u!Tk4};oHG4S}*UD1M
znEjF=WGR#AKkc?zx5)9Rp%G(z&jWu}y8<5v!z6p+qUKMGIu@5@7Ty+2`Ey2oYA0-T
z-KJy?0T&k7d&>0b)zsDX{oa@w$CcwS(G%U_^9LDh2H7OhnSgZjN-EErAiWXfJ(Yt+
z_I*u)z66>i5VP12jQ9_!=Fk8lvmhtOot-n81~aC&%UcN=doB~_7jN#=2d1WG112da
zLq8#SY^F3?_bKfK)YI?sQvRo;M!2_mX4Yg2$&-A=m|499v6I{q5XNl+-8{d1AwD4M
zLa?8O6<&p4;bc&JHDgWx5ezfTuW)A@D+(iKd*p{`Q4XX@9TQ+v4Yo_f%WUG!0q;US
zID>m}w(+~TVs@^D!$vb@%Ba~pMz70A!eOO|r~MTY1Cc{u-81V21rrphiK=<E8}UR@
zeV46&y4glmxwl}!(JRxo6bS7{*jM4Ef@)6sybwC1VA=yLgMYodpMs`2Cj1sn9}#Za
z^uYAcV~3<`(7ikt>N-F5iD>y3AWO;cyeXskl&34(xJd?DuF7a%Haw?mDoFtRcN;f(
z>}$I}h+;xpI*Qtr#k*gm=OReN?eIw+81utCUYC@s6G<p*N*;RyT(r<HIG|K9KC$rC
zO-rlcgO#68TYGzc2-53?LVx$$G{U8y(Qkc+@||-r5x8w1${kKMC`PQgXZqo))NhY+
z-F_&-L_TFdW#>*uzLTo4%(otm^|Z^{vxlbbSU{GAFXe0N@jsL_lNd_l4BRC!hcl@i
zz2%KLG~+#U`-*GQqPilV<~wgy4po`6fRpX^Dw4ZLc}!$W>aBSx!@e!L8SB2e9xEC^
zjfW}#)&{e7DzLqrn{eEMy2<&6wk<pg*u#Hzm^Q8y^Wp}S-XnFHBH6AIH$Sy6A98i1
zOcUIMa1qel1<yMOwg3s*R~w8%ocW8_T0E=Qh!MT|^LG1$yQs{<cyhORTpb4;q8^_T
z>=k#AXc5&`h06MGrCxEl;dbx@WMD;TiNj>0KUrz~pzTElkggtRO4A8pcf-b(jnY_y
z?Ag=6ej9H=8>Gn$5g0u5Z;D=V#t$(|CcI(^JQPmc@chiH&s;1(!>X%P13wQ^F3R?M
zOuth!5RF0BO>|ewO0eZ23s13Z7HlbVQz$5FNheK&#PB<HXLN#vU$N(xmoagc636Vn
zdkHsQaiDgtpf5HG(F6>0xXLz&hjxcSXRD2#Jw1W#h^oLcQWU_kMYbH7W^-qRcBWrS
zpI>7}<1@&3hMZp)j|%w9LaMof6$Qh^duFDip!uALC8I8v(_a}5lwG@+53E_BC=4Co
zdCniXiJJ0<tO2=fS5G{oT5P=pJJ|KaPNp!f2VpSuFrPGI7M%D%^zTPqQL$CdTY?HX
zG7NXk5b!=Wiu`!tU%B~NM)opzklvN4m1P#$)kg-A0-cl1+~>g(qlkTx9xGVi|0wVV
zm-!8i`&Smt$Dr#DG}Dn8lIVklF!2=z;;pUlh~u)J-(l!nA9~l!KU5q2q-4<Zq(Sq3
z{Ccq+9dh=SBw&K36@s&=*z9K0@EO__>Fha0fIDLc1W7y;CxGjleOxQqU>s&=%l%uz
zU?L!1dM!X509>ZhCk2Lp8eknZ4u)uNcOLdHEzpG^>4%+e5d1%FOqVD}D{E4uuJ)XD
zFA9Xri)~K0cLS9i3f9j_5+QaVSICcB2GGe#HdMCWx}QeI-2Bp(YN;S{9>O{w16dC~
zt@(TJCD1TOD;1bqbxGCCJEZGYfU_5`9yDL7b}awuh&F2|xFulhuO+Cm!+C=|1IbrR
zaWPgsbk1Ao5{(^jEoC*EaYbdDX-6}?gwH%y%(7H+d9QF?2wyoAm>#K^zIn75i%rEC
zTV;hz*>Uoj5#U>Izlk>(TS^tIANO?-Ct2OW!HLMXC|iTW*QTsn0%PlH4vCq~3Ic^W
zGR!JWb@d_5e7h}Ot6cY4zC#wo3ZC7=p;Uf@Q>bN-KjwO@s$R2f^u#uXz3FFr{7v#%
z4559|*%`8Qo<M)3(DWADdEG=f@!TK52y*E+#jEsT3u0t#d@ZOJuHC8`6pU1{Dp@_9
z<BvuCJQD~CxL?J7!P9|%V+(=!C=wZjRT=vd0w*C}(=K=t82rY{<f>4`YjxvKUodql
z)@5|I<@dXNk%e(XX`ZlGr4cl4@Zpk}Z_So-Nz)5TzygmH4k?lYtN>6D!Fj;qDB=Qy
zB9#2~ROOohv0*~682zy)yM9VJK9^eoH;dY5Y_0g)+~zfoKAXZzNTE+@{<0T1N#M;L
zzSPLDs~AleY1a(<Dy7Y2JW6+o#sJR%Y`P%6@0>BrvC^~*VlV5cXy(%T%g7g0rS2Dm
zgXVCl8|qoK+*%_H!8>WU362X9<wkigbl-~j{TzXr@QKEl#V^WYwQ|{(Qr3?TpC0)&
zZxjfiDDFSi>X71JDsZPyPo!V0w@i~#%HOj`yDN|eU7ZS~3QaS*hicIYOxFpCaduzD
z*(}-9iTJ^x-oU-E<1+xq0W7g*BwhT?9l_s3L%(^ooW3|p$?)k$Aw^FSuGh!7HHJnT
z@!Sv{C1(*SKSEA)95<at_RsJ+%eL3F-#m+Y(S%ceSKRJ8Df_S%?({p=aND<2WM7*H
zAg)$&Mz8Oz1;WobXh-(z@9qXYArOW&4^BZ%S~$N6T-L-t%{G0Fr_tqa6?nVc%^L)H
z7?t$(m<w7+Q+^!7jZ$Ud9NIQwYwy?KL5&VRk{$ki%DXrE!~MghV=l|2kV1g6h-fN_
z1<c!q$Av&raOfqI33`0idLKfn8)&;=n;F;N91*w;LsE=lAa!vTj9@P*#?GOa35)d^
zQp_gp5uQ#z$|?hTG+(zEmA#van-D4BVIX5#cku22BQ7XOES4AYOSObMk^<D?(6Je4
zoVOWFSRUaT!Nxel|MCLdM)ty2@|gjwBM0dq$>d3lE&UF{hMTXI<%A-YhS=$;kA`VM
zuC_b1j~HQ)#VW~NB+s{&;w1ddiveGS{h{YuZ#2{z{BHEr)Q4o4PG$JALhiF-0HSUy
zv@$UbIPM<5Z!PR+WNC4LGlp^{_rt+N09?GR6q3~P@F0xB6cozy4{2xrbxMNk@X|nf
zFdqT%dcBED%K(Ve)f$zLV0Ehws1pJfuHP&WJGbXh)>aUGeSEOJ`xYfi_!~#=`Mbq9
zIq+bzmgALgJ`UQ#IYF*HdS5+l#`+n)Ka4ACGA%|F+K6T1^A>VP<1uw=e!oD;af{DI
zXVFt$o&{XXiZza~mN8i|#dnpnBG68^18q_Or3{btE}uVeM)HsCb+4fN_?Y0GirXfh
zfL{yr63cov;`A!UnW%-xZ-tyg<4%P~8*~<dh;Ub@a`UpT{0Ia~rh)DHUB`%e_V9gs
zj+2M3E}s`T`F*BsIf?dWg5Z=~9h~2sAH_AcKV??S#P`%6>_!g1G187Y5&zB$VuBIF
za$r4b$?-^S3+&|kzP#AD2mwJ`Mw~z-(Pzzja;s+!i(Mmla-VD1m9pk0D9<fWBWQCQ
zlC?Ie<JD~eCHt#vUO|5NN66~8R_4&DUqQ&1Q{0hKIRK?sJ_PJ(87RAp7K@G}Q0{gL
z6LYOeGL$CzFRYG+h)LmrdOjgD0)1^!>3r8{wjtGe_sxB65(fOGfhQ;{r$$_5*dBy_
zgIClBSyppA22E94X-Zr-DHTnqFW)JgYR9_<Ka8|>L=f^hZtoH-1}f3|xs&#2_y)Z{
znq=rCWUA#rWTG#I=L($1i?|A65Z=e(HFY$srM@x{zF%ELLEU}<BWCA#8)pt%=8YK|
ze$5qDEIs;)_qcq)zae)!0Y?K?yQA#0;g_!TlLq~6M=#$t9%uGbKWo1>eOi1ay?3#S
zdOJNmLTSgY1jhKZSS8tGq?o#P5FA!d;e|58Vf+Xdj^9z5BuKI$b|D)>dqFlSb;Se@
z^x!e~>51@Kzl#_?eOE#OEhSE$<?vY+JsA3IdAUEziRTmD;0dQej4G!H5{!gp7!eP+
zHBq1{{_H0ae5c?%^&8BTQT|#8aWeaGk=dwvnjQrcGB})1G>>`lvSEn*BiE(EYExcA
zVGoz=TvuGbFWC>AJWgyRaSY0?dEqH?_jQ^NTGS(j$dsnZ3R6{Xmh(eM#1bT-KBtl5
zz#aIE&`f;3`(iq?B!-t<g8Gcm;llorWbq)9pMM3kzC<EOD+DMolG`GRpQB+4dHx{y
zk$&j?mIs7J&X<-0Dr;e?2^JsnTSs}TC;=?kjqFib0t=o*mPO3FZ1I&hsZ%p^65QN*
zyr{GIyOJIHzJm3p!;cvT?;pK4x{={csSF(<tVraIDRpJpOKh{%U&~5r6$BeC{~x-(
zDZJ7q*gCfDWXG9gVspo~jY%>SOeVIoV>=Vu#>BR5+qVCF=bYRB?!{F<Rn=WpYt`zO
zb<7Nvm$^ds#>|s@HN#1@=xmEUB%CIE;|;!UB+)q8agVD6WswEe=^wf5BJ-+gU+l*3
z9+R<LKQD~!Pi~+Bl$hTPm$njZ<dY4nDT~OUH}j#&=*szv>i&AU_)m?UPNk8CR7w4?
z6JK^W#mFpqWk%i|OW@AM)+e<PQaDi4gJbsRl+WC*s?V(2ocW|^?7n8GeHo?3i=4Qe
z=SJe-=eEijhv={;eIEFm=D1Kba3H3SI$^uv4!$_a#5wV2-)P2C6rIB%zu=qql^stf
zEgm|?fU$B>WOO7Y+P@WAQ+iL^i*O`H!r){j7+V5eR+Mn?2gmOez_JyjOMF#CS0DKC
zD1J^MiaHh^u%<*@hODP;q56I(VO7tZi4JK7j^#x;8goO_LURRlWy?NtN3GwcQ};t@
zYh!;<5Bxk}|K(gtHF>()n}lQy=0OP&E5ZEayx&v3rVm0Q>u+BU%`sb+M?qJ#3L^D(
zAVr$INjq;m>Yz=!B)$06uFb=w&Z((+yMG@^oBlkVqt~gOsu{RJt)o@Q)ifeiD_aTQ
z^zobpb`{!(%%K+{0fq<qZJEg&pcx%4U0*j&oes#uCtduOnt7Re*)XQTE6GY;0!GHv
zm1yp=2ui@*T4`812aUzv!Q651xbp~xgcI8H@XK(-Sb9Y*$L|pI!+hwyQT^gtay005
z#?Q!s)90TC3*xX74)C*%LWwgZC8-+}2@m#RO_dMvB0Vrp`t_$z)QRd$Xl%q!2;ky`
zqsWXEC`1m?9&7O`_PUF-4i+gQX^}*D#2i}{MpMEGHXz=S*+p)Lu5KGwauXu|uiPVe
z7~!?Gl#AMiSbwP&$~a-d7MGtD>ibda@T~`yJrkvT_OG_&2O{MtR}h)AfTS6E*-|)3
z-%tAK07!n&MD!Z7H<FT=5_v@M^lK-?_j36a#i>mZPB0bs1FEQs?NdYeT0E<rlxe2%
zD#M5>C{yWlsbi9SahloWq&9k0up&`-l|kQZ$<DX{kf@JXC&eHd{d2P%3UmcX`XEGI
zT&i|y7V1n5WztIv>cm~u<L>w5@xMsFjWhE4Wr8L5DxRa$-b&*;cm2g{opY**@c|fd
z)=pSiQp`a!;B1`gH@Sa5@;&$oEXIXBGPqAx&Yi)VNiu5IYeg%}ddBOii%CW@LX7q)
zsw~fA@~~SL48zNwp78!Lx^@N0i-`U3*z-lIG=Rg}d8ScLW+n{3u)JbGF*^!{0bazq
zL}IGHs?J2^k{Y~<Ue=LL^ai{ix|W;c03siw>)+o+`L9H?3k}Ktz7SkO_@&5kz|-E;
zCT?Y3axk2KKs^M?YTjJ_tV()+@PzOTR*<s+a}LIhH2m<i{KqG&+4xO!l1U4CuP}7J
zRO=r^Late-*KVXR7ZVfO-77W-AQByJ<F_+X|F%-Bct$k`BCy?GNwIQR?x^TW8vQG3
z=5TyWGND;Uw!fh-{zI(e7285P6Jgmd!t6AT_*1KbaXPm3&Q-Fz!_10XK!9S8;k{k-
zL7m>aLk0C0cBdRo*@A7&9fY{%X+dXH6hiCP67;Aya@ji*KnwM!Rq3z9ZFHMq1B(tl
zCIM-0h|h)f&fbMV(wEH9wZ}4N`X6z{VaDAf0rX2`Pj4@nPsSQ(5;yNR^lVz~TTOo}
zn6pw+DT{8CaLsi_E$xXGYeuxHq)m^G70b=;2{dwk1jhCkCTE41GOQOA!M?w_H!M_r
z<^71XTIC~d1(yvs2uY-nXFbr|A>AMUB+JwT`_?qo%NPpqMzrQ__4i*9Jv#0lty#2l
zUVnsew1Zvt-ALThNc4T%1v4Oa*VRl6vnMz9U!=sQp2|V@e2dbv7e~D46bcpM_Sa<c
zPm7V@*i!#y1bPerA`XkNlhyP*clRxSNc+~;RCC^jhsC_o>cjDdbqT{|t0%dFUfRoo
zF!(Vfo`xSKY|hXRV1<rGk8Z8~*5SqaFlq$4;bLknYeKXbxNrl1&6CWn1n77uS)p2<
z3s(pfH^4SLWH0=GK7PN+-r1%i{-X}*O7NJ|GDq(;BX;G?%7rtWdrx&kCWr_gEch8V
z%n=yutM*hXEN5Ga&uBM<@YiMu+=Xnx-~!az_oo!vcZ33D(-)xg3UnEQMVJ~R9V!8F
zaEokr9(Lc^{2qoq5KMHnhc9+k@m7=O|E(6Y%jl*g#a-vvmzu3D0>0N>C9wlb9R+gK
zxDz>?V=2ZPC0Yk1`A3LLf&xh~;mRra^`#uHCD3Xp<b$eq6vgwgCXZxUsfef)uHlOM
zfMDhhVFlnK&xzpdy7du~V0ftQR$_RhF;zehll{9PByXn+OILcFH_F{`Evile`bsJL
zu1InUO6j0wu1Ibtn-^tc@|Cs|Zxj*#8eV>rfFw83+jY(>rkwFQ>7m<g##sh=c7~4@
zH4gs!KR3b_>dJPhQ_rBgsX}Jrl}UCsIEt(J$2~8(r~b0he%m7-3C=B@w4rPI2^l|6
z-hp5hx4cUg3~IQP6f<A_OPP&8fA(A48y>~YeR-3Yhj|nJEAwnDTNXhK8t^<?y4Kxj
zcgIsgFZ~5a8`YlqKjna&!TKWC?ZMRqf2_iWCC3*yU6m>c*oCM3@QD)f5xE|l8E-)<
zo<Cv5GRUT48Y-iGb9M{NJ8E#UnRFpePL9+LhSda*!wrBM!J^w;#T#4CxtCDcijlpp
zIC{uf$`9V@lD+BWJ#s8!J-N)E*b9Y@)q>=Kjm>&(2F~u$3z~!(^w1l-(_UR&ufx){
zMxH*ssC({d{8kCz=0o7W*GR_vm7|>8^EdWnz3Gt55k@Rhb|fVi!3g`sNKSuY{<#>o
zx)_|Sw(P?_t(=*GZsnovq+_q4`w(qth!g0AF7!_MQQ2py8~mFuf`Bnhg0BcOwnNwL
zl|ta0psX!S9hS|xn)#=$lVXY1{(+*Yc9F(xc|k1Ct2fyyi5L%Y3ViYVK3^?Awchtw
z0m@auy*UcQFt)+XcxS+8Dh{96DnOZh8K<Vk6pEgv87=uCg#GNt9SS>PyV;rI%EvY7
z8S~x2;B=z+Vv+0W49DT=J<p);b=6~@yEoo)Wip8fDkXRaWb{}traLyXSJ&@^tQ=0u
zE?vpg@-ErQd)yy7eF?a3!c6=EGf2-K+s-^`8#=ih+nY-#(a0FF8}<G4@-|mCS-9lM
zS^$&S)P4)Azl%hj#=3{v+%$yFuF3Uv@Itc?x2Rv_vt=7j`c>&3FOOW35xbEZ@&-l5
zMSdBi_Xh@fv3NB-{lAVjfqx|(MHDuDrw#}h7)sS{R+%;aKsKm&Lms4#(G`#AOu%fz
zRB*58KN}TY$o6`ul+-4#Cl3_%xopNZLNWxCQreTn6rr0uHxs+td7175cLDB(EqMLk
zL-FB4hQyN)5dbGr<`ROt5yPfaXt-=WeIkqlj^Uoxn0%Hvp6-4l1SHul3c4Dg)aAEe
zzRV?v2;a`_#0rsn>-EBf$%87ETNDjR)zI>%<~x!Uk4a?=ij!N`1URY?9t4)m#;ssN
zKV!%Tbe4`~0YUeLaRr^%A4hBMKhhHR8)Y_pL+kKjMky)$cm?}gWplKTN+$}W4;QtA
z1_P9txk*-CgDz4uq^mEVYK0xNJOkC;YF+L+KQ&jZhUK@uW`aqyI%de#@Fw*cZZ9Y{
zqN6gi0^Z>aCu{BwFFv+CEU<yCE|_B%)d&-b?T*b=!?1>`*k01fH0A;ecr2yYyn-;c
znF27jV;901frDg(oClLbDy=^i-wl5hrpV9ErNMk4>L5F`OA88LldXY=iapw-BTH<}
zd~8p9^A|?CYIYy337HsP-p0-Y!1(-)1>lUI4q@pQeuO$KlFeV_CDIzdlicBH`3K=o
zC2x~q+5Tw6eb{<sYO_qqr_pZS&-W^e^iKn$_{QC>&@_-ou?i=&;aLXHk@benNoG_w
zojD_0S&O?qLrD09+`^!ZNX?J_hbgm;&+WH;x@eQaBHUrhGPJy=)xiy^p`zo`$gc2D
z+l?<Uz*qevL`@N6@_16RyJx;yHLuHAv@M6rGHibae+A_P8_npKKB8C3_Lk#dpX1d4
z#T{~N*D!MPd#u4zh%q&Lp+!DHDj{rLh`GHu6M`Y+DqgQ|(8}B=-qb26!$^X0Ye0fr
zXJ~-NL-@3ANo+uo1w+v)SwA#_%c`pn4BXOFHdQiM+x4KkH2Ckju$aOTPStfPk)YRO
zCQbmA9YiMte!toB9hv5SkRB`Le#!uk1y^e1K_fxUt0HBGvTOg`F`+Ynhr}U%h;rI)
zv&X;zcq*cD#4i-8_0Rx7Xps}|PKOp8Y0zVzx34F>r!(zrKOhx4q_RH+HVSx8&}jXw
zO^O|w)36~_lO4tO1NKn0cIasYXP;4uCf$l}K-iBn$rK?<KCIqh04?kOoBB>#MN}|g
zzvB_>{&xI-%r1CbRsNPFS>#_Ee-SwFOS`%F15$@gG!`Hw`W{1DiyZ_-`0zTnA7EZN
zouV5oAN7SP_HKOtU{x>AYX0Q;;#WdtoUAIHWR&~%fyF3xLC6KP9fPj2So&$Vfh4%!
zrjnegY|^tC>ae84Gy;QjPb=P+9~%Rje#P}vCNo?|2ZwjcO;3eZq|b)mI>mnTcr(bA
z92xVz*4*}p#je)kBkdY{((MlGABFqZ=6G&=scJ?2N$@*mO)->S{X_rQgvPsf;4IF1
z9m@TCeT*qpat-@aqt6$2=V6W83B>}?9@~wIM2uUOz5*_A!kA7DF$>M+_(Jcg+YQ_?
zWO3Ww!5%MHcTSE_xIlsXK~UE!EBohPe(R{KCf(g0PBu#QJlXI`i8OMCMTnwXUb5<B
zw;eka%6TNjiFgbO<8jazDOPI~=jH02vYG#~J^an626M|dYc`nlQN0;fcRgL7jZEMH
z@!z-}^-)`|`wevl^U>vQ=KguiEZ>i{X(h6$dn+(=9um}Gy-y+s(%s)@nvoGO>&@4Z
zNSm*}xa(fwhsB2oNn7fv`iaHiTO;``z!JdR1z=#<t=9rDPa``JqsI%Ui)NgVcDcSF
zIif$Hv(%3mwGU66!=o|#?OjZUhEKGaU6akYvK50l|2<;d0%j{5##2;;-?l5$<L%sR
z;cr3`n66q|k2$Aj4NX(_B~8?x%}HMEXQpZ{7rxVu0S%whEyQwkuZ@Q*vK}%-c<iac
z$zi{wwTp&9vihDoSilq0{ZKAkL<*QFA_!m?e`r>~Vt210%0s7Ta~~I;9e=0i`~9h4
z_5<86l!Vy&r)W$r-6hoYQ}p6bQlMlPuEb~{uK3hpx>b88B>$GYEt!Ukmb0u2Iot;X
zZh#xXRrwboL`>tvB)H9^=4jo<Rr{E{Z=0+bnA$=T{19*`&w-W=cxvi$3nKPAhVf>(
zY9H_Jd_0zV1uZ{Hx~%l|vSDDh6<~`XKCw6`xUFF6fTsURUPbxE98pz@`Cd6|zNI`B
z!5q!Lga~#J`WsJdKzD`k0mXi(++2lvs=@d^J+uuAQ;J5y#G@RwV$sM7^Fjner8~+r
z(xk}*RMTAj29@sJn^jV6G40rWv)*IEu#*W>hL6<C3=5O)3#XtEx99QBZYpIcCq;-Q
zI_raWP4FS}^+l{*7r<alr+k!G>HH=hIa_Y2WC}X=oIaE($)m@}pniivE=KG#;fJoo
za`8jai&)PgaoL#rcr?;rAEv^Y5)3v^PT)E!z-8fJFx+*DH&5ctxprOls0ls#d5sZ;
zNZU8{tORlpp}ihW!_`7HGS7yA%SnRvky}1(_M*^sL3GKUj?>z)DH#7zA6c2@T|9k7
z@-ib@YTlIuu}`M!`|HHPvE2vkyKGemIX^a248EmZlB)ZO988zlfjC8FK%>CFOQjFv
zBJiwLiegg&5Sk4XbP#T%uR=eCA&`5fJAw?k58j;nM4%0Gf#ldU(cajYX5%r)@s?q8
zKiLkiD>NjV?(l*Kia(>dZU3xyEU6u3w5B@U=y0<@#NmW56LkM~t$b+w)au%<{*!Bg
z;67eHVvloxHu|r%FD!O1OX4>sl-ZD4B`USLJDf0e-C$cN^Ep6z7$AM+-W|1aalb)k
zg(|H`ZJ|yzx%Job4kzqUmvH9pS@Ak(A10~oeYLaKu<2nsa)pY+TbsB!D_*gGVp=9?
zA5dUKx+Q~*m<%j=bv=AZgtFu)&#*H}qe8K+b2h44^&8JP5|iXN`*hNISPIS^QYH~{
z`fPaCdS9G2j$3hff8t+^<wGp~*c&%NrH^26tA(_=05L9TI6K5!PE1ZYINLTXp4@%u
zi)~nO9&1Nw6p3fm^Xi{kGEIt4)B>rzc8AUKrZ`Xx^k=d#6{gS$MKx-eL3XOSTmk|+
zv5Er9k+$C*!GG_Q-0x)Cu`tn6-4`K>NenWCm%4%pz06ZO=ijE$XK!$SB0GrGU55`3
zU6<lM9M0>ejzF_LqH$@fJ%3=oZ42HHy=JP0aL<6Nj^7N3LH~GpB(&34hWJZsIMooT
zsYDvnStXj%w&9oWFKW-M3Oh*f{F|<`eaiSFPYHz&ED+><MOqiwXCNkYC<&GezBY^o
zv`4PW_-wfSq~rb^*HiR+?was%_%ZQGPEvmM##H>4ll~d@s;Ke%{0%onneWr;@bkcK
zanvgDp7-;1ohW+r+_0-%^8CTD#gOmxp;2b-L*whEb@h{x2%1ZAc{2-#_aTSY%9_J%
z=fnGS`sFn=VsYbR@a){j!+Tt>NLl0@Yl_p^#02KJz1OAX`2#%|EM%+_bDL3bC&qqz
zmMR;fT!0TRmfql(xNYC4j?z`vD15lyW!$2;;3K=Q{>S?O(Z$ie_#Q7+_+kC1U5%{t
zW(wCEN&8X)ed}=#PEx^&pFUr8mOtd`$oj1g>RH!6&Vw$-o$e8oGyf6N5x<J29FzG4
z6l*{H2FO-tqd$3&y6R=+%YGSke|+>VP9Zh~EFbS@-dD6Aoyz*W)=SqHPn``vU*h(&
z{WTSrLo;v$zLsZaE$+6XaJKNn$s|0^ptaUY^I_M{jE3@2n13ZyeVgQc1^PU}qY*K5
zPw?VRM4f+Kyuo^G)9YZ8R-Au$>^VURbA1}2v*UVzd8q^!x7%8wg%>s5C}9`CbaKP^
zGR#vHM}?FF_47vIWu~s|$GLKqz=>ja-p0s!P$S7w-o{FbWP1oKy~iBlHy_&QmYs_z
zbzP6SFJcPG{YqX(B#D!HMXf=!dkyBc-Sa#m_fzrviR`1*&-asaj86B~hq9{Gst-cz
ziR+-?qBB*+aN<{`1kQhj{B~LHuQe}o%?XPicT{i3inQmhlr*S2?NKv1UH0&*FrE?N
z;G!+JG&_xZGPY!^uS7@=2r-CDRh17{E4DQSQlnK#GyL(cR7D&1S+0!2Yov@!*{K#(
zm#4q4{5rvYbBnxj-R>DwOCFscaMjFeUdIz{x)^Y|EM0oVUOt*ftV=h#*n^kpZ#0a)
z(lxcMHuLR0K(@B65<0lyUK^Puy9n>2?%!yvdDd83B{z0OtnBNzwlz-gSCpzRoZd`q
z?g}xwxPU*BG_-mgd!L825_+cRwKiY2X-Bki6SqCpceLMn+g#@B${t(=Wt?%R*s?u}
z+d6oS1a*;YlYt061?H|EGj6<+N4Ngz@BCekPLDDg>R%?m^)8$2{My^Lp@B2ce{e3l
znwld{%Mg*92<@_q3VV4B1TRrpMt-mzesjfRJX5yi^><=t6Rzj6kJ-pISG-_9XyEaA
zPhT&mZWq_9{S|FIZBFVjU7N94S+DWOzmH6HxWT$0IlSez?>wt<({d}-8(gs-T#&V1
zH)dijO++<NcgwXIQj&t-D~eA76_5L-JDM0NhhEhSN?|$nAdWF;rF#|k=Qdz}`VHqY
zoT7CM@Y0aScc$e3Gy73Okl!CXH$P-esGG$<n+WT9ox<P*spu*vsNP>1G|!U{)-<PW
z(4=gODS|7qqeN2=LQ@t;&;AhmZLY`+4ZVQjvABiaG#&sy3buQ@SvBlc*4It++8STb
zN#Rm}(59Fu7y!TP+Nb1!VgtH*llzZR(wP$Zkk|3X+HI5FhzL*ej0TVAiUt7Y0Kg##
zIl!HVNQ`xCaa+a#sDLV}WiofqoHwpdD9L9q>UmgV9jGjxKR1JuxA=YNQUQ)w$4Bkg
zz``D$Cd_VdA<)ne5&yV>l)b6P8KIBDsK3xmQP4p2o3piq{Mn<BnV>X~gJ~e%%IC-n
zh7JL>@?j^b@?k3D69IyZLAkXYVw05Q34q8J6U?4XK_T)Q1Y!`W{UZJ7FU2n=FTtIH
zv3p-#bV@yeLBL&pdWKwfjgPW5jF$GDHg_8lk)9cz`+*PA(&i_<$K^vOi)o=(J<wjO
zUePHB4%Tcs4)vhHoQ5=)cK78Q_9K&GH=^Ni*~QI@rC3rFCC4)98c8KI!OgiJ=?7F_
zD_dq`@>fz|vgJ1HH+I8_8!%YyBm{ab=?^O<EJzvc`J=o9!>kY?xx_d~1mKO~_iF4C
z+>;f-mIf@}4FpUCNbH48;;vhHdur35#2V%&#jxwJK^5gq*19XtB3wE#nmS=+jE27s
zU-&3ozn?!h{IWD3kY12D!E9>=kOUTAz0^8{M$(A3P{kT?7JmkHs|JE6RtjszpD`Z{
z{D6Muo9m0`lO~bu9_IEH^U&l(90^F+zYV!<&o@=bWGAU$cyD31mTo}6qU5KA`|(Y`
zk%2L3IGz_b?v|&X9oe-uj|TURMn@#~H%p(iMoaR>8z+z)-mPSM9Nr`8ik@ana;zuI
zeCezY@UY#lyL<TdB|xMLVbX4hSHafIMG$ZWgjlY1t?a}b4gX&Fi*YN??O*m9leGcu
z=a1%QM45+!fiz`QN#@?vPnn3><yBqX34{lD1PNEdi0YTZgqUUl!>vk_%e%bu=ol;u
zuOYRoj^-opA5E$$E9wD-W1gZpkpZl^jFZSYxg3!Y39FQJ>ebv*my$_(!FumK2Qv!o
z4MMLUD0d7iwOMYWDb;E%|LostQGaB`O%ZjP@CD}!%!yQ+W-92RJwG$xotJ2w@idx7
zj#j-^OrH^y-cPr)yY>|sS!!fD8U2o2tBpqdMwa-rRsfts9rWCb<a!2Ocs03@8Hm{j
zsqoskF`zH`oAg`g^uC`yc72C2D(PbA7}>xqv;Vfio!8Y<(nV>Bv5pyT<imIvYdTU$
zS}>Bo+`>SnMKBJgnHxFcM1M^gn?<Z&MF*6o%Hn7ieDt0sD@pNHMu9C^2?*1QQg2`O
zci?3~QSTy>mBiF);7AcQl0ZHv?j}lubzrE{m@$gdtEk=RiXmF9QH##~hD29sQsGo7
zoOgkM(8C}sJg3>U35no;-q^;2A{5#is7MGKo7D5W73o9J4$ZtWjLQWd7LeX}1uZ2O
zVT&e0fVKte2ErLYvzbQ$dqtCcsH=$yXguuOB*lo}${k{vV<I|?k?WKQoQ;g=z<Z@F
zx%8gGY?gw@DTpt|=HH0-N_WtR%Dm}@v-p7L#|f3qL+mTY=|VGtvDjQ&0YEwJs=*2Q
z;SxeXQSLB>mzwu9@cZJ<_KP&~+#!N5({|+bR-&Pb4yUN%rHq?d66Gh(OA{(WTOarC
zr2IC%t7ov+p|VVkOgZS6VY5@g0F3Vs1?ZXOdzxy%ty*kmD~MxM84I+pw1S4h9+7xO
zqbl4tS@lGoaZNWA0?;~WxktZYB5I>Gka_AbR_ueTVTT^(DeGvsKd_yI;wh>Z%NW4(
z9N=egP@=0#+p2~1hvm#SJ|K&kY)+hQPq`S7DY{kPLihAULG||q6fQO42?}I^^}#&x
zG#mfaSw6q{LLK6g8NjX~Vw87`XP(ZAnWvX5#^&U80?*HVCKbaVj`owoHIosKmJZFn
zu}D$zbn69nzfj$o<4)!7DxRaCN(+}cy}8irbjF^`(%>slw}e#TNhB=Gq#=IVNXykn
zS&RmiMOiGe{KoMt$D3q~G9|45;Emw!A&B*Ft|_V|eD7Yx7x=JXA^#_eETiR9?gi=h
zARiuY<f&<-7K`koNMwpUZyOldjXhIoW?Lr6tk<oFUP*S`Jz^VZsc`t}M^DT9uHC?)
zC#=T0#e{EWGP_6Tepq+*ni}i~BN?bSWtTTn|C?QSzlAf*L2SS44_iR01u!QcHX`J5
zFct?)(`Q1G!siBn-j=(`iLpsC+F}Uv#kRwK_+?0y4Mt+pX)5I_ApJMJOA|z5bUBL#
z@xWnNm7ldUS`kQJT$-r9g)j;-O6sE9bD}EkDUVVu);T0lJFeWqD#u9ocNIRE>6X)4
zE7}4e8!E<`pKS2$@b+J{h2F}Q6s3nX!v@Jl0YJxZ2n+y5I>$mGrGG(n(pq_#wYA9(
zvo{L4nB{trHUjMo$kU!pRgOr?ko3E-QPIZoL_0NJ_THqqos^+H2}EUx@Z=D?K;Cg#
zX3D>aU^v<7^?q}<4<{<Oc-h%9D6lJ@+bkOPYxgwKdnAm4m%O)1J%DoTt2NZ;pGmR`
zw1YfE{{8%3g*c=&^-$bSH_TWiy#w=6Y*mlt*Ky!?J#6!Kj~$6Wce?5cxiys}`qBxX
zk2$mXn6`Fh&)DJQF+b6o(V_50o_71WWjN7IjLT>0ghi@<>)?Jk3XuANvP_}Lra7j_
znWNppHkx$#%PN(yP6GV*0$dpQF8>ESo-ScQMRnS}@^ZfmVS4b5kin`6bdOuYD(4|3
zfMALiJE&&c!regPMJdm|f=ohB3oj(AhnhhfSBmRNvutSX!P<!Xv14rmq~zwx<5n`=
z?HiM4K+($PIKYXn3&Ug)!NH-#Sv2X_Niij(`4bkC2C{RroD_}&hZJ-4mSR$Z%|P@2
zos@P$7V8WA7AXC!D*^#u(K+)BJtjt$IBEeS4Z>b{2Hy0b4ww5kBS7s~7f2f*{Isn#
zl=>Q3EpkR1Z<1??&`dV_%f$X&sIhApK44(#ZQf#^0f942e9IRZO4xRs#032;8uyqx
z4gi-476jF2PvBc0yZ7XO679={U%C$@6hW1S09qE#kQ62`|Ali@x~5^(u67jT54b14
z4gD8ggKyD5wrdWxA>A48?*t`i;BGWnBgSVCvIM?&jI|`=c`v6d;hSlFKl;;NQ^v2W
zT8RJn`8GBhhbG&Kmg)GM9qWNYQ7<N?t})vO9x8@jjHMav#<x+-BTMOBgz+BhN+M~F
z_`%l1;QlFmf3`JVTYRQDhA~D?1KpcO_7B8rJV_%#Y8~bj5#FM@F!wZPUeHE4wxU{5
zeDSRGnHFy-RSco0K&vL)1cn7;uHr>}<q%jggi~loGbvUNW5MRufKi5bp0BjiMdbQe
zdu)`LFYbq5H^V}h5soyf227n=xbhlmia3izUui`*0|c8Tvn;atvIKK@sgAbC1+oQ}
zEj*m80c`HK@)NYA(yxQU?*ai-pblY-{wKc*z+mNH{T9OAOVAgWC`i4UJ9W+wQjl0S
zJiG1#L55>2v39vmE+R@O9Sl%-SL<+(g`MHYixLv&f}|Vt#JaPA&6%T;u7Aa3{-&JE
zt`9TH!3-fca2914ChTDL=DTQO6c%Cq5hmt>uv==!PFu(ve+YO#VgC5G{5qCg!kv<!
zIX&(0)GHCdiFY_56%iG~Od(rOL>zkzW<`@LnL}rxxIaD|c0+9pLD?@$ml&*58dY0Q
zT2^o)g@n+z^Rwj9!d$QfiIlqy7K|bXEFKbXUoR$<)|l$AAgjGc{lrRv$+v0-!_b67
zOga^y=a|E&6aZdj9dLj_SA3BPfFmbkknA_R6XMrF^AIhME+7TO1YzmqFdItS`-S)n
zdMq4c^7g%1zRoyOh==I_rlo2!nWR|a_<}fyjA^#us+9c&$|&0NTOnwL*>SD3M37};
zLRR8O;Y1Y6qZKmJMfXNGZKp3BGchQITin;_QL+`ZYfVNlLLCc9=aYHL36vB(pt~s^
zy1@4r!obbGtcgOad5gQD2-Kc794)PY9D!gv@wF#b+8FSy{m+^}o<Yn`F)5xZL}l!X
z6Ttp|)(pImk!se*P_bDA?BD+sC#!>hb32STzN)YKEfr4sRU@`!MA9`nB)YY{DpD1W
z6^gkjY2VidzBNQ}I0+e>RWQ3i2slNF{W?<VaTsT(5HUso#l4u)q2#VuOh5q&$DL4J
zD(f~KP)T<C;qg{w1$XQ=pY*<~u)<UG(&fJ29EgV)c7N{nA($ZU`(2pMqZPxM+w2TH
zV=<}Fgjn#pl1%g&#Bj?{PyIbZ;{GQ*IYIZ1clV<&?<(ddirBp*3B&q(2et@iJc(SJ
zB7qZojd6YvTSFT606>@=u2W<0s1ZW81gVy7N}Rs{a3T}RT)J0*CZ*E!x5IU75nG2k
zxGrb4XZR!pg;zxRB1CN>f~w9u1TsK<wz_V~&0gkxA!vIgYc}uLfS;4h-Bhhl`CI0M
zc-=oo0<*$UYfCKXyk|AQ^sjQ#Z*N=-if6>%{uXn2>Y-K-rQr@=V99Z7lcf?JW`c~i
zt4E~!vw(aOZ1RMzUGSwQyERdG8A(+=_*o(5vWU{X%Ms{w-I#DuAjVjCAh(sGPrnef
z{9s@op6i<$22!+P7}TI*;8hb)gj0c}Qx0})mkaM$;SEQ;e7A@}c~dr(WjEbYJt@%$
z=JWNJ;(=UEZ6FguYS|<v_-7oS{tUbqD=wyZ%^gyqM7o#>N0~e|!a3S%R5kJSj3(<U
zlx5~XdHAx*qyWr!?Moy|TG|dJc(|k(1^;WXNL{S%rHzpWi`kOjGfL>qu0TGt2FQ4N
zM#YlRzs4AIYAvI+7JXxMv;sK=ZW^TLZwx%iBVg&njvSCLdJfB)eLy&q@Kjb&yi6)G
z{@|T#Cd9p*BqYTQi~@PT7bAjrgkfr%0eWN4Iv!^$CYR28%v?nv!qC9!PQ|r@_cWpj
zR-C=WsT|3bZ){J6!19$xWoOI*67_OmEc2WtVp2>~v0Kht^!}?<&}2@fFc1zn&XF&<
zrD#%R@Wb6w4i!N>^0<UWfEJdc@TXaXvKR7nrGB|;Kqd)UxCE~?G$0KYMxa3xN<iAZ
zn)Rqe2YBiYR15<b*Z7jB#K1;cS-}U%dQr)FQH_}kE0$XBfBlUEUSkv&wF!!;*O%pG
zmM%2I5Vz157b(D>l&I!qE=0TE40gH&$es{*tP~g3Kh>a$m#k{fsnTes6}5J%78f-(
zdKZr?)#tsN7I%A2ErGJRQaxMlhn=X<Py)1YpuV$^W0;W!6Ih=^W<!G^V)Os`WtS0-
zmKSuj+^UMZ!-&!c|Ag1W=&x4+G(lp5gd_b0Ta<jrgt|#uEp6=M3lIK--<KKEP4w;l
z%$y&pYt16dSLv6(oX9tAtVpm~7*5$K&c9Vp*D^y4exwAW6~e#d+p=fxY`+gxWGOOL
zDH^^X-jB|HZs7)3M<A(xsWp>UZKK53Eix%i8tQin2+@fxY~2$Jw)-2i6eJsiG1_G1
zh-!&IxVwSZCPp9^tA_NK?D-eRX`1v(6LrYfL{ctyDJ6Qq#`n80kHVERa*D0F#fp(V
zW6J@=Ae!znvHj5Bjs!cXj`>8Gt_@`MZGebbPrcjV6?c5fl~L>pQ+#pjSwBa}Eab^&
zhPoI<+)F@j-U)Bv$_uXa2%c<LpjKsOC_{Uek^AQ-UV|l6vRdA>A0hXY$O3#bICaw;
zVm!j{n;H2M3gI>~+B>;eIB@2MaMv>SKEoXBvOw9(N-2`vGJ!F6VCR?|oKEoDLxLJ!
z0!~3PL)&a*lL`vF7_x@5Uno{B`nsM-8d}^RsZuqmR=~52n5>k6tQ`gmhq80zS<z#r
zW<cG${Xx1S%afe3DuLW6uVWkJG8toz0`5a~)};o2D5<97`&)lNzxF3;B`+GiR-|*A
zreKOK;f1)ZDs1QJR-@cnrk)65I=&H9hJxM{_pLUwj+ILIpy#B-eHvOWRecA7@o7NQ
z%+eZpI_xeR>Vsz<kq}hENU9OLgT%qHvI5NCAsvdrM$i{07A|uzh={=MNqeDw^z(&b
zUkuAT(MNP_s<@zBK6O)Vq^0k2HhOP!z}$+cnyS-Gc2uKMpdS6ede0!h#{owEAd2ie
z(W{a-ISMgrSRaR|ZESTgxo$p_VXnpdJ-y8l`R7-%KETFLqbt^S7V{Km&pR9vvBdQ6
zG)7mgcsJOXOI4n&^vXovRx+FBbQCv5*08fD3j5bhepCe>1d0KcBa?8lCoN*9*E2@l
z^XVeY1=5gUO4BH%(suWd^D#>X3&faLH!930_0<9La&-aee6xv0pnU%O#@4Nu(URCt
z@g-0`EPXF^saxMAEN2d0tkL{J^?wQo*0~edb&<^`YV#v2Uy=tBc1gbKd-p7*xvIn(
z$_*17M@#yC>W;ET*y{uuHQrkNfdU8$lD9OOQq<qw&qS4XoN-j9$LH^kFNFNWSh<PW
z(^1*q;rWN3W-cFRFa$|2=^BuRp?gutX99M*VIwJfjPO-#HBnepv>Yuo{`S7rv&uLn
z=I?PEEt_TIvsA&uii`!62=;j1DPtr;_DK+x`cqV+L`#6KujnVq0|a`gD*>$GcJ2i3
z>J!p&!M<pt#o1)Pp6>yGz6W{(3uU@nU@7;Q2J?&pdrKfL6JyuXKXx1iK{pqpN%M#G
z|K)wMtO)*Z>Yl`gWhU%S6gZtj4Uf7@sCp$3?1q*ahyM#}P)~{x^OtJZgc|h3FW5b3
z?h<Cw0N0w{?b*1}qbb3!S~{pH4bEITTDkA@DWXjb7j^}0P8uLmKnWX^qDram_4e(g
z|9KCl`}-URve(t~<zk4=b_R}H(%Vj}oI=4F?$7ENUZVgxJtYg8&$)+P_0WAZxX0TL
za^1qiEfvJc$)QFtLv#d4KA*q7zXNfw<S_#NV#1J&+3iuGTkkZA(-aBxlw4Xe{K7j#
zG~%GrJqU&SDA7NUb%f+)_i9LfA`hGZobD5z96_UA#vY&wJ05_cU5k)ig`C=q|J<;+
zLVk5zh2U^ALZXrigE`*8!W8d1;s$r5{tCdF*s^v_Fo%{EK8BZ>$6(kk9_rax!Tc@>
zeCQP}sDD@(_+MpzHBA*$)dTs-SK|<6<9%@+n=JUlGh{L{PpWLBln<&Lv$*NH`(vJ@
zNmBc?V6N7%<N9lvC=WH^SJ#3o%SPtmok4FdD-<94xu|Ds&cBsyVwo8oc%knVk=ecD
zkrD%$q3F10fL54~Ol3S5T6etxF4dryc%l<gvzuKxJMQ$&UQ@D9qG2-g@+26OvABSY
zI({s!6s-m`akH|2O(u2t9-&pz2<RBJ(#t>ki1;GxC*^VL=z`3dpX^VS)9K_awBT8;
z@oJK~FXYWk^TH|S0uVw7cJ2nsu)0r@ASvE8Eny(EhxXvMU{7_$i2hk_W-D_SW$Wge
zfnv~V7^GG3mkh)tXo+Ka2yvCPl_+)!Yj&;KVu^wISs^y2ZX-cdbufv-VAod51$v%|
zkuzM=gTwc2<s3Y`G1tj`-tcv_`RsBu-4tAz%7wepP~kEfcmO_acxY{h!gS%adOA8f
zXu2@DFiZ?Ud$pHXb*e-*F4mvu=<XM=Jc@xidw-sRnuHLQHVSp5^!mh0Y|I7AnI|G%
z;F}C?s3DX8a(Z&%z#EmFkrB%a=68T{x~nn1_HRS?+tsddJw6F4wjCDvGSFWJc&mnY
z+TIz#ZB{K(qgi0nlAjFi5I(*kHLNq7hG>XKcc5m>O^MovrP>inwn(#PVA>={hyD6f
z8-XERd@F&W_AWhs2gdnJn2UXX*`)vgF1E0JzUbCDTlue>N`NwAirDYr?_GHdM@>#N
z*fPP)0MEy+qo#|nBkr$^TVhZh(PjgcSAnHzth8d<?yG)s)QgN-m2gb|%DDM>6<|=c
zAfA&XebmGod2cE#GpwevTKzpw6UjE+Ic|Qx4{=@GQYe)cA^XUVer4NOtr>xx_x9@l
zW!qpMNhz3*h>o)CPG4%4{`q`Q<ig-VBABT5m@86XM72cZ{C^N%KRJNbcBLfDN?jbj
z^vvX*wzgMpxu?OOFB1zse@@=Z=-=P7swxSBeFVE`E<fK;Z!+7V!NB{19zo^IFol8J
z(+0WAMpAaOH1bQB`!vtNoFBy=Sw+`g_%{aC%net>ii$m{ym_E>6aJ*2pMXqxUIO%9
z9mr2K&`18}wd<uY)<HN$-rAp_J+gm@l<3u9=w`JqQb-w8yRjXT(a;hS;4nbemJlw@
zbVI#ezrJtdEI-xVtUlO9GD6z&>6N6@xzu&w2+8BVeMG`@(P952ml@$*fSJWI@j}O;
z`Fl$xF<leO1UBP$a|P^-+G-6D;a+#gl-kc7$@lFqzEHCRF^80|1g)uE|J)(-=>-OD
zb1YG6dL*MM+-8Em-xW6g!H+6<L(G*0F90_r8ZmYWL8l+1`Vt_S{;YGND~MC61cgZ*
zO2v)$-w;XP;E(N#-Dn^PlI<%Q^;1gEL|^hq$AxT1hVYJ9l7P`vzsD(U#jQtBEWARn
zh)TvX3hn45Q5uHLn=`5b30jhE3sDv?``(3g(*g^l>_>y>SBeElp%HP>g!NFXQvK;`
z#9fQ+c>9sL|Ge-psL&VfuE+^lo(V?^XpwlJd8tsKj%f8;|0Qr$>dGT<0z(lXOh&}c
zBDbT(dBLLCr0zwwKKYhce~8ysh#J9rR1v}(b7y2WC(My`^PY`@<@Hj&Lf}NkoF_p%
zR~+zLjQFcT){uu{|ARvoh<d||u0CCcBJf{>Ea9jUi26b`74S7l-UNFD-W<GT@dIVX
ze^3x>|MyQ8*mphg%!?1zE}|(}o(o)S;7ZeEI`0M=CS6Q?FWyMnay%hZ8dk7AP{baQ
zj(SPC>?w2ROe$LRa8rcxV2*CMTqW~9AI>{g+O2j2L?c_oR}zC+bkpoS@5vpwY|ESx
zDQQx3jc!dKd{B%kY&nyc6~jp0+ay-g#s$Db;%?LzR=5?0e54|#i5BITvERPR=W=UP
z{HcUCkB|Z<)?fmbg-oX?oe*zYM9GFSpAqO5VsF1<irImsKiG%SY^p3JLXa2$2kS%z
z%>8h55=T>oV!rR^e+fgQ0}LaacgwDf8PBh##i?qy{i9RB%#NX?@Pg6jNek4WM)Z+d
z835r3HuFVMKhm`+G7g8Vy<wq`k6C}0mx@Jg8`6`<=3=VgXZnP?+KYs>L~UZQWTjSO
zkpfHpHc9OaqliRGvB50-=3BrgMIV}8Y5yJIq3?REZomnDLdB#&gZ@K!Z+wFdkCMgX
z>fN=)S6Z%`)JQ+rQG53mVpk%C!heg`9#aS|72Jck;3iswXaiv!K6WaDoQ&D6Ku3;X
zY=WY~?Wt0_N?n%2<>7=i)~__byH1*RZ+`oG90<5*dQkgJ2oW_L9}Ce1oRVP9JN}cN
zKa1v!<CrVcADLeXRE;L|kt<|_3d_dRmgo3pPNT%~oR;!U3rc7B0La7<_cNSDhQmC6
zAcA>pNHKi6nA{x1<o+xblJ~v8w%o6BNTxV$i{hnFV!0T}Bx5}<Mx0~FoJ*MVSP32k
zPl9I}56Ar-yf*gBC1d0p$VT3Mt+4{MzFg9jf;kUnd5$dYH`MZ%OWp@qv#!2UO>wx*
zNvhwK<yrk#L!CF%9}(nfLsYS(a&(w~e@Z1a=8VK^3rgSGj=Cy}tR03Udu0W<@P*d_
z+LP&Tksvd{W~f=1W_$@*{gV1tr~d2~FicNL*n6Oz+8?aDW^G?TzJ3PgY^%P10^6Qi
zu77^*ft}H$Q=Wu9mywS?AG?Bcsv*kUf`y9^*N%G;X=np^V<~R5EsU%Q`MN_;Y0@>a
zaGS1dnL@di2%yMAI$yGdTxQj-hXS~4!1<mW?OqF<6`26~z*VyVgjpg={A`g3b(k89
z^F73O@joi49N)@nmI_bg7%iyKU4PLbbp7m?lkx^ypapeiV+T^g1+q&Fqut0#Qyj5G
zDocQJ2`+f>6lSse_zSxK+-xClWfi)Xy-&}BlE_BMJO2s0id{AZ=WHqBnl|wEqz$xX
zonPTxksvaCB+f|U+vV5jA>3)^lpX@_<(XT5kV-x<#|>rLc^iF;5tkx0kl(0=PPc{M
zc@G!v6DcK3K{|k1$Jc({lmxgK&Hf)toRRKNHQJXRndk@iBKmno$gkuTcx;H(;g*x9
z2c3Y2Kj)JjoshAwG`O3BSztG_BpJLRb2?Vmt?S3d3zA$gX1Gw+Zq{iGx{n0Hl~U8~
zlJ$AwZ4k=WT#uO3Fv1c?ua$Z_v8+2MSQyZ4rFpBZ`0Eo*w9`C~UDv-U&>3~eyS|_I
zjQ}o6KSp2S?de}*wELY>bd4m44=Q`tR`CurG{2X@v?K;V%7R)QJkaN3FCt{RTHPzG
zrVIEm?>I;NHzbJf3_PaNKHkt_cszFie<*&2g{m~Remxjg72#h&iEQ+gH%<CBPK`<Q
ztnch87VP2jkim;eD$}b(N#@S_DG;2!z&|C>=HM_3+)ALSWv)-l4mSL;`7I~;35oOx
z8?txSf2ixU^xHUsZaSk!tH_p<M?MG5CsB#ii{`xZsv=$JO%NnzgiU!#$%E1J9T5X!
zKa`-hul66gOhRh>qwGe0TXea0%oEjxs}dx0u|N4vIXq9E8d9N@R}jsODx^y>xUHxL
z<LKRQpuyG>5m>HYrmm1LV5FZf1R{<<Im^@x1V1#gIsHO7{8ycY?}h`&gOVfVapgDs
zouZ#CpO@Sp9pRgMmn=d48%W99ok7|$%LJJ<nT=BMjE3Hwudch~vaPE-Kz@oJY?0xW
zp=5n`)3ACz!<cA-%vDY%0RqAPB{z(T_N5KYCWbGLW66l73+8{Cld}daJ@hN?9Anu*
z_)=mOLHPL}bIg$aWJQkmrOL3Y5xg<JMl;bWW-~x&?5t^3RE(kw_oE5-BeI$r%NVVN
z(D{HqYys~_EJ}_0mfEmWvYM_4UMW4;&_-6N@^YO8V#*1-VkS)TFRl6J0Sv&-NJFJ~
z{DoY|5(6T7np24DIl$xuyaZK3mMUhFRr$)9OUC+u{(&7b6PUow!*ao<lx}@IO%gfa
z{!3HKln0-@&sVv&$fWQmVB=Bt$ZxcqKgWZ&k()`blZjs}Et0Wl&dAvJucUDNrf(;B
zYx<Tinx~ms|F-nPc={E+hpzL^oA*Ra-P-1}of-zrxU&yoPxkfC{l$$}O!x8bMlkN|
zY)~!J&{-M`!1J0`u_b(l4$2G>6{M;h@vOtGK0;AL#TFSZsmx-*&q*C0Y#d&uC5RzA
z=}`vyF^Ups^=L<(&I(bCZ%mltBEb51EUSa`)$3$@|7(B3rDZ7Thn!^~R%T;in$%cG
z5GJ3%6w!`@Y)I@~(Oczz9$%Y%0%uL^Ctg!bQGG9b*+6tx7_LEV|NV!m*Hr6_@E`N+
zd78FxQ%mYrZ)0NcH^Ys#;(*6A#El}aiX$`6qpkL4%PWKb?D2?AT=R(4rs)(^7k0YU
zUTk68ni)D5S9DZ2QLC6#WXhx`SJZ9InCudP${bFeT5{7*bMq;=-=)eDkXn+~{(sON
zudTn`|3Y_mPto41Ql1_Rr{4IyGH>d>Dqe}8A-AUIxc>e}N;7*D6p0$g2SH+`pN6*$
z(l2x!Ya3hbwU*j0SAs%AHF9qo43YI|vVE8Ii!C^2Eo|2wWenbb=C5BH1}~ZZqt&Fs
zD!zF(CbD&k#jdUowI^21&my@(#J(POyAsK9_Zn{PcRu2_9o{mnp5!6#E%Hpba1OdT
zTQX!E673ZET9YA>UnqO0@mx_)`1{zs$OLE{=`R45z?rp)$9tdZf_O1rf%wd~5*v~p
zJ(OBanIxwXqA#S~A#d2^fl9<;#Z?csFBYaB?KcNv<JDS%^s*xBlihUanOW0Jg3lB#
zN0a;-7mf%W2&M5)01bberWM4&+vE8!ZL|&c6dg^E<A{sDABam){2Opnpt;5{x=ps-
z#((vf_;EYFKH7QvET8tZZcCl{`Rq4LR2czaGW2UOL|yNc!IM|}Qmk}Qw%!Ik5n>Nl
z5N~UoR`33wj^Jr-WE#bIoA8}+5CmCLlC{f;nCDFRMZ8;`nBYD(-|fuWcWO?{$JK*B
zPNzD>E>3zEON10}ubld;eayitFjLB^BXyCT^jg30AUzLB)Pf>`*rNcCqo#iimU_Bh
z4zjy~y`J!hwW#5Q{pBD{|GomYQh%_ak+rhozkprTxcy|p-2Eq$H@$$ta`9il)?CO%
zw5sFm+RU?DGz>O9=aU0wX-JN2_T^ZWFPyoi)<-mNEnxWlfG#Em2{6ro)ZJbev`+#%
z*fz|rH!!<_K%_<!?o>eE@9Y#}OQx(W1OG$P^j}IK8@{PfMb&?CTljK8eBV<<6QnYC
z^nSz3JLW~DE^-C@(VgQ5WDiSKs+dCnd|z+k_7q&srufL_V^tg2Uj;Hq7#QUP*6zl>
z2USo&k8ZGeMB*;da2*-h|Gd(2r?A!9(tf50W0e-qqC=*+)5oe0#zUore0q_f7-c*m
z@bM4ZMoC~3J69H-$`<(731^HZc(QRw_W{$7gSmzr<8gVuJk}xWl)mUDVa3-^-UX+W
znd1^kzYEUfM~A+XYPKoPZrHUbWs5|TEfd(X5>pEBBWJF)7?2R@2v|W9%5cqcwF{x|
zH4(g`dD3Gb%CL&NKaQIFp6-z3C{6iM?PpifOYz|JqULnG_yjKBSy}Tfzo<g?G_*rT
zI(VtX$A61O!l(yQ`mlsCIu><`_hoXYgIE}Q6EcEa{xqjvTPK4Y&p$Qb6aokb1y@2t
zDNn2C&P2t~awhnyfnXIfC%TjAu{?+hX1oO#2s>d$h7{I?_CP^r&jAn`go9x`hYAAz
z3%QHe%1Jt4m#QyKT_Sr`z7~I2_A6&W;q$X2qi5m5&+MJ^UD~x|4$k+}6D6_?2@pH8
z3=ut<oCR?+#I6IinoqD`soLCU=upt=lmHeIUiLm*=qMJr?7W7g1lv<O*xO{MeJ60i
zVIRjHBHYCTa9aHwJ;Fv3k+#L?D7vAxN*do!CAjy3ekOr))XQwcR!{+v6Rq^a8Q1ZZ
zL|c*OrYePzA7L!Xf@?Cli*qvAhQ*p!^_4{V4C}tmd=L=X)L`v!_+3nt<19Of*c$W9
zcVn;OdE55-_0oj~Z!9<%KKA?YiJ_zO=l4GHcAiWN@@Z4KUsvB!jA6Y8m$(M5cF}m@
z&oKHRc=|8Bf-YDjV$7s5)C)+%8|!HZuy*<}WWKKZR)};IyJnS;hl|J(m1O_9x6CGT
z2si7ownI^#@(Vf?23<<Jvej(*M+g(i8_X`ICqfx(d($g}v(&f#D^-eK_~CVw`=*kp
zRpY=RpSUuX-EhhRA}A$>pF~JXN;2N3o<SN>NVMe^F6a=G0oRV;&Iq0$;z7{YMW+4l
zfd&Ke%#wV)Xl-yd{_r1ion)Oo2k2-0F@oK%LO56WXyQIt=8u!ifA@j@DNXM|zU16#
zp!&~HCOG?pRHGu4q0L1A18rvcx8h#z8OPn2kECE0TC`9Ct7=TGfX~H^Mw`ap))pUG
z4F|+%PFXn1Nv6s!MbVgL1y5pMib4PO@{8n28ACvn5p*J=G5->|+Yhu4rVpgeFI&LW
zf!G(>WYujg4r1Asn&<kObC2^I$u(O*suCDGzwWWCkiG!f*Rs=pKsF0tl9M;Ur;|Yz
z`X7F&BBsxBY1@Oj;o0&MzGiNCleS(eb<it1$5+!{$o@uf&uiuz2Eo(B_uy%N1|5gr
z300ca!ehJTltZeDqPaWc*5dz)CXLIs__~^CrK{rrSM>>9n1Q-zzqC00es(hWNfwB?
zK`1IP6jDPdYVb$Eb3&1H;{|p7fa8y(yfV$yIU&F5^PM1v%6wNV9rp%@P_!vY94n{*
zToL7?yP_cZ6}dx1d$2j7^IU1Bw>xCx8=DkaF?k#Ug(@VGs}asJjFjeN*5PH`YTJkt
zMCZY13C<6JH2;sRuZn83Yud)$-8HxccL)&NwRmwa?ykWdiWHY3r8q6_w73>)ad&t9
z^Ss~Tzg7-*vT~B_x%bQ^vj_eys?;Vp1~M@YqB%i4et5Xy7!UHr&cxBC5WAFdvlSka
ztzFlq$N*)J%YvgN;B>C?yjrv$LcN*XONKjYbB{tZPvC)Q8x5+Q&6;@1CvM?Qp+#RW
zRcK)uOp}HQs}zQ^hw)w5`-W}~Kl6U^;|)Z<I;7WZ&s(5MHfhJ5$)F>|shS}w`K&*R
znp7F-N$-n2vL-CJ#FCD;#d3bKnMJC~s>^81jBihFVz1wM-Xq)cNb+dY_Xim5oy(T1
zy<@VnT$s0sFw2^I$Aa+F{0z7iNtmF7mkTMwY?1ga>qJ#4-9I16p3Y|)yKxadj-!w?
zLVzNVV%NWjbS!ENW6rdVZT`-yPj7M=P$`}t_!jk8r#L0GcNQ=eO@XQ-ydc@GCs3<i
zqmJT9Z6Y|)dpmP~5qeOnSYq|a>`00e)SQ-!Gg?NJHf10=OvsCg%HvMvO#Uz)J7;G_
zw7MY`4s<|$=EWO}6vu=wG(*&)gfO#a&VP#GbS$~XF(C%lPz@Z}v)-3?)lh9+L~-U-
z^j`E6V>8U-Nw^l&6R~`xf>7Z*_9l#{3+H;2RW#(OZqD@<z}!nGy45j?e+_laSUPf|
zC@V8?%A_nKFe|yp|88Ca&>sP68jgZvrICH@x}6wDr3@J3lwz+`GV)rbRaG)-may=h
zvYErVG4O|gnq(v35wRAXNibAnkhNn*u8K^JfaA+p(PGO{Fp`lGRw*r}AR|*^;3EhY
znapOsTw4C7sv!I)fxqFoB`d|fvT(H&Ngq~P$;oLtV2dwT7NoWbUri&4*klCgVa1`~
zxYW#MT~w*t(4e5b1)~_lIw(&YJBvN1avz1za>@on!09P$7V9*B#eUX`Wg{cLGXm;I
z#BW5d;wR#}cTMmGdO4Oh0?hs}Cy*6+@+7fbsBFoVi4}tF-OS6pam|N|U@3_K1aT-y
zGPW-}Lia>gZ4fLZG|9O1FJ&7dmwjpRNg2~d%K<hc4|q9SQiF})ciL14$^pWQ-;(eg
zni3O!*@sN*oQw=5hp@6(1vUl39|Y8Nv=?gcM*+Mv$Y7BFCR335+$_oI7FS$FVLy+6
zMS=Lix_-d41u$rzW{o@K{meLxbuTe8l*tpG1itwuNAP~5QtO604P-UE!watYWM4;%
zYmOQ$^CvSlmxt|}R1R0_Y|88_MpH52I1&{{){N7rh*8Y%l^`(z8T1&8({j6-ya)^m
z()wl5f+X{kN!ztDEu!8#bC*ngm@5YxW*C+|Lwht(*cqYoti!3{ujLU35z);;9f<iX
zJ7mQ29&i<wTS~1+{i9`4=XW|ew!qC#A4CWFaZ`2WE4n`uRZG~i)UvZ+)l5WTeXo8E
zg1=H4mdlaF1C5cinRvUXGQw_!xhOIQ4T6kII1mI&lKvE04E{7=hMxnAGRY`<8BsA7
z<=3=8EOd=%cjfO^N}n*j4ww@~Jgq8ayfmT@mf<DJ){;Nu344~2I#`@La(NsmNKQZx
zAh_}3gXzkAp)$@3O<$P?d)PIt-+a9xvGdw8%Q4ZkTGRZT!4hX)w+X~o{-qFUpF8Zd
z_#uQ9derXl$xAJB;y$ie0AONX!L2|y?H`T-_6>>jw>1PtJ^aq7!N2Mk<Y~VyQAv2K
z^%N^^4-~|d9LJ2w3>_VO)fQu|I`Wo7TN5T5e&uDlp9Oj|TKkH|N(l4#p%;V6bHf~I
z@!d_~b^CH|Paiq_N$H#@Am^^<v{%}>%E8{7;nRY52MhTkU~bIcgFq!4&wK1_Pa_hB
zzJ(ZX<CEtLBH}xD-(b(Lz;V0*cEytrh(Y7gcv@b4NTA6#LY)ZNM%P`SOTJe?K#u52
ztV3OWTp)hLmR{VJgtrF~&7oB>_B<HEoqf*(JU=J~Q2pj0zm{N)_xqN?ob0zR)=-0b
zJ?ZZ-jzB(cl;<!l3&Pj{s9(AYI!nwGbnS7Sop&u8udchDk9=J;E34jL+$a)LK$a)t
zO;MRD)#fwH^z|ZEK@K&w<568XWI}x}^7~oVIi-74ks3Ex2nT<tj@US^`4=6Dsg7mV
zu09<m+~&Mgh;M9Sk=a@=aM^fV^!kq$%U*sGEJ0XjvR2<=DO`%re>tb}dsyekGO0B#
zj2#o?9S(WfkDof9qiphGP3pRQ@6lfgsQG)*Hda^u80P(}MmzYdY$(#(W&BRuW-QDH
z_w`dF7b<40V^#Q`zMg#U@wHq#>Z)?eiERaf26YYPCzo@q1%Y8|(U;`cK122|lWd5p
z1Er-3W11x&&|pkrskr>2q*e50N)<GR^I=3|G!LogFu-tIAx6r4F<&(v)VYbN6$!_2
z*Z`VcG{!L!x+O-~EE)=F3FW@mp<J*xASyj<{MA)1Grs}pkp>aRftn;<Asw81VccOO
z>R!n{^{Brsvh052;!$hz@|9qFY|6CC$`CAN;&++##$TFpY<8Gh=viLrw8)|JX0W@P
zDKThH6IK6TX~0PC9c!LdDN<mbMbZOpy;KI^65n`O^mpnP+-UW{XTIp9(Tt(Z%A?(|
zc3bjKD)Er9Kd|eINNzU-5c|&$uQeoKC+XmmQd9gw{$2XK5fd(llEwZd8BpvZ`=G$e
zFnXQpPN&3wnc7(5uTsBBkNOK32pEue08q31w`bIf*z-i2v|S3;7+uW0GNT+VX*tat
zVrBWK1XQz=KQ?J~`(;Fqd68x>UtgnmWlGkkva*8keg&1=D>QHpyDN#;weSH-y8LaD
zNzD-L6fXO48&f8q5D(>3QVVi6a*4Q#snF68!MPs37ABje1zzal)9rUQacFkSO1Pu}
zpfUf8*c9PcCHJ8^fLtT&Lu$RRsc2+idNvNT*isPe$Gd4I0WYrOdb0f6=w%sX1AT)f
zaZp`DC*o(4oxw+RYAN$cTXGU|b4?;)pYW@UNL(W3jhgiqkZr1Bcum0G-@5|gp~SD|
zIpqhmxqK^%wFJ71=zYo>WGvcXMbK?F0tPw3EFF7)eCRAkHd^Q=0!m9u&!^>wifgl=
zOQLk{l={7e@0gw(zKS-a-y}U|D39O+i$4mdb12tXM0&siYF|I;RiW4O*MsWO%<p>|
zgZjrCo#N~}F52EhVUvEH-SVT9snQFemQouRV6FzV2TMtY4pLgP!Tt+>r+i`gC#lOy
z$kKU;S8X8u1(6|Y#&Yn4Fr)J1Q?Ie6SW*_|C$~85!+i8eq1iI2c%%tjd-<wS_s>}X
z9bKli3wcrU1+!CI{lb)lA${Ga5I5N90OpNEUT<Qb95BYhWEWS$1)|d1jTfIm0;L&T
zzW`&NB1sO;b8*1CpUc71z;n(ssUT0Q=>~$-cn}9B9kq91y+A^^Jsi<b$NO*e>I98q
zZKz@WvW(7j#t!%Ap?|r*JX>k=>vwo3{mA)38dP%LqpmvpPk2RoA9^{=kx*W7BVvES
zZCK6WgxP6X=Lj1KLlW;0F6a0JvqHlGoozbjG<Iy>M4yf!K>wpJHuTC_`C>VNNr)j4
zi%JY3o}vsIi`&O2Bvljzn<}T&bnYts-)fU*5m`?9?|a5ln$x5QImZ{2|4QiAvDCFC
zDS{GqP#iz2#1A6*BL5>kz#1lNVupacF-uWBm7VzdLz<<}<!3udQmBjnUU~&dw<D7+
zk@x)|sZ{?Ql*r{4BPx}(V}5Ps9fs6>U$lx+p})k1U}98}ovWtE3T}-ngZUfuGCWNy
zj(*f5^+uDAjW4t7#*rsp@4^}ghS(|8$75|GG+n#ZD3|OwK;#HN+bxmP$6{b&98@>M
zc}P@rr!b@l55;1yJ&|A{1}w>a4p#B}WsIWx)ftyytj)hTGp<BT^9Rm^EfBvK@~<#m
z6J#9I)m8s1BVVzbdUzp0Cx*<(&>g?BP$l|ma7sf%j2+q+YF=rl@RqQs3xFK8$CyX`
z2q*lzRH+N;s&L>OSmQkr#}BNM4gA`v(q@*`9QUXHCAHct-7Z{*VaXN|)qN97QeG0T
z8~upPHzw^;i|6^5)+zocv6YBzsU_v79+-MT_}3O^CxtC^<TNQ0HLKd6z6$z-E-Gd2
zj3m0OxSU8vbY?%T=vI=z%q*ZtZC1@(lq}-8nrM_P(hoM_n7C>{2yH(poiTo_>vF~C
zMsO=dSs0v^(08h^gh~;EVb{lUJ)SQ=AQ+3v^aHmTq_q}2D=x%L_%7Vtd3{8_Lw>H}
z6DatiCIQgJ>mU_>FYCp|pqr*Jq8dTB)7_UclJF78>s{Hh3&d`Lq9kY2Oxy%Z&&kx-
z1nV<{5&e-SXY{^^T7H^$4q<%-NeFAE6d`G|vbi?Hf#GKj!Y>g@>EH0k88<#0YO}ED
zIegnMGh)bWBe?fl>H_>FY>Skq-$<3zq<f78(XYx+Qj@U8AjT)dQe-Es1dvpu5<duL
z;(anPjH*5`gp>J((xSLd0a>+LQjH6Ntm?42pd(o+-sQXywzGHVm|K(T5m^#XM^yB1
zxJUic=E#Svrw_TOQig3l@x>pPn$?iZD$K8?TiCw%ws$$rD%7#tgP~|{RzVG>h;ddy
z4+nxOP=*Udb9@#G^of8(D4MHgNIWq6K^K^6%Gy-=A(Si4$bkXh-tmD>)IKnka)7uh
zn=5<}BY3NQ3;Oo|{>4W+(I;VXhfuvsSxy&|b-EpNW4AyxbleSaZ(I>m_=;$6-ghh<
zxlqbpXYt?pu&^|kIJ_X{Zp$gTpD}E-OS01vBwE9=xW8BQ<Yq_6+sWPtY9S>V*6C`4
zjhKf!haJW|W%x28+({v$>1r0&7H+d6_zC1AVs8p^!-_nx-#3@WyXhrr5xQfry`rNQ
zkY`cYzrl)IB*ovO^tl)(mtqB%b$y~!mc=ryyj-(XH|t=ir-6egNDCk0Vx&8gY6#p^
z{V{dh%EZhjQ7rj<{w!B}0O8M`l_%G`NQ{$h5`uIp5f8ed1o*;PulhD2-)Y}iYIFRP
zRxO|Yr=8HO@Vef5<`sQpy9&qR^h!wKEg!U{aeGO49|I2%yFn*L30MyaXlU*B?%Dgi
zG^Zf;<2ONUIzuoqvEq6p-9q#8=;A>O;@^BH;B!`2;jN-M#7q3@)AadieziJeS=QuA
z5!`uHmCkXt2|xJzJZ%o~R3df={V+snor||epxM?R;g-(|cSur(s49y+?d~)yT7YhZ
zr#Use0C}%9fXrSs(XD$U&@oVqa=>4x&<`S@#b`%n5TVD4_pyFwe{%uBPjAK?Ykg)1
zsGn_1i1~SaAf?ks5Tgvih}1=9`AJ76ACvS*Z}-o4<`oENuCdBU)Vj(Dn&`EEx?8yM
zYyNE9Dpsj4c7`VUKO8cv4gfDUXrhO-XHwR1O0WJ^WH2}-D01HYY&Zh`OLny2Oy=dd
zsPWUG$hphgc9Qr3!^rJuq1GlcHovy(&v%p8y#JoX)+gNGQA3a1Rs=8jA_efRU;c!N
zNiBM;j=sXi^7~>qEL1tJtH9O|Y`Pf3k$US@vr*y)OtvC8gy;**|7o2y4WmP1*(8av
zNg)w!CGtUXoV6e^2sXc^tf5T@D*<Yj0AU&!C#=02;L;qA?ZB2=rn|)Vt1hqobqsqm
z9dwDMJt_)TqvObsaNH_a;g7a&`U(lvUcifX292=cxevz?eGAED*#2|pv{J1djLCN4
zUI3DbXbp>TE<BE~K3X6g1)0dVYlp6DSa)Za?uUn(e~%I`&%eF!YFKLwRu<DVMqa|{
z$$pjhc$^gl^y!<20nKR-z}ui-j?+WTCJhzjpILue;g2(mqu7Dn<?-|YrUTA{bND1M
zMH9H*0WMdhkKy<6YzM~Dl`0el((A=9KUMp=tU5c2!nBvdmbacSt2u`_bfs^{+RL~6
zbvBY&XNK|GH1m}dofDRX3+Y*h40Utw6b9zGKWOFTYcf=GqymJE3AHE%4-$yURjV~g
zbA|-MNgEBQs%{p502vt`oflrfz>^|Gv4X@;5z?<VcY$H4YV8Y2+!jQ2tlt!1SQ_#D
z5T5Q#ZrjfueY#U7epxRrbY}}7-!*vhCm!bE*Y+%_M}tEf`+9Klx%{9qgIRrMB)07j
zcxEInfV&S;LQgWF;fWzzkxGz1uC3g%mg)KLm5v~PRflK788%K0TH33WeJ?&ZDcAJ8
zgMJMuZt~rgD!65{(rbuCBp?@;(YyUl%k%EW!~YM=H|d!MGc$cFD-GW=EIhR`jDaEA
zVRU_D6~YZGKC|pdXL>lf?ukM5rj6S<FE1+v;O@2sA_q0Be>un)CJxVrTnY#O0kAkZ
z<IQ?##o))Hu!nBTg$)1afo)i7bDGHlV`1z){OjB8!|UTN;-?dL^O}dr1n~Q1x-bk(
zmzuG0eJX1oXZKxHsDi-*tZ_fj18i)2CIgDA>?l5hR&FTve3_NQyL@BSwI)KEazLJ$
zZt;lhy&QDZR}s$xH0h<56(MoFAUtF6AuAsyrHTVfv?>;<-uk(aj`R-)$wddazad9y
zZg|-6HLP~fhVyK1PRQK|?@={k$8A!s>tS#5S~6GML{lvjL|<SivHhk}aNv=l2HwCz
zPYCMDLW$mJYsDuRVtC%KpDN)SY<T{J{nA8!aPP9{gzXEE_ckKUqW;#;6jK1ZeYoHF
zh!9}?i11%kkLpf^vpC2!?5{9|KrRtxhB3ed3=EgMLgi8Cn7>BFyU3zz4)4-|>otWn
zl==^fReUcdJgJyLyTklmgk%T{KM>B{zI78GG@*bm`Z3@T@%f2G!XZ?*n0WBl?~%57
zzko}@WBv`(kzh$?ylcdwhHX@UURACo=D0@c?+u2^>Up}4w2(p&3qe&4@+eA5ZvetA
zo*i)<da+v)s0t5Lve@kfVbxQLG1N@JqaxA`H1qE5PDlV@o&rxRs@*Ho#2yyjx;d1|
zy9I4w!4}Xocf4Uv9{%X4rbwYhISYpaf>iY6WI|#mv1TXIL5?`p#GVWF1+EX#-E8b%
zIPdk4*R=tGC`duER7%-dXr>I-abgr`&0>!9@ha7s4~E0D(SV=mRiqg=alukHvI}(7
zv6h>wQbXJ~1V7GLm}Mv!Hy&`me0l5Nih+kLE0Ea_n`KZbNKRt6T}RP;7yJT0UxLMj
zA*sp5U4MDKAE_B;a&mJT#n1T0>WiVxq+u-82>Qv*?ybvLtz-86mV>8ldRVJMyRdyA
z#eLj%+E6Aypov;!r$>f5VXG4C6}z81VVd=J^x2ao_3u9n@xf^sf_Dt@GCh9<SD^cm
z@j$DW&E<JpT3Ko&_MkBZ-axIL84U9evp;0+v0OpIM}$^YO{RTlUrH^^3;a=7Dt&ob
zSbm+#C(&5)elMj?``h}ekD9ASpe#jTzRZ{Z+Q>%<C1~tLgu_1P+KCwSaWXDVdqN4C
z+@#_|zO=9DehyUyU(@kR*rivO)ftvgh>Om4p!tB}AKB5Q6q(n4uZE99(V6kf^J83-
z7ZzWH@`=l-^)bbP?NcSJ;m|@`r&mzCtDY<6mGHG(=oeVL$O07i^H4@Juh8@X0}<9E
z6ju}&0F2Y9&&l!u(WVTz6cvCWgGPfwVo&6vbnMIRy-(Cd+n$*^Tbg85k>x0sK!TKv
z+GI&0ram+fV?k$R@PWQ<VD%zCKIlil?_WkC9^O}HS@9oDKRSnfS}Zm2eL+eiz;peF
zKR3r<B~GO$m&3^<sNnihI@vAytmS(Cc0bs*UhWkHLuhd@7b@lwhUxJ_`heIPp9<IP
z`U@{HrWDUcdjY{2(io2p4_{>s9b<q>^nmVGrI4UNxX3rfnd2|xA=YVi(wUc$!QgjG
z^|3MYNvH-ev#z|vF7`Pd=qeCCX^Q@(5(btj-T?FU*R%_CH($R7pR*Ic{~Pq;zM&;?
z=sF!J2=6N13I?vplgXFPASBDXPnG~(Z!`g_o-ww<ZN^?#(l>Ub*t%J&rb5ihrW!1o
z1)V9^D{YKd(hE%?j7urR&@H<Pr{&^H>r8=iYBHwG@V^K)*(u5z(Xr56iT>l%96n*%
zZUPgVT<wI==iQ0ah~8E@w&^jJKx}HJLVpr?8n#=qI$bLZ4@;4zCt)C+DN&uSTdS*n
z+U6^Sj2wdiU1@Eh;~o#^ygJv(jyLmw>!IJ0{^T7YSR3nl3x&s_mU|v1cyoYIw!}p|
zeBB{m4sK0dp?xVy?dGH<9PO4)nKVIQ&PEo)EF#5`T+zVZGp1ueL{GA<SX+$f3+l@g
z3TLGBh9=fyh9XTSV`r=%4%!j6EMf?JFsoH;76HGd$N(L_APu_*=}jmfhY~NmwAW}l
z{H*GvA1n*Yd`4*Y?sWqkm|3(XP&N8<JM}YudZ4%b#U_w4fcGsv=$)w^r4a{(j!Jd#
zSGdy0UW%C8eQS3j*r><FW~1&!UgS3)5xRh$H|ulTAT65mHY#D{!}~k6dHMDlqMdI;
zq#g01UX4TId3X;Ghpz2K{!Bz%W$!FOY@*RKe%s>*w9)b@0Qf<+H&U8zJ({<jibaN3
z<3Y)@&$>R_1N3Zm5<YT2t>(Ud8l8vV94H^zxZoJvEUhT>m1uRMc&lf}s?#bF!z#Q+
zX<?+0IOZ0>cXIXZBSDH56bhtwdw^!ua-l%FZVd!KNtK~tY;>CQHYh^M`GMposU)+O
zjB#bkaixZBzod)l?Pt-_a8ExWgx_Hr0A0MEKua>T$VZI?ETxym3lAl%v%X{<znJ8H
zjrNjh|FaiI+)q!^{QMxeq3u2$T=eaH59AQMPFZ+779ibab)(==I?Hi~5ljz~E0Qc0
zWaH5BA7aZ4p?~PN*5Hu6;9rL*7hj&I0%R7c*XEe2{Ub+uN_~oRe*O8`rFHH?)J&1r
zHjpDu%-o0JbH`*W6b3N&qv7KYSK!@>2Eh4333~g?0%W-Y%(;<a)Ngei$61FZMfxno
z6eLNZ*iSp3?Cw3_-VvblE|;!XlDIqtCB_+77Mr^Vs_+)XLQvRt%`k)7MAv0nP~p%`
zoDxOk)hDFnuDkYSu-FwM#;g791u>a-g0z1WW8o-A_W%Gf^C&g~TOu?sq>A!vQfJ=^
zR82y^6?3ihB9Rh--+lS6h~^%j147F)@5Sl8w4M{yaXQSu_uv_i^qlu}=^KCS_!y6J
zh)av~#{sdD@TBe_FOi$zz+D?pRP+1Zn6x_C@kOU$Ip=9z?LW8)j3w({P9*PLPqdF6
zG7o0?<C;~#<R3QWoPCYAOAnD;0gey$kCE6vlKH*9-Jef>vHuF!N7pa@FdM<cY=<->
zzsKrtk0R!;AN$*L4APrCD!l<s<T4w=>O79&y-fv-ynRS;#0lm!uJB=kcyLottpzQt
zVgpVVbWy6)`cw&nQUC>hbM}s)3u1ek2Xy%G4;bO<LGVFr{#4W^7SWDeH?Pu?-{di;
zSq}mpC9Web^(g4~@s6Z^wPX!&H#f9lnF^!iyC?I($)FRnTGNQQ6Z3)Rw7cfNDwoqm
z2{xb?Yqk(jxeonDL0KW%y`KCUwYiBv`6$hbQ)I~#sW76&(F5P?EO0;Jb+IARDkRu^
z2ImXh{M`C5kr&TZi&D408v?rv%d|Z7+Ousn{(vieFLB&7dHfKb(J}R9axp-~A69uR
z(v-$FB`6!#<oou!&x}NC>P0O#SZpU|eG~%uwnrsUr}2X4y(C!O6-Qa;zdW{R91Xpj
z3lw%DSf^{V`zLKll%We?F%|gX8=-8*O|9Ahxwf3Ll=`t)H6IGd5|81~7e~Bqj;?IY
zxaFr8Lz|pA4{fVdBsG3@V>biPAsjfZmGp=)F4Anv`&=yZCVFEY?5<M+l5-jOd*XG-
zHBe`d-1Ey-vw(mY@oRYFV8sUh#Dy(SXz6HJV!+STH)%oBxNzMkUlEA82o$+V4m4aX
z#*YA)^d^am4gL5KfiE=5`L}3#r(!$dG*gXjh{+R!zC4#O1w>8zxI*HP@<t4KOig20
z^*>n?TB&D@MCMh{+IvcC1XbkEpw<Z53$PDTPB+Q-kWX0(NU4aK8l1SVm~6@x{POKt
z)ERL(fh<Aiwv)`vL`p=+Jv+<_jiubKm-X_9GaC!$ZpJFNbxwWu)FjtOdGy)1JeUkq
z<Ao(~>7{BT+|_glkv_BrO5QuaA(i3YNsLmMw>|zX8;|4qGN$#PtT(2mN$Vlo%EF~(
z0N_G%)&4KL;C(_DwDu8=`qJ3(sg-5kU3;ZtJ?|U(k%xPWIPahc^%%=-+rq4N%-zwU
zm`&*2jJC~ESA>i5dN{XvgOpThLP(nzE;^!J%nuq)C4pBJWQCc=@9Ns;V}C@h)qd1y
zY{AtNrX3DkKJdcTZv)4tmNSYP5mExS6Z2!|g}a3U=3bXJ2m0R-EaAu=(KMK^;y^Y|
z^k6@}k3|I<NTks<76|V$BA67Y51zvodo?;FMF&OBYV{jvU(KXq?PSY|Ju|%7%*S2=
z1G&Y5pCzMRlHTE$dH!8M{in1;0|-SsMYy5g6`k>}++|>x#TXNnjM*YnglP7CLPv{V
zD?o>+8#>`w(HIPohPV=6{sGCHrB^V4zj7p__kUu+G&56)5N$Opgj{ii>$@~uaoL-m
z=mWC&Z@+#4MBOeIz|;g=KO+nf!vxUia)Z{tZX}4BtCf5BnlK|`VlAw_@gUS^{sJKL
zKb^%Kz!q`SQh^8;NrNXSh&49I9KlaKHK03BPX3%>5<gO+KBb4lW4lI@(vL3svk$(q
ztsa{m@Nx$%L~2wsNvZk$js6&)&GK;10R$O{mj9Zt{K&o^7-iGWppIs*e9vG<jo}ND
z56p+*mGx(fIA>?T%c&fs9<;X{Ad~E^-cJ&t#^L#eU{b^O4c8On@0-YvgaSrwT6v@^
zV_`ULBzqb-Riu`9d~1lU&wy)>jhDh=cGE%<j->#5h=BWf!y>lJC+dYe<byseFF9NR
z((P}|okPasa-I*305d_M3Am1}={}yrOIB#%q|8_~gFuoKM*k|z89_gImpVG4yh-JC
zw)Un+$OieK?dn&WQp;Ey6QpgzBoRa4l3A9fO%g5T<r|`F!>L9*GK!V@S`kPEOCCwC
zT*+KoNP_+JomR#;bex+)I53DAwJ|yz!nChUkNm<^OXEuQsM9q{&N-UCRYKCk{EJJ;
zd`DbgmRb@a6psy%s;*A?keh3V1*Xvryq2OY8Z4-8ATuwNu4aGvV|Ag{&w=6m5oi>s
zT{^|#lwV05cTpjNE!?)jz~XKBR6_U6s<fL*U3Cp1|KX}i)59a}-HI@2F!l-;{hgOt
z>t8sZn{V!QZXU->_=x#DbqIn{kL3FfhO3waom=XLNA!AO_#C>Y;8DKaAB%Z349=`U
ztm20meTOPv&hV*FDcD$ZYP6B?+<KXo3uf7FW~83C2m0pY!Vu?8#_YiQVuktD2FDj?
zdRuN^oozIER{`jtB79iW6+K)}H~RMmXB+0P`ECLh`)9seomNl3Y7rucid>j8nN`<^
z1DHQz2hsBa`w_^WAZ8dc>%f~t##zBebq?zT^2}mIL=q}POn6dF*(RXa74!rs_=Gu7
zn)U1AfD|I%0&U-}tux5edC4|%OOjXT9UL@WG=(mpck^LROC<f)GD#VZs0BVs6E#`c
z0^B!m9~q>=QWfKhdZ(FS<PfcD>3cGZ9&u`Se9UHFgTSlEk(YBhF&|T9H>1P0qe15f
zorcsH5-&@SZ_kbo_d)l+CzD@$kbEjb4lt0mZ6o^hUP9W}C0>Gn4-Z+%Q|<XZDaexj
zQ`Dl=0zL0BJWsuQk6~ixZ>^l5#fTP=$Sr>;DzamY9ddQ>(i<}i&W_oJP#3zm+gHKs
ze@Qh^N5%DN;ssXA%V*OcrXRE1?p4FzMP?S1BHe@)Lo2>YX_TCDY}ND0l3W5b&}56(
z;iJvYV!P0=vR!K_wrS9+46%+sr9CGod>m6Ca)^@o!u-1er9r+{6;Kp6eX#l@#O7D}
z4dspFD6y_zfvM!%XE{-anRfeFj79e51lOzF(Qc)TF(pE0W#3Z9Ni_#D1-)~IupYcj
zJjGh&!K6Z-fGgaT3>9G-o;Dz=Fw4l5@)OTUzea2;C+bRi?*ol=1h#&{VT5Wpyc4W!
zPejnMlZtYw;q)tqP4z-*>};Z9<K~|=l~y%_Qh3EfRhl9qHxCTq!4w%X`LJT`zh`~H
zij%rK0sQK>ym({@Q)vuO?8V<Sz86TT0O&FkRRAT13fjLu#$JAyh3Qu&i0s|Ix5hX1
zw?^fH7A*Lt?sNqFxTcLIV3m5>&KTZ?%MTVWnS7}iX;565aZw_F5vO73U$v8N3ah02
zAM*fZikeT#G!4Bm%F7Lv#-gCkql*2t#GWnB&y*7vcmc)%hwP$Hq~Z=Rr_+L-pV>V>
zyY>=dRpG}~M*m9NLXRY(Mtp`{k38(Xtt0Mvf4jizvjhu>nwxmIDYoy-dhP$`L{jmY
zCbT6G{bk8V;P?4s8N!<OOMIwo9)mQs)Nwv<KS2i&z!29NQKvG(oZ-@k3H_O5SV%Su
zNxB#=bYSv%pamlaPpUL-vt}Yf93!-wHsLo`4wMMf7DQI1lWW5JA<R<16TTtXP9btm
zJUi~bmB?_AE3xWs!|MV$H_I(f9#oW5LkF{EIZr=Y4P1A6I4xZ=HyX?EEQ!qAPj?J*
z7MQ`VO?fG1ObY8PED&9x0Ah-QGZ1HxMT^mi!~cOW&(5RR3Rdcucv2y$pSlUOBG+R4
zrNQ7Xu@w|uJ(+YMU#v|)Zp`B5?AuX0$MgwFPw=6@76CKwLrL>_&PBu~s$=REw^?4^
zAlWpIRIVaI>SyBtRK+He^`1XF#CyJAF=m1E{gm}YwfakbTqnF5E4roTKZr^<6x8bV
zSraJBEMq8|PymXXcAe70D5s!T6oo2~fCH5wa4kq^6RjelG6ZX)St(L~T)mXHmLIt&
z;u6h&fF=G11hetWFQjFDrxb@}nx1a+tR@wdFD4T(_|L`xk2D=mk7Ce$-4F~+VGqP{
z8z!`gjFJ9)@)ykBF7cbO<)K=i;ho^1A6%utT9(6^8J8j5MiW9K#et|omaL&w4YrQ3
z>s!)a_A8yQF>58m5CyL~=?j!Q8%uo=!E*Cw$513F%LCAzi7Du0?1|ifWb9E``JhAQ
z?MDiCODbkCYSxtl8kG7wIz7%n_e}vdj(w>yB|+7$^mx^UMG3j;G7i~OsS3ui071Gd
zpc0<|wdxaC38FH%a)>26Sg)dJ%@L+76Ht1hJJ=C1DnfDwfoU)Ed`OGJteH~ab24S%
z#~@01p2h>bu0*8!vY`5JSLYhgV*pZ((ybN>!^lf*mLjX`Tu=vd=c+=EXje@}xeLP%
zqX$h$JjnJ2__iy-VF_!HmgVEwk3h&`vuM-e;MB7x_=nx=*xJ-n8IYrcO1SXgKg?QD
z4V1Xp4hz&0vh*p&pi=EuDb;PLW7oGjD%*;>kt{zK%1Oude=tK4ocLPaoaK7$8NQIg
zxYK$0l~XJ%Gog^oQ@NTk$Zv0E$W`0H2J2#%9okw3rL4ZBnaz)DHUQPd32<~eIbN{4
zmw9fI5$H*u<dqMpXDkE6>P-b+Eq}7V%0N}BC;3U<*W3eY12;k_r6dXEC!V5<L-^9(
zQvZAO-->0r;&4FT+Erv7h$#OHkK`W^n8qwQm}Ops6bDqAp3{Q7d=r>bhoP>p6MMO=
zrOm%%Z%cFP`<n1}^4;bkR^}lH+uwn=^eOdLYw{Ykv_T}Zza7#fF!t$VuW<`$4CNnC
zblCguV%)~%65JWOl5P}L=<j8HOZF*;J|YE{K732D1v~c2S+(-kM8?DI{<3GD;ne0p
zmaUMoM#xaOZE8}#`LX*4Ulonv9KiQUVl;L*efsnL(hB~2f4*pjGn{|F%N6w~4e6sx
z-sAUZ#*52be$~BX-+J-~M>oQ^hl%{Nv--m3aR(M=$e6jsIA1!tSt|v{mV2+5$>%}b
zU>Pzbd9uJB@QEZ-0KM^z-i)RkY&-h8E{T?6b(LA2^#cI)jyo{z^Oa%=2!<+*>x+8h
zhtKLIP@<p^z@(&sUkG5+8i3NdvH#Jz&@akeDe|auWL_y|Xc*%1jF_^XTGqkj0Dk^a
zVw_n>QM{WQ20TMlv`}+)UOPN~F$$X|thU8+;2--3`o@aab~&X5y;@Q6gN&8|eVT~U
zrPxFXIJg{$DCh^OG;dfS=WiZ&W3lTkwVM^6b<&1eP~}Xh)KK+Uj8Wlnlkv<T8E^Qq
zFuTLdQe9fF7T`WT&_M8$i2Uyv1S}aZ)K(PLL1|l%DZ)u_X!gcBXRx2+=6wxVIdm$p
zGF1lA3(1kP?0e9K<QvL(%VhF;NWEZ)<l4(r^16hROLyq|+xFhY{DP!-L{IngKJ3f!
zMo2q3b&u5F9y79l>nGpqTlvi?=X(R6ddPiv1o==F44lZdPhjLWzd3^|MrOJqL44&m
z^UDIB1ekSFI)hq#G0_NoYvS(@b=XGPZU0u|Mq)1b%GyzB2?tB)&;pm<S{Xd04QT8)
ztzvS1PtYn#*`EL`vL0>1JVB>LRrUcB;%4YVycRU78dQN%xLRpq{dTGazopRC+2&Cr
z<`DjZx4bjFE;NC_iM0M%v5`<dX<K?J`=WUSQ8tl!PAiqA(Ie+6BZEu5*q5d_SJ20t
z??R!4m>t*x?*u`T^la1?4-Gk1GLiuZ)fWa~bl48(7-)SFEgvHI_sYX|Rb#?Sh^L>I
z2px)ja8iqg%`lhvR?HFF2GEea?KsR#&Ozty-TsS;blEO3`r>f=_`}Kg)*<(^e@|eC
z%-zcK!WcF!x^0P|<PW338_UAm0+N~xWrJ`y=JvK5iQz_B9}X{7&+8Vp?#07jil4aj
zpE7Zbk?xKjpfJ`=w9qfTr6xRohGW_8!209e59|Pg-4<HA(UK7<?Z^qm@AGKeMLV_s
zl%h3Qrq`Q|iVVqHRjG`2#E(X~ol>yVR`ns`vs!lwHyhN+ommr9%Uokr|0NRfG<?F!
zSn)K%9P@C@05A|@o=kG5K)+0%12qSnq+%2q;64opv(8xdzy$pl&o(m))ACre2lU7g
z2`%oR9fDkkoqACp0v7|fp8(|CFvh#CJ3K|Kn`@|`^jEPLN3juKkzl({s2ogtqB+b^
zt%!)nOyy`t^ry!`;m5F)G;V{hOI!uXg3nI@y6s~6rbQTJ*r##0AmAVuv$h#8__$AF
zUG<?>CPAy*mhQW>Beh(E25K3D`~i{FP|4y7b(AwLw-0zhmKkN87E$K=Q`{wYa}BcY
zvyY4*_F!+S20b1(U6;()IY6VQ!x}-AeUk<=4@#^}ayp&WWRyZxYqQI=N$)tM>2XHb
zFbR2B$VWnyhBc2xK;NXEK#xtSz9^3)yW4;rD|jbFQn%Bp@{jQJYIr?G&>OM8CJrPa
z_b5ew?TL+6Ob%|F&O{*@1=oSzzhZcr^_+0!XQWo*Plz6nJUo$^(n=`%M(WbtY^-`B
zo>qjUWFS3>(IN(G;%a?b0WQoOYsYcW)zJoczLSKA;wN4MBjjVp$O2jl+&|D%40y<8
zA4W4AYj*<w=kvrY+@*1w&w-ywHx=797Vy|8V)p<+5B)vRq~%6#HoQUdR*u;K1x|u_
zHatXlT44{gS5<Df2SO9jij;9piMyjF*ueQuM+p2&hSg_I7QHd;io&{wgM-|4@!d_J
z>rO9E%oW-;_Mg|>Z$m?}MIN(=@)aVMk}pPs)wxvzt2tUajac?bzm+H*C{G!~<ZC@l
zNkN0#{uxifYkWr}Y#(I&aRC^<$JBpc0`Q-rSEcG`sL51XS8kMvlN-OGRi%%1YjZtt
zZX5>lNIT%-u7zcH;~!!YVGwNM&gZPuof*1MW~av#t;XQI8K%&bTYSRPsSv@7&>t}d
zBQ*yjlOXc-LZaqkB*r0s(pxK{&g6>oGRklal{Q!-U)44Y00~u|xzbyqJ9-ODqtYr0
zqb7Cn$fIs3336{@wn^#XD5x$Q4=I7O_Beq-w}co33k7uhU|o!g9F-!`Nh)TK@au1H
zUR#M0nufY)J)8OP8L-4kbk<0;l#M*(X^kFg5vUk5aMe<nY6N8yNyWq@{$VBmNd3bu
zOEq3hJKVh-(zp-@!iN7K?J)+}(L~5|!6zqCQEfFWH(nkLH2O9}joZGSlj%db7Y8*J
z9V+#GrHD{T<?qH!;$SH+R21BrY1h7|1KpUjS_SIE#7si1ezDE`pc_pxoFJ>vgSfDR
zj~8*o;y}7$Ts^WliP;41hJP)@(8bh|CVVqd+}&moRdupj`)`uptNG6h{D}xy3ncKn
z%kX@c@uE5U+Q?5mx1oVfRFHr%|C$Z7D<C5-TwLitTytNEPeCZBR}Gwl&yOC;=>7v8
zU;x3|!29hgu4e<eqno-(eT2cHL94g-Q1&l-dEEx{?%oU=^?g7G5rBBjx=&y6>IkS>
ze3R$XRHaCEG*nPo9;P^A)Q11{XZW}dO}la`e<(i)lJ!ZI*yjV#-5ddecF}uXMi9HP
z(Y{D&n6+;9mg6fBTFwRAt_{l((UQ1}u<5&<=w?HDA5m4?QH)kxtZ-la^V;qB`}OXJ
zfJPWQ$(Ccw$h0c#c8lcJur+g|(pXFQgV!@->pGMR1&!s~5CdD1(rk&wTLr5a1o*to
z@gGsEWZr;-@GRAq&N(S@c@0Tl85_mBqolQ*SRGQ2IRPTC=n7j)1f3CT@|k-LYZs(C
zU80I};OF7xDn>;~{W%4Z1)M)Z<{L=G26&j|kXQP2jku~ur;H4h<hS%jAy^s%@B~5V
z#y6XYKWJZ)_dX+EKnMk3_c1|QZH_U`p;qO8LdBKFlcvzCgej68A1D_8s4YHS%=BJ=
zzd!&5%$|kKKHFodn4YB~Wq!mwY42KrM>PCOvCY`tchxzuoofYp;G_TUjsm}}wq}g>
zf#S<n*k+^DLun&TCp4^R0w;Orb3qR^`+rsHVK<>+g|ilVk%+MQUs#1-`1OX-^}cAb
zMh5G^WKTiEYNUm~_a&as>@5m*j}2+>`EF3OVEn_Y_XGOG0iLLF0PQ33lQ2|lUXZ>T
zi=25Zq8~GKgE7Htx_RET7xFVt>7-lSPd;nzY^(Hz131I3c=_zBJ_dT6!G300`62mb
zt%$~DwC3PyT?X8!aeCq0oOg%3s~Q5Fje^IYq`*}?nI<}%!9SOa1A&4NUeWkNQ*W+%
zpcBmI8voTxB$LtX(fqVgXZ&$qm~YX2JLJ@;HWnlqMVrWmdI-TMt_j=?y`8Zbd=Qwd
z*XIZb7o7OL^vNI_PV49X)NbQLzERC8;aclzWWQZ`fuyZciRsF@M1r;0tDL}emrqZx
za3K3~dx%(>nV>j2Mf>99hsDC@(5D{wKPXP|8$vX<5iLKb6_FfGyu9Ps=2F4ba7xTT
z6p5Gr2B%UBA5pK=NK$DtrisJGMZlwDGq1@u`|YiHEg(CF(($;VA~sR4!%_)AeVF9j
zG~XoI-^S(NFU3RCJx%wqHmV4Ns84>H!$vBexzrn*H;|7oJdDV8{vp_uA5HN}m{2`w
zu?kxvQ7WahlR?!u+@#206n^y&_FsJ%&rZ`qosYiV)#!?Gtx&2VZ6iiLf_O;@SdqYn
zE*N5Pn1x>G!E6S`4=%=}30c*=lPPp|nO!=Bz9Qk(k#@1;ECxocR$d!DE+-CsxXe{4
z$9)+DxwZEh{222af({6_$}7+6&Z83V7}V~t-rky}b;UI{h9(wcvHd<9)mGny0c*yk
zjV)-K38%B`rQFsQv_^1nb34rm!NqxzWi@^+`9JA{*WL(p(RE6I6X^0Ubb~Nr;{_CL
zR?S9bExz!suU7T1g$Rx5@3)HEY}n@Qb<pN=v8(+-W~T<{m_LCA#Ya#%v|9+vv<Kcb
zab@Z@<i%UO=UssG-~Bq&5HyxAw0eHYdFF9dsJ0LP#^rZK{4xc7;k-9JUXr#ocif)p
z{(PRwpIkiLv$>b|p7IH}MpTwb^DInVe88)Fmw3K|o$bZ$z3Vm)zohO;T$NOuWtaT9
zX?s7gfK;`R^+EFOb@$_2tj>K;!Rx@@?~u2mKn!L&UIZ8HqjsS!S7V17xP~3l*}J{)
zRvzl*?m60$VSdG<JCe1P<$Da+vL$YxU~!av{JVlvHQ#VA_e(OJ&^3N9#tZSJ?02M7
z9y|gC$BVRX^Av#|yrkFkY4F?WR@TolpSe7rLc#pHd;J<$^DIxRPSNkMWRK4rQRH5i
zl*BZvSyX;7w$JqPN~o1NbRYHGXySrOxPqnDjf6f7#tM`)UxhbgWbrsp_{PYmZw=|r
zfB-F?6M@GAW~#%V%$-9Ut<h70Q@QzIk^|}vzt^zYCgD%3(vRwZy%p_fx<rF&9eEFU
zXmjY6$_>`Jzotk=PAr<8!WDt{11iO6+lAiyA<q6-JObz9)E;7r7D+4b{m0K?-w92`
z^3jT@NT7psTryKafTu?qA>~C!eXm7SCsXJ*dGHKieMGCZ_(>t8GZ(}aYWAc5T%<^|
z*wlgyeR}pyjeIycPEx)zOu!4+N543KKB8xV6+~SR(z9^4#*cX&I3@-klKRY?zkT_4
z6lbX;1~TSh?O`f5Le%gp$1B%-?6j@9ExO8?YRfT;7==#suI!ZB{Sq^3TWDA<yPKXG
z4L9AXmkN^8DP*4x42JrkD!zy91=vpqPJym<Wv;Q`20IMg6uK)&jVyc|xd7{PQ-@G+
z`@1V_#{+a_HJmxLRfXfhySk!McVZ)Qs@>KG$0|lu7udw<FJH=R^dVk&=x#4`<EmoZ
z9G0dleJFcn*=BK;q1Q`zZOJ~!VA_^ak;a=ahoi{gj9NLSgy*A3S>-rmXx!+%fpl<u
zXo-@-sZTV+wKjqqEZZp(kG$FD4a=1R^w!Wkv14+T2EuH*Pxp<z<b)PDKb6eE9!5(m
zL`k=~V{3QjTx{X;QssOwm5(vxwP3dB=G`7P6=E9?ZJ|E!UM`TLXsNZ@R@jhcA1yZN
zJX{9Ld*;5uLjN~b>cxZAa;Q}uJ53c7$I|3nM^-U{c#c`9@tt54p@Me`U#Jy5><Cow
z9ttgcdT2qxTUH*z2tZ63{;zXP-Y5cmRz{mDiWFNz5*wL#IWkBYRPq6+N0GWR^M4fx
zbfFHdK<s|^NCBGY)2^o3u#`sKsrKFL#p1!Wq@ymlzei%dMy50LwZ0xFGyMcoc6pq2
zEmOQQ$Xj3F^^=!)xV*qb{Gv>)wsh9zzi12O(o`Gerqbg<3>gkl5FyJVFBVw*33J$Z
zGD7@JdqA3PHE<=~nJ0g?E2S(m1v~K3@7m}qiNj{X@`M`uPxxWF@!{H#u7}tA=&Z7q
z?@3mnXL37X8oFpNh`GRV)lNdC!UIkSPel6Im<6^%CwuNJDcw)$mIs=)Ws(jo*6bMT
z+A}3P{mi^9>8P~^)My0XmWQhZzbwWegy2mn25-9u>haL8x`Lb}M)6!@nAHB3d*z5&
zIT4KOG+mXfIZF}Jx}Of#rS_FTL-gC}8GXo_D7%c42!|=oqu~AkDJ`A}adUGZgOzmy
z>iW96<8NQZEQ{`N(phE4>X?N*okKVSPuK$4(<X>t((Yzo!D93Avg4pyAD)%@@yEO1
z1*X#ht6k0W(XKA-+hu|df8{%?$t9DO|M^|fhkqx|9EJ<1SzJm#70xc&LpbNKh3dpZ
zJ?lrxSIJ+O=PD5xxQ~X<hRx=YzNsAr{c7?uB(S&jR9-mzVKI*wE*{O6j{2Bq!HRz+
z>`}*)?WN3pe85dlRnI}*w8j!|@Lw~N!M<2T4QkV*Kh}TEOol*6Uk#?ss=~Mk)WynS
z^IbBZ3(n}g3~pQ$(d_uY2vRbFH#+~?x6py~qZZ+Z#4+!mC(q5x{N*^Ag^t`y2Jf~z
z>4lE}nW2A3FZkSvW1a;ra1sCWqsOfwk~5|%BV#4xjH02xV3|4Uoy2eyKK@NXHo(qn
zUfgv?IwP42u|`rs0ezUY-E!9_qXMv3Sei`Vk?5ATV3~A;FZjTa6whjZBfeuqm-kwt
zomL_-^>oIMKpZt(JR2_@xHhtNfR)3f?{%+R*4198<6oyM|2Ugxr=EuFI&;YA=MwaT
z2?o}5`QVOZ?+|+9bThJtvZJ<Ze-!p9GHe>$%S@MT{wV`N!b}(;2Of=iW%%p@3r`hj
z6H~ST-;jx!31foQhRdX&@dK<tr7s0n8!S~CDu&9Lw9%HBM`v$AB%5gLV350MiZC8|
z!5xar53Jt+Dq4L@g(}z`HU6+|#r;90S$JV9^VTx#WJaLm?C{@Snfz^bv8|*&dJJ3*
z01|6QH!*a~bGAs4KCT4z7m42KZQUSu*lih*v1S<0lAzaZ0Sm~znIm+UW+`C6@L|#^
zCLoEH!1oh9XJm+`<nlunrQBbvSy(c$d~7%8!H?H<XTH7z;2?J@g<Ab%*}}_DeXfy4
z2Ct5hHu+^IF_Pn;aHP^?BM|(!^5@~W@!!0pcHOemotK_3Wg1WTi`0JoB8F+8zM&lE
zxdy#a6t}4v^>KydEXx-!ec9v+OOnRx99uE|tlq7tmf_G#mLG=pK#6zp=Lc`+5uY={
zYt@_7STPf_f@G?yE%U9$&BxWoi~kDTi@?e2h1`wD8rwCM`mlXyf$O{0dz~1$4=r%5
zHy>3}z_?Dqf`qc`9HA5YP=qV?m&_@c3-il5?@}PcQfGjV$Zd25)z$$;dEwKZVOt6I
zl^dgX*PX>pz*FphE`0MF+ZRXt4L^u6UDDfKI2^Ks>^5#&MFfN<Z)bUzw0}O7!|j^^
z?+bHiI_CP5YoOcRo@I2C#)&#eD(tTPipV2Sra`Jxb8n&uB_p`SmFZeF1^eODZgZ*_
z=C1)W4|$oa4!Ud#s}|Cjzg!u$5Q;G>ld)li1g6-rQ9g)smCut+>ODlFn*>S&6%Gjg
zeh*`Q7kIHm2<=>4v|r_#ddbooRo&$Q!!i&l#>*Lb$FD>N-;9l?Azl*sn~f2C`tD-B
zy54xg^?RpNK?P}pGRWub={jrYN87mq%W&5{j#ZfpkY8rH&9$;&8Y&D254{h_x24n~
ziXa+lY|=@8G8kwQHU1|8GdjK()7X_DJw=m`LbCQ(Vmt_&3l<0;o-1xicz-zWPYMhU
zNF6EUkBXOp?+hHNx2T-$*?zzY$NCLEI+I;Qn6c?8p!mir_9XVVp3{b2$#mlr!u!|_
z#(PQD4!p9vOQ~B?S`0<aC(H$sN=0kwS4FdDVZQ55`1siC`Hru#i$BdQ%Tgx3ivAq}
zv#fVD3j~k@fpz*L;Dqcg(xOtZsE60`Mroof?!V(Kvah*mh6vOGW0<)wWGSy)pgA^!
z0J`HpEiPYyS+tyO><n-Ci@mcm1-KlyUtiL917qLzr@k((%@005-JN8`SL_PEyD$YE
z+~Tp6mBG=t#W>!LJkDnLK2uLG0dF>Xf=B-1YnHtcPhwz=f3Es9=f<y*8+rA1=78i?
z|Lw#Ve37C|m9#l+ADid{C#qL}c-nab__ee1y|XxvZ|W7^Y1gqlmmsD9=Rad8ka+Gq
z7mm=9^mtRfnWa_c0@i6ulyB_AFH4{D3k2pV9o_x<0qk!)@kHYJ5?&h^UM0d-71SSh
zrlTi7H!jwQiv$%0*~+*2958(T(NsGx!c*j;6|*}DdG0e^5ibh)+`(25KSK5S<wrt#
zi5Ugn7!l<caI*Wo1@xn+0m-LSf;Syol%$hEB0vv+BF#4Imbw?@0)a<tn5Ji|%F<-+
zVqfWczr>XZE@*6T>NInAstRg)DIAN9S{N)Gi<9T=gGe%w3|#DEgw&?Kv_UHc(l=w4
zq8^kAXRgfGA0I-sv!KQ&4@XBKuV?$b_Mm~PZz<Zu{$1RGBG&KQmMSOSr@M2f$4vio
zr&iD>2uVkxPf7(g{=uO>m%uv;-MrgfKrEqbUhfjTr33{0yHO@t6<k_iqTzs@n-pDc
zB<rgmJ5oj_Hl3E$_ml!V&D^qCE$;44LwgPZC-QL>`GJ#cB!@_U(E-U~pyb!oIYqY(
zJfEK>H<3L00ng~;-$96Ij!}rPVNAaBFvw(PrWS@lozVVU&Oj?b9CmShpnF~bI%J8z
zS*U)qp5$n{9}X#>|FYYOMljWtL@|`q<p@~7YGpGSLeU35l`rllUkjaXI5qkI`nu|<
zsJebVLzmRhHFTHKjnV@G(j|>_DBZ}wfOInwQX;K1jKt7L3QCNEARwU(ol4!|eeeC=
z`+aw<d(IzwowLr~&$EB$th4w2?dP{Q%;jcid<vnkO$6IG7Ly#jvt9#q5H1wpf!jC|
z>0SkTkc&NgjiU6k>%?xQfyCTo*O49b=k#4e3{@B6#8W;9fn=QQdy`=5Fop$|MjPaV
zkFOQ-P7EZcd#Da6!4o|Y6<c?+LeuTSUfW9#QB=Z>9<8p4(R)~Lyvrt8EVSh5ATXMN
z3+|5q(`)j=4Vv}&cl034cdhBKi!yZKFQ|B%?`(0kVzq=eYc=0->4VaNIUjOq(WMlw
zpo|yGNrr{%lU7i5g2Qji(M{APqzoyAgbi7V4$dF!$07Sw&GzCA6)KhP6oe32VNsmQ
zPMk^$!iUw0v29)(wc1x$mJRetY@YL_FZw}S^GhVUxURjrL5<hLV9_s^zj>4rHzv2H
z?c|wa(?9bjOV&z0|CEPyj_A@)tK&~7{28}2>NJ10zn!Y|AoJ??CJl>Zx`V!as%daP
zG7sgjvB&hSq{HwWl+fQ!u^$N+;Pn{u8O@=*Cq(p{4b|eI`z69$_a&xTC}=DQvVB<4
zSPK^fc}P292B;O|KBEjHd}H!0S?gKU(XEO5Bd3NhZ7y)n9dBnt-?hT@0@8+f<V3?7
z-PS4)fd%Y9Igcc8!`J&W7#+0^I&g<8i+RiWcO~$v9`D-Quc-5S6o6vH=^Xgs{PDgA
zlR+xOsAOiGtff}s;Us%NI_<BmG4B28Vj1SGE70pZ6lB(XEK7$Wwub7v)#=sTGy1#+
z+;tLtVoXyR4|elrZFBNcOf}BkXBI3S3AmcRWJO#@8*aka6wMMNJ2Y1s)2Ut}Jf={W
zA60kr2CX*j)@jd7;z(bnQFF(BDD@NxDkg?d^<@*vaJ~!6=d8_xwuGsC-Q~(OeS`J<
zl?*>1*oeA#f_jEjrym4?7F?jA^vv99zb=xUGak<#RQpTC$XD!=R7W%O=K1&R?vT#y
zd)p<js&wa5a;6w*yuK!6=EpwK(`5eX-qLYxcxEwe^n+G6YXnER|Ii(GZ121+k=SV~
zQGRzKqT{?J@{qwKW&P;h79dJdrlPB@wn&E36(*#peJVYyB(wT-o0ylK&@zt**_*H%
zegL%jWB+kzvYpZxKDF+4IAb2(3jpe}7y&JQEEWoPD+=+1gomy&>us<wV*F{IcUA$1
z$x{9+m<_R|F7-<+4N7d5>-_;d-Q~XyXP6x_qL-~NcdF)!>e*98Qi{;=L4KolRZG67
z0+)GTXnj#(i`mQrrIqC`Z|3O3f0Z5W@GL-WwV>XTn?L#M*%$2#s+M{XBRp++6LC3#
zyfh~?-B2aDaPR2QcBiVZ=rOf}IBvgP4v@ph{V_xCK}y`{OpZ4O=ay^UWJ*7T_vNJ=
z+lYAVwGa_`DICFD4d%uvhoiC^N4k9~?TaZm(|*Ch)oB&=%l$APt5hIwF>B68(hI^H
z@hvrF)$I5x=kOr*&(>{32i9U#*hVIDCS4&f>QfXXF}uD&oQ>u*IQrD9hzLH3<P(JI
z=MdCj#%vUlJgFtz>>eh<gdmUjddz1|F-LC4s1-AT(FH<cgvMI<9;7K~mN&9cv3}UN
zb?`4RM5FB(?w?MPI|{IUNaz43`iNEbmm?8JMYN`K2lnVmq2uKG)tE0T6UCqlyHLWW
zxIeS3Zc)_nE;_?_0G2tXhcqw=Sc?vUt5uc{L;SlqwS>-rf5nJ*rGy<MxNs+;YMlzy
zW6<Uf7tim(jBRFn@ns2gILmSfC2NaW@vMx#PfZNa@=v;oCnt1OYxN^)qaBbA>Y-%=
z(_z-Ey+pZ^cd^_;b|#~^WHGY5*E-ux3c%`(>>ZF>We@h?TaAm#hrv3+VOE)_cF2(M
z;Xzg_5$}6hQg10WZfagkL%WO9F=*af`u%X7Z-MdLkN?-x+8-JLar9IEgi^V>q>kpg
z>t2b1k6+C45oq1%(P0wees=c)z4&&ha+K5d8FxgviA2@o5?*U}0}!X_CyGRN+RrlY
zjY$HAnn@8ac1Cx({G8;a@po6gDVQmge09D8MdRWWT35>wf?2ebsqS4)ne3}rzR;3l
ztbBY&_xba(d|DI3yM^;Hx=k5hS63j`9ANNts^Y!7bCCY1X>2--vRINN$czThi0=^#
z-gvOAA&3Ni5`$SCNVM3N1RI-yu0CDV7BgpKK&Ky!Wr4FGr=zw)N^Bc?`{#PminkyK
z=|4>&X*DHm)mWpshcA8WS5fRnR;2w&C=1rev*SMPJS`2@_@jmC(zcccvuRU39tULm
zDaJ|UUMs-ddME<M>+m*Ic*G6y0aXoDpe(kCm-hK5RnxT(wP~%hNQ{Yx_}7qvU-FaG
zmUXNm6$|u+x=-#wK`%SK9IFFR1}LXQxN*{u8bd5@MX4*QA^aS#TKbH8iPkwMjY(Eg
z6mD&C%qXSPW>@E3rvZW@*f6@N5(msW^8G%mI^G*?n#e+IRfOxwd+^#RN1P0^eJ(-+
z>gcbW)A#9Cs=g)Xdzg0uw5YPPoz8YSAlIYH)v8oMseYZL7>NmJUN!mgWwtwjAdg36
zG`+g;p*Oj0sT4gq`Uf&Do=NTEZNVRWE&wmV9vJ(L`laNGOkU_tSnSF!CYo{l;P*w~
z=8VLcC43Lg_y)z=0~Gb$lih|&NRJYRupApNn~!rd8)yb@I|ohAYNx^Ub5;y{r|e#`
z=a;Gq8twOkw#9*T5b&5#rdj+~^M`)TuV+B8J1KdujR>LfQkv~%lsxt}aaxBkK3gvu
z3Vs4<)$k@w%>ZPk+5<d&nM61psZbr|&mpRuSj7weu{<dkjF2Y}TPl%Od8Jp#F+lE+
zDPE>Y>>Lwt_aZoMl{4zcwOLacSD_Zi9EG1me6Rrd(R(Y<NY@wE(dkIMM{gNv?^HB1
zO;x5<v6vkn@2G{^I=&ia{UFNoM23icQ(13~-Sv2iEVUyinH8L^mSzme(n#}tMKBk`
z>a39M6n!UJkglKg1Kxcv&gcS6+)5H_uAIIImH@aMt49OZcKvqHZf=P!fYgL$+t8UI
zD9v74xr<gl3nBYarh^XJQOma3y6wv~i}h5OjXKiO0<($jMjexc=?#`xYVNLo`;Pm_
zdt*`BX62yf1o=P0f}IK4{yOJ;a8VZ#xaVE3t@e4>$-x(;x6pzF=u2@{mv~D1*MY+y
zs3{|C(%;M!zj(xXH_CtMV$vfB#``GhV^<S0%`pi5K6dXTIiHD9^g6Zmn<cTNrOp`s
z`*A#ZiSyD&0B;jBc~e*j;7I6eZl4#It>05@B2nf{5Rq`y^lZvUPal8W4%}w!xvb+w
zXgRjkF*Q@XN1&2NB>KVb^+Mv{Ny~+VkV>lK)S`|~b@P245_@~{ObsM7P%_ptMnQ%p
zc}8R2tz>d5r<OSck=u0zh1MQ!S##{*M7|iliEbKWB3Hhr-*~_~kM+glv3pDOAiG{y
zw0x?M)}v{mvefaqj!$r{<4hW*jhy6{nn_3O@E4da3|wn+?^~W|X00<RW=2p4qu3cA
zu;or3(81_RX6?9xNs|(kxkU_mlWB2TGjHFF*#g!}w0DIv_r(I<y(*l0!8^JIMV>cv
z#oRv&(@vgN?X}QIuwlIHe=uJ5Ow0@7o)>*zYe{Eq%*rEeB*auRfk?|G3Ta;Brzzr$
z<RTS57!P?$7GBMvFu#m4<oVpgwU3OVYQH{NJzEA_8_*WQ*<fY+tz&FeDo~Vt_^JWX
zcd+2Dn0&<MVyGCLK@!W7@JWd8dou8P9~akFnsjP>L*EyU2zmic#=GHZKu2NRt?%n`
zk<<As23<H&eT&A`hi@s*%wBT&j*oC%)sS7?3k(=n-37*4i~D|v4_c;**r?Uv<Vj$^
zU)i+ujmRL8R3Ch@n_2D84ojieF_L>q2UEIp>HJ*@`$nO$Y&yXkp>`%bRN;~-I&o>5
z_gX7*WIpfJ60T^s&s%uO)P0pD_t@SiCES*Fg?X+*jl`pN{H|w40`ZaZh=cF1f1SQn
z-VsmNsBwW<#{dt(JBJSFEb5Q6xg<aKw4=;`tTt7uuB=LX6dnr75gQIZ+$g~BRX^x=
zCz2K}y@O_12YDy(<n(tHvv123^tMeNq6V`~9zKWQ*HE%!dd)ZZXg-E|NauUvH`vlF
z^M9%TGkn$lrT#aBVATH|msL??GRI-PqK6V{49N~d08{6^vhT8E6Q=yPOZS+uDqYMN
zFsBvKB6$HD?z2RWsx4z!8=JWnBR{?}h$3_GHqJ=kHiYoVIVsVIkh3)v9kl;W>;cBH
zp@`A-?c4a%Dft0y@Q}GoBO=)C;EIq>3ftP<#&y()KFkh|OgdsQ%SqgyRA1>3_wZc=
z)bTHsbNbT*MaF2%q*pN;Kvp5Smt<!z>XT1kJ#8j2z3F_<oVbK7vl|3B-U_%MqAaNO
z*iCHQveIk~qUk7zs>bu(c^m63=k-;ct{<zUQ>XFZP?vw<eyqX9;L58iaYePEIxvvK
z7D8}`ZJaIma-h1u<WofLn}>qA5^RHULgcHn=jmJo(&!8lp}r}0mMfFv7x?Z6ez(E+
znnfQwwaTT++Q>rnPM`QiSXsdtOi36%dJD{s+9l;oxCo3QKP-<JU68Idw}<N{It*6_
z6}NjVcAL_)nPQsUwvWLZ79g*plf`^O$@VT=66gZsVt0CbIHt*!T~rkFdW2KISN>qT
z3o9!8Ru)@b2Sf*c0$ea-qfD_-$jCr1@{8l^;bAyx=W8NrZ>!=Q^AB8$oTUh*Gc#5`
zjfM}|w0^{%tdajU$^ApkA0B>xKrxPEWn9{G%NHI)6AKpGk|^x8z^AVUU#2QyX|)`!
zosHKV4SR!IrEGd4Z=U*|yKNV}>a|(EIs#n#?<;*vPF-f*u@Oz~3J&l5{ikf-x$UAh
z@jxr|0qRi-!8C9;aF9VL%y}-(h~sRDdzZH9TxH{2P8=o{IlOVNx9&ABhrxN=PO9aD
zHdBP+Wb|Vw+nQoRVh4|ISAEe4-`zUHUk@*z0adgIiG--Ro5NzJW{A&ZQAUjBpgZbe
zcAs|D7K3>#wIR%oxpLlkgb!eM5);PKWON9);z)Z8AtWFOVp8{WHUDc|V`CKszEHs~
z%zCDWcdnnci;?h_X!BCVw{%x43~r>OY45&4U<5a=P+dm9_YGU(g+te^Q5==%AT!5k
zk39T6RF<_nZep-vst8}|%G^amiJ4i_QIK-n%n2P~_ltbj;tG)QS%Xk^;ALz_b4Vf1
z;&MNZd8M^;g@gp#@)I70p7u){qBYhK!6f|Bu_sLEEGMShupQ|S!B4C}YpmM{1&{|F
z{%W&>JT9Fc@S!8q?V=qHOpbAn6ZA;~3`T%*xV-qcy{x)c*t7b4bs3aI7St^q=Mv9T
zu@wvpgMS4zcYwbgggxDCn=5F64a(NV8YWO(x!l3dKT=QhYMZ;B=JCz=K?#%p@*b*=
ze7aj)<oN|D@`Us$M#BI5V_<8jh|6$@V!$rX684+5SdS}_<@{@v81kM!wL^8<u!!N|
z9Mre3+7hVQk2@GGM}nIVL>fn#x%j{$U8)C$?F<rKic-K$Y5@1~<^<jmCFJ2TD{QjS
zeNU5rZ<s){x|>Zl*ZEtW;3YQoO3G}FZ`jHbv&hhHfnYR7#=Tq@AL%1JO;)@45%}PJ
zKt+lK(q9l~`rSSkYW`$sP6E|4<Yq<+UGZnZ`?Nk@RcAGA^46zI?)k3m`ih*bv2_P%
z%YaWUV}$fibZH-CGG<F7>Z@d?6wugUXD7n*)Ayn7VipUD(i90_?n&p+gh>{`XE{Gi
zwT^oFZtxVM;7OW90?MT)8L~2xB#m$t{Bp6Fbmx8#iDwViXx<+(z!?PyI8KS=>}`Q)
z083H?cyh)zxvZ?NKKF$tb{f6vFOwt7E#Edt`51Mamiy!|UXyl_;uPY2o3PF!sm_!i
zgYRtb^Md$g%^VB|ZG{Zj6k84`1QMsGoX=}n-867HQz*?_r`+|FQeDbaC%6b=Y3M<F
zbtr?@ATrA>VPxS@JNp17t#7C#&ji-ta<4c+q#gB(u(9E`W|dDW1Ny=mGiA|)v;+BU
zJ9x3c#z|v<YQA@=OnY*yb&n<#84c7RCK4xz^KIOYE2hi(?Tu1m#df2tC2roX5Am%^
zc*<mzY#MB+xu3w=h<7d)yNUf8e;*0zq~Br!4WNZ)bVNgoRcynrIXz;&Ygt&Dok~2$
zW4d=Z5F9^7u9D<lQ<)OL@>4``BUnltuDFZfcYminM6{Iz?JZyS2*cwb=6&}Irq;9~
zj~m;A)`dKegc(f}8K{K`7=6l*0I}l^Z2P!I`hTNw88TVS$n)VFtM=cYCcFrMlmCRf
zIKE3%5>KJySBobW)p|``Yf>QXJm}`!B99<AVbl{bBUrwqH^mb2<04mx8C)B7!oKKm
zdLE7mTYr94z|$-NyfD`rd1;G{#>~L>bOTQr3DM54EQqi#xb~CSd#=6sagde()UDXW
z)t|5@qUdxWx;^62xGtFyaX@1KSW!lFup?%8M9Q#Cr#Z4mYYLi=EAvPX6=q<bq%U#S
zD;$AkGZ?8YW?#x9Iqn-@hurkrtT0XGFJ11_=#C<9wlT`sUwTZ8<U{mf3H|qrG*SfL
zb&U*MU|slZk3K(A8ld}bMC3-Qx35riUwQnB49Z7v6M3_F(`PPiHy=+}i~LGc8FBTD
z{QH5F&vkb@`~JmUtb=1@z7=xw=;fL`zCH`XZy9f#8ySi3HUX__AjQbdw9zv4>$z`1
z^{3dO_URgt;a)eav-=rQxPgF2Rx%0IUy7o5zAK%X8@E$l^C;WAdAldV1WsT@3jP6U
zD{I=5zQ(a<YA)Kg>|AA>3t#LEd|Km$I~&8#-|(%c6op?RzT9^ub8U|wNtM~rzb{3=
z(xfR3u(YyzbrrWht&N~cH8|l{R4@~JFsW>Z)2Lo&8^RS!u@%$DbROE@#}<V9fkc74
zJ9bZ5C#7B_>Ald~IDmdKnlDeW(=c+*=1eLrF7^ic2z@tRVabCzRP#7W=|d|FDy}c)
ztVmQhcp?7k`RZ?_rr4>jGbzDWTT&*L2mT^q6Q+!fdbz4-*o%lKve$C6k94R_AoC3b
z2Qg>DTUwhb3i%d+C~CBT_gzzQlApHAwI1wHQn^!g{)1j0B7F5vhxy{TZn<N&ffNtv
zzPS&~51`H2fG=kjI~d1`l5v{G(IS?9uwG&fowSHXyCV`bk$h1%<6)rX^=5wWSK2^%
zB<}CHi!&SGUZ=kgf;i$P%~LO{e(h8E8JFXu$YV}nt3IiqQ3%xsy}Ar;?wl_8G9~SY
zXFK*3z3j11u7lEvJ`V_tfg%M>7aN)ZF2C2(wSEE4NK*SNI0m2h=kWyPDn^7dte5qg
z6OL;J(CpIg@lpD`mcE)g+iZXz#qexb$r$E&R&zpk%Hwg&m5)iD2LD25nK)Ny{X*xM
zIJaSvY!l~qm?YQ48JQ#-=ANYu>b?+=2JWMclfqkt`X7H$VPW=)4Li1c8FUN+;|GVz
z_!*8-7d@-XFFr~!*(@}W-K+Fpa*dwsuqX`F{@GbG7u-fDyXWe^Bv5|z%3`yNd#m%^
zY%nrw^1`j~EOEOay6lI{vspRs39%Pd>->`xp~?Cdk&%KQ1>fY<=!aBLK(;^59qBl@
zA&ANY8B2~|nf#PLf?K?O@Uu&ux9gq8BM4vDyIwqolH=zlKcNN?aAmflOU$P@i*hn;
zzVJ$uKlKz4uxqv=fBA8`#m_Qz-m3>S$B70Iq`tsaDFx*0m~AC=p?ror!}ua|=Lzqt
zdLaRX$Y;;-yauuDpKVXNo`s6Bo0kWP1vo2Qoz|LqMXGbwP<aoL)>SN*o{a8H$2(@P
zPN2$9ju)D(5#bE!wFaH^axJeSYUTvmOgS=)6Qms4=01DRhpeBvt2ROoo}f`7e}pXG
zExt<DG~ruHdTgnO^xV!~Xrmb6AIxv?U6|fm3>e*6jCY)6(-sTxlKWG*po=JE{JY?`
z!Wfm7j0(5+4lPg6ivh=SZH3R|r2Z!OpN}$MO?p-=PW}y3xR4UD*=p#u`8WMZPYtB+
z0%mX8zZq_}mMtT8vKA2khs15=5IesDy*kzdyi^;B_}qpjJxwurh5pG~gUOroPu_=7
zs@nFYvii;Ra&3<>9NPZj@D{_t@*fWWe>t-lLyX-T;y*at+Hmm{Q}wRDs$L?U;2FJ&
zv6A&aR#L#gzWWFE6$aMyA6Sv+QzjYHZ_1h_95!1kFyyoUA^&-A@$@h2{|)*x&@1$>
zivI`b?FZo%`tP9O7*OP2pu8#e`Ni!RP@8{&3VHk0x~VkDzgZ1llQa7D9>ynpeOZaH
z3*VW%3@(zjyni!YLfmmRv6OB$-O`i%@EFqK^II-VFhtu5+nIJUIqsT`^<7wEKB6Ul
zG)8K1g;|})U~zihb@+y4ws!Q}E3Tyzs=aIcGjXjIqa%rZk*CNgxE5XR59E#1Ir4@~
zUmJ);1)u@|00aOMTc~-SlJjp61pt6s1pv@u?*9AX@XX21&&k+T)#-_=m#d$vx0kS+
zueaBK7V=>_q+oUe04NwI1YpYgUxy~<($mh>%gD*o#{*N;e`m+VyL|==bH-p&o#orB
F{{rqUS4aQ=

literal 0
HcmV?d00001

diff --git a/Solutions/Threat Intelligence/Package/createUiDefinition.json b/Solutions/Threat Intelligence/Package/createUiDefinition.json
index af6fbaf66d6..72b5e9731f2 100644
--- a/Solutions/Threat Intelligence/Package/createUiDefinition.json	
+++ b/Solutions/Threat Intelligence/Package/createUiDefinition.json	
@@ -6,7 +6,7 @@
     "config": {
       "isWizard": false,
       "basics": {
-        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/Azure_Sentinel.svg\"width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.\n\n**Data Connectors:** 5, **Workbooks:** 1, **Analytic Rules:** 53, **Hunting Queries:** 5\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
+        "description": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/Azure_Sentinel.svg\"width=\"75px\" height=\"75px\">\n\n**Note:** Please refer to the following before installing the solution: \n\n• Review the solution [Release Notes](https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md)\n\n • There may be [known issues](https://aka.ms/sentinelsolutionsknownissues) pertaining to this Solution, please refer to them before installing.\n\nThe Threat Intelligence solution contains data connectors for import of supported STIX objects into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.\n\n**Data Connectors:** 5, **Workbooks:** 1, **Analytic Rules:** 53, **Hunting Queries:** 5\n\n[Learn more about Microsoft Sentinel](https://aka.ms/azuresentinel) | [Learn more about Solutions](https://aka.ms/azuresentinelsolutionsdoc)",
         "subscription": {
           "resourceProviders": [
             "Microsoft.OperationsManagement/solutions",
@@ -67,84 +67,28 @@
             "name": "dataconnectors2-text",
             "type": "Microsoft.Common.TextBlock",
             "options": {
-              "text": "The data connectors installed are:"
+              "text": "This Solution installs the data connector for Threat Intelligence. You can get Threat Intelligence custom log data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
             }
           },
           {
-            "name": "DC1",
-            "type": "Microsoft.Common.Section",
-            "label": "(1)\t\tThreat Intelligence Platforms",
-            "elements": [
-              {
-                "name": "DC1-text",
-                "type": "Microsoft.Common.TextBlock",
-                "options": {
-                  "text": "Use this connector to send threat indicators to Microsoft Sentinel from your Threat Intelligence Platform (TIP), such as Threat Connect, Palo Alto Networks MindMeld, MISP, or other integrated applications."
-                }
-              }
-            ]
-          },
-          {
-            "name": "DC2",
-            "type": "Microsoft.Common.Section",
-            "label": "(2)\t\tThreat Intelligence - TAXII",
-            "elements": [
-              {
-                "name": "DC1-text",
-                "type": "Microsoft.Common.TextBlock",
-                "options": {
-                  "text": "Use this connector to bring in threat intelligence to Microsoft Sentinel from a TAXII 2.0 or 2.1 server."
-                }
-              }
-            ]
-          },
-          {
-            "name": "DC3",
-            "type": "Microsoft.Common.Section",
-            "label": "(3)\t\tThreat Intelligence Upload Indicators API",
-            "elements": [
-              {
-                "name": "DC1-text",
-                "type": "Microsoft.Common.TextBlock",
-                "options": {
-                  "text": "Microsoft Sentinel offer a data plane API to bring in threat intelligence from your Threat Intelligence Platform (TIP), such as Threat Connect, Palo Alto Networks MineMeld, MISP, or other integrated applications. Threat indicators can include IP addresses, domains, URLs, file hashes and email addresses."
-                }
-              }
-            ]
-          },
-          {
-            "name": "DC4",
-            "type": "Microsoft.Common.Section",
-            "label": "(4)\t\tMicrosoft Defender Threat Intelligence",
-            "elements": [
-              {
-                "name": "DC1-text",
-                "type": "Microsoft.Common.TextBlock",
-                "options": {
-                  "text": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc."
-                }
-              }
-            ]
+            "name": "dataconnectors3-text",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "text": "This Solution installs the data connector for Threat Intelligence. You can get Threat Intelligence custom log data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
+            }
           },
           {
-            "name": "DC5",
-            "type": "Microsoft.Common.Section",
-            "label": "(5)\t\tPremium Microsoft Defender Threat Intelligence",
-            "elements": [
-              {
-                "name": "DC1-text",
-                "type": "Microsoft.Common.TextBlock",
-                "options": {
-                  "text": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc. Note: This is a paid connector. To use and ingest data from it, please purchase the \"MDTI API Access\" SKU from the Partner Center."
-                }
-              }
-            ]
+            "name": "dataconnectors4-text",
+            "type": "Microsoft.Common.TextBlock",
+            "options": {
+              "text": "This Solution installs the data connector for Threat Intelligence. You can get Threat Intelligence custom log data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
+            }
           },
           {
-            "name": "dataconnectors3-text",
+            "name": "dataconnectors5-text",
             "type": "Microsoft.Common.TextBlock",
             "options": {
-              "text": "After installing the solution, configure and enable these data connectors by following guidance in Manage solution view."
+              "text": "This Solution installs the data connector for Threat Intelligence. You can get Threat Intelligence custom log data in your Microsoft Sentinel workspace. After installing the solution, configure and enable this data connector by following guidance in Manage solution view."
             }
           },
           {
@@ -958,13 +902,13 @@
           {
             "name": "analytic53",
             "type": "Microsoft.Common.Section",
-            "label": "TI map IP entity to Workday",
+            "label": "TI map IP entity to Workday(ASimAuditEventLogs)",
             "elements": [
               {
                 "name": "analytic53-text",
                 "type": "Microsoft.Common.TextBlock",
                 "options": {
-                  "text": "Identifies a match in Workday Activity from any IP IOC from TI"
+                  "text": "Detects a match in Workday activity from any IP Indicator of Compromise (IOC) provided by Threat Intelligence (TI)."
                 }
               }
             ]
diff --git a/Solutions/Threat Intelligence/Package/mainTemplate.json b/Solutions/Threat Intelligence/Package/mainTemplate.json
index 6661e8757b2..625fc627722 100644
--- a/Solutions/Threat Intelligence/Package/mainTemplate.json	
+++ b/Solutions/Threat Intelligence/Package/mainTemplate.json	
@@ -41,7 +41,7 @@
     "email": "support@microsoft.com",
     "_email": "[variables('email')]",
     "_solutionName": "Threat Intelligence",
-    "_solutionVersion": "3.0.8",
+    "_solutionVersion": "3.0.9",
     "solutionId": "azuresentinel.azure-sentinel-solution-threatintelligence-taxii",
     "_solutionId": "[variables('solutionId')]",
     "uiConfigId1": "ThreatIntelligenceTaxii",
@@ -492,8 +492,7 @@
       "analyticRuleTemplateSpecName53": "[concat(parameters('workspace'),'/Microsoft.SecurityInsights/',concat(parameters('workspace'),'-ar-',uniquestring('a924d317-03d2-4420-a71f-4d347bda4bd8')))]",
       "_analyticRulecontentProductId53": "[concat(take(variables('_solutionId'),50),'-','ar','-', uniqueString(concat(variables('_solutionId'),'-','AnalyticsRule','-','a924d317-03d2-4420-a71f-4d347bda4bd8','-', '1.0.0')))]"
     },
-    "_solutioncontentProductId": "[concat(take(variables('_solutionId'),50),'-','sl','-', uniqueString(concat(variables('_solutionId'),'-','Solution','-',variables('_solutionId'),'-', variables('_solutionVersion'))))]",
-   "management": "[concat('https://management','.azure','.com/')]"
+    "_solutioncontentProductId": "[concat(take(variables('_solutionId'),50),'-','sl','-', uniqueString(concat(variables('_solutionId'),'-','Solution','-',variables('_solutionId'),'-', variables('_solutionVersion'))))]"
   },
   "resources": [
     {
@@ -505,7 +504,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.8",
+        "description": "Threat Intelligence data connector with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion1')]",
@@ -523,7 +522,7 @@
                   "id": "[variables('_uiConfigId1')]",
                   "title": "Threat intelligence - TAXII",
                   "publisher": "Microsoft",
-                  "descriptionMarkdown": "Microsoft Sentinel integrates with TAXII 2.0 and 2.1 data sources to enable monitoring, alerting, and hunting using your threat intelligence. Use this connector to send threat indicators from TAXII servers to Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes. For more information, see the [Microsoft Sentinel documentation >](https://go.microsoft.com/fwlink/p/?linkid=2224105&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
+                  "descriptionMarkdown": "Microsoft Sentinel integrates with TAXII 2.0 and 2.1 data sources to enable monitoring, alerting, and hunting using your threat intelligence. Use this connector to send the supported STIX object types from TAXII servers to Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes. For more information, see the [Microsoft Sentinel documentation >](https://go.microsoft.com/fwlink/p/?linkid=2224105&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
                   "graphQueries": [
                     {
                       "metricName": "Total data received",
@@ -629,7 +628,7 @@
         "connectorUiConfig": {
           "title": "Threat intelligence - TAXII",
           "publisher": "Microsoft",
-          "descriptionMarkdown": "Microsoft Sentinel integrates with TAXII 2.0 and 2.1 data sources to enable monitoring, alerting, and hunting using your threat intelligence. Use this connector to send threat indicators from TAXII servers to Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes. For more information, see the [Microsoft Sentinel documentation >](https://go.microsoft.com/fwlink/p/?linkid=2224105&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
+          "descriptionMarkdown": "Microsoft Sentinel integrates with TAXII 2.0 and 2.1 data sources to enable monitoring, alerting, and hunting using your threat intelligence. Use this connector to send the supported STIX object types from TAXII servers to Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes. For more information, see the [Microsoft Sentinel documentation >](https://go.microsoft.com/fwlink/p/?linkid=2224105&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
           "graphQueries": [
             {
               "metricName": "Total data received",
@@ -664,7 +663,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.8",
+        "description": "Threat Intelligence data connector with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion2')]",
@@ -823,7 +822,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.8",
+        "description": "Threat Intelligence data connector with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion3')]",
@@ -839,7 +838,7 @@
               "properties": {
                 "connectorUiConfig": {
                   "id": "[variables('_uiConfigId3')]",
-                  "title": "Threat Intelligence Upload Indicators API (Preview)",
+                  "title": "Threat Intelligence Upload API (Preview)",
                   "publisher": "Microsoft",
                   "descriptionMarkdown": "Microsoft Sentinel offers a data plane API to bring in threat intelligence from your Threat Intelligence Platform (TIP), such as Threat Connect, Palo Alto Networks MineMeld, MISP, or other integrated applications. Threat indicators can include IP addresses, domains, URLs, file hashes and email addresses. For more information, see the [Microsoft Sentinel documentation](https://go.microsoft.com/fwlink/p/?linkid=2269830&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
                   "graphQueries": [
@@ -897,12 +896,12 @@
                       "title": "Follow These Steps to Connect to your Threat Intelligence: "
                     },
                     {
-                      "description": "[concat('To send request to the APIs, you need to acquire Azure Active Directory access token. You can follow instruction in this page: https://docs.microsoft.com/azure/databricks/dev-tools/api/latest/aad/app-aad-token#get-an-azure-ad-access-token \n  - Notice: Please request AAD access token with scope value: ', variables('management'), '.default')]",
+                      "description": "To send request to the APIs, you need to acquire Microsoft Entra ID access token. You can follow instruction in this page: https://docs.microsoft.com/azure/databricks/dev-tools/api/latest/aad/app-aad-token#get-an-azure-ad-access-token \n  - Notice: Please request Microsoft Entra ID access token with scope value: https://management.azure.com/.default  ",
                       "title": "1. Get Microsoft Entra ID Access Token"
                     },
                     {
-                      "description": "You can send indicators by calling our Upload Indicators API. For more information about the API, click [here](https://learn.microsoft.com/azure/sentinel/upload-indicators-api). \n\n>HTTP method: POST \n\n>Endpoint: https://api.ti.sentinel.azure.com/workspaces/[WorkspaceID]/threatintelligenceindicators:upload?api-version=2022-07-01  \n\n>WorkspaceID: the workspace that the indicators are uploaded to.  \n\n\n>Header Value 1: \"Authorization\" = \"Bearer [Microsoft Entra ID Access Token from step 1]\" \n\n\n> Header Value 2: \"Content-Type\" = \"application/json\"  \n \n>Body: The body is a JSON object containing an array of indicators in STIX format.",
-                      "title": "2. Send indicators to Sentinel"
+                      "description": "You can send the supported STIX object types by calling our Upload API. For more information about the API, click [here](https://learn.microsoft.com/azure/sentinel/upload-indicators-api). \n\n>HTTP method: POST \n\n>Endpoint: https://api.ti.sentinel.azure.com/workspaces/[WorkspaceID]/threatintelligence-stix-objects:upload?api-version=2024-02-01  \n\n>WorkspaceID: the workspace that the STIX objects are uploaded to.  \n\n\n>Header Value 1: \"Authorization\" = \"Bearer [Microsoft Entra ID Access Token from step 1]\" \n\n\n> Header Value 2: \"Content-Type\" = \"application/json\"  \n \n>Body: The body is a JSON object containing an array of STIX objects.",
+                      "title": "2. Send STIX objects to Sentinel"
                     }
                   ]
                 }
@@ -943,7 +942,7 @@
         "contentSchemaVersion": "3.0.0",
         "contentId": "[variables('_dataConnectorContentId3')]",
         "contentKind": "DataConnector",
-        "displayName": "Threat Intelligence Upload Indicators API (Preview)",
+        "displayName": "Threat Intelligence Upload API (Preview)",
         "contentProductId": "[variables('_dataConnectorcontentProductId3')]",
         "id": "[variables('_dataConnectorcontentProductId3')]",
         "version": "[variables('dataConnectorVersion3')]"
@@ -987,7 +986,7 @@
       "kind": "GenericUI",
       "properties": {
         "connectorUiConfig": {
-          "title": "Threat Intelligence Upload Indicators API (Preview)",
+          "title": "Threat Intelligence Upload API (Preview)",
           "publisher": "Microsoft",
           "descriptionMarkdown": "Microsoft Sentinel offers a data plane API to bring in threat intelligence from your Threat Intelligence Platform (TIP), such as Threat Connect, Palo Alto Networks MineMeld, MISP, or other integrated applications. Threat indicators can include IP addresses, domains, URLs, file hashes and email addresses. For more information, see the [Microsoft Sentinel documentation](https://go.microsoft.com/fwlink/p/?linkid=2269830&wt.mc_id=sentinel_dataconnectordocs_content_cnl_csasci).",
           "graphQueries": [
@@ -1045,12 +1044,12 @@
               "title": "Follow These Steps to Connect to your Threat Intelligence: "
             },
             {
-              "description": "[concat('To send request to the APIs, you need to acquire Azure Active Directory access token. You can follow instruction in this page: https://docs.microsoft.com/azure/databricks/dev-tools/api/latest/aad/app-aad-token#get-an-azure-ad-access-token \n  - Notice: Please request AAD access token with scope value: ', variables('management'), '.default')]",
+              "description": "To send request to the APIs, you need to acquire Microsoft Entra ID access token. You can follow instruction in this page: https://docs.microsoft.com/azure/databricks/dev-tools/api/latest/aad/app-aad-token#get-an-azure-ad-access-token \n  - Notice: Please request Microsoft Entra ID access token with scope value: https://management.azure.com/.default  ",
               "title": "1. Get Microsoft Entra ID Access Token"
             },
             {
-              "description": "You can send indicators by calling our Upload Indicators API. For more information about the API, click [here](https://learn.microsoft.com/azure/sentinel/upload-indicators-api). \n\n>HTTP method: POST \n\n>Endpoint: https://api.ti.sentinel.azure.com/workspaces/[WorkspaceID]/threatintelligenceindicators:upload?api-version=2022-07-01  \n\n>WorkspaceID: the workspace that the indicators are uploaded to.  \n\n\n>Header Value 1: \"Authorization\" = \"Bearer [Microsoft Entra ID Access Token from step 1]\" \n\n\n> Header Value 2: \"Content-Type\" = \"application/json\"  \n \n>Body: The body is a JSON object containing an array of indicators in STIX format.",
-              "title": "2. Send indicators to Sentinel"
+              "description": "You can send the supported STIX object types by calling our Upload API. For more information about the API, click [here](https://learn.microsoft.com/azure/sentinel/upload-indicators-api). \n\n>HTTP method: POST \n\n>Endpoint: https://api.ti.sentinel.azure.com/workspaces/[WorkspaceID]/threatintelligence-stix-objects:upload?api-version=2024-02-01  \n\n>WorkspaceID: the workspace that the STIX objects are uploaded to.  \n\n\n>Header Value 1: \"Authorization\" = \"Bearer [Microsoft Entra ID Access Token from step 1]\" \n\n\n> Header Value 2: \"Content-Type\" = \"application/json\"  \n \n>Body: The body is a JSON object containing an array of STIX objects.",
+              "title": "2. Send STIX objects to Sentinel"
             }
           ],
           "id": "[variables('_uiConfigId3')]"
@@ -1066,7 +1065,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.8",
+        "description": "Threat Intelligence data connector with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion4')]",
@@ -1082,10 +1081,11 @@
               "properties": {
                 "connectorUiConfig": {
                   "id": "[variables('_uiConfigId4')]",
-                  "title": "Premium Microsoft Defender Threat Intelligence (Preview)",
+                  "title": "Premium Microsoft Defender Threat Intelligence",
                   "publisher": "Microsoft",
                   "logo": {
-                    "type": 258
+                    "type": 258,
+                    "options": null
                   },
                   "descriptionMarkdown": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc. Note: This is a paid connector. To use and ingest data from it, please purchase the \"MDTI API Access\" SKU from the Partner Center.",
                   "graphQueries": [
@@ -1200,7 +1200,7 @@
         "contentSchemaVersion": "3.0.0",
         "contentId": "[variables('_dataConnectorContentId4')]",
         "contentKind": "DataConnector",
-        "displayName": "Premium Microsoft Defender Threat Intelligence (Preview)",
+        "displayName": "Premium Microsoft Defender Threat Intelligence",
         "contentProductId": "[variables('_dataConnectorcontentProductId4')]",
         "id": "[variables('_dataConnectorcontentProductId4')]",
         "version": "[variables('dataConnectorVersion4')]"
@@ -1244,7 +1244,7 @@
       "kind": "GenericUI",
       "properties": {
         "connectorUiConfig": {
-          "title": "Premium Microsoft Defender Threat Intelligence (Preview)",
+          "title": "Premium Microsoft Defender Threat Intelligence",
           "publisher": "Microsoft",
           "descriptionMarkdown": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc. Note: This is a paid connector. To use and ingest data from it, please purchase the \"MDTI API Access\" SKU from the Partner Center.",
           "graphQueries": [
@@ -1334,7 +1334,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intelligence data connector with template version 3.0.8",
+        "description": "Threat Intelligence data connector with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('dataConnectorVersion5')]",
@@ -1350,7 +1350,7 @@
               "properties": {
                 "connectorUiConfig": {
                   "id": "[variables('_uiConfigId5')]",
-                  "title": "Microsoft Defender Threat Intelligence (Preview)",
+                  "title": "Microsoft Defender Threat Intelligence",
                   "publisher": "Microsoft",
                   "descriptionMarkdown": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc.",
                   "graphQueries": [
@@ -1412,7 +1412,7 @@
         "contentSchemaVersion": "3.0.0",
         "contentId": "[variables('_dataConnectorContentId5')]",
         "contentKind": "DataConnector",
-        "displayName": "Microsoft Defender Threat Intelligence (Preview)",
+        "displayName": "Microsoft Defender Threat Intelligence",
         "contentProductId": "[variables('_dataConnectorcontentProductId5')]",
         "id": "[variables('_dataConnectorcontentProductId5')]",
         "version": "[variables('dataConnectorVersion5')]"
@@ -1456,7 +1456,7 @@
       "kind": "StaticUI",
       "properties": {
         "connectorUiConfig": {
-          "title": "Microsoft Defender Threat Intelligence (Preview)",
+          "title": "Microsoft Defender Threat Intelligence",
           "publisher": "Microsoft",
           "descriptionMarkdown": "Microsoft Sentinel provides you the capability to import threat intelligence generated by Microsoft to enable monitoring, alerting and hunting. Use this data connector to import Indicators of Compromise (IOCs) from Microsoft Defender Threat Intelligence (MDTI) into Microsoft Sentinel. Threat indicators can include IP addresses, domains, URLs, and file hashes, etc.",
           "graphQueries": [
@@ -1493,7 +1493,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "ThreatIntelligence Workbook with template version 3.0.8",
+        "description": "ThreatIntelligence Workbook with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('workbookVersion1')]",
@@ -1597,7 +1597,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_OfficeActivity_HuntingQueries Hunting Query with template version 3.0.8",
+        "description": "FileEntity_OfficeActivity_HuntingQueries Hunting Query with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject1').huntingQueryVersion1]",
@@ -1678,7 +1678,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_SecurityEvent_HuntingQueries Hunting Query with template version 3.0.8",
+        "description": "FileEntity_SecurityEvent_HuntingQueries Hunting Query with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject2').huntingQueryVersion2]",
@@ -1759,7 +1759,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_Syslog_HuntingQueries Hunting Query with template version 3.0.8",
+        "description": "FileEntity_Syslog_HuntingQueries Hunting Query with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject3').huntingQueryVersion3]",
@@ -1840,7 +1840,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_VMConnection_HuntingQueries Hunting Query with template version 3.0.8",
+        "description": "FileEntity_VMConnection_HuntingQueries Hunting Query with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject4').huntingQueryVersion4]",
@@ -1921,7 +1921,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileEntity_WireData_HuntingQueries Hunting Query with template version 3.0.8",
+        "description": "FileEntity_WireData_HuntingQueries Hunting Query with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('huntingQueryObject5').huntingQueryVersion5]",
@@ -2002,7 +2002,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject1').analyticRuleVersion1]",
@@ -2056,31 +2056,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "PA_Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "PA_Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -2136,7 +2136,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject2').analyticRuleVersion2]",
@@ -2196,44 +2196,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "Process",
                     "fieldMappings": [
                       {
-                        "columnName": "InitiatingProcessCommandLine",
-                        "identifier": "CommandLine"
+                        "identifier": "CommandLine",
+                        "columnName": "InitiatingProcessCommandLine"
                       }
-                    ]
+                    ],
+                    "entityType": "Process"
                   }
                 ]
               }
@@ -2289,7 +2289,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject3').analyticRuleVersion3]",
@@ -2349,39 +2349,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Computer"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "ClientIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "ClientIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -2437,7 +2437,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject4').analyticRuleVersion4]",
@@ -2497,21 +2497,21 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "RecipientEmailAddress",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "RecipientEmailAddress"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   }
                 ]
               }
@@ -2567,7 +2567,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject5').analyticRuleVersion5]",
@@ -2584,7 +2584,7 @@
                 "description": "Identifies a match in EmailUrlInfo table from any Domain IOC from TI.",
                 "displayName": "TI map Domain entity to EmailUrlInfo",
                 "enabled": false,
-                "query": "let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour\nlet ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days\nlet EmailUrlInfo_ = EmailUrlInfo\n    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains\n    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period\n    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase\n    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated\nlet EmailEvents_ = EmailEvents\n    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period\nlet TI_Urls = ThreatIntelligenceIndicator\n    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n    | where isnotempty(Url) // Filter for non-empty URLs\n    | extend Url = tolower(Url) // Convert URLs to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL\n    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        Url,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nlet TI_Domains = ThreatIntelligenceIndicator\n    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n    | where isnotempty(DomainName) // Filter for non-empty domain names\n    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name\n    | where Active == true and ExpirationDateTime > now() // Filter for active indicators that haven't expired\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        UrlDomain,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nunion TI_Urls, TI_Domains // Combine URL and domain threat intelligence data\n| extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column\n| join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID\n| where DeliveryAction !has \"Blocked\" // Filter out blocked delivery actions\n| extend\n    Name = tostring(split(RecipientEmailAddress, '@', 0)[0]),\n    UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)[0]); // Extract name and UPN suffix from recipient email address\n",
+                "query": "let dt_lookBack = 1h; // Define the lookback period for email data as 1 hour\nlet ioc_lookBack = 14d; // Define the lookback period for threat intelligence data as 14 days\nlet EmailUrlInfo_ = EmailUrlInfo\n    | where isnotempty(Url) or isnotempty(UrlDomain) // Filter for non-empty URLs or URL domains\n    | where TimeGenerated >= ago(dt_lookBack) // Filter for records within the lookback period\n    | extend Url = tolower(Url), UrlDomain = tolower(UrlDomain) // Convert URLs and domains to lowercase\n    | extend EmailUrlInfo_TimeGenerated = TimeGenerated; // Create a new column for the time generated\nlet EmailEvents_ = EmailEvents\n    | where TimeGenerated >= ago(dt_lookBack); // Filter email events within the lookback period\nlet TI_Indicators = ThreatIntelligenceIndicator\n    | where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n    | summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId\n    | where Active == true and ExpirationDateTime > now(); // Filter for active indicators that haven't expired\nlet TI_Urls = TI_Indicators\n    | where isnotempty(Url) // Filter for non-empty URLs\n    | extend Url = tolower(Url) // Convert URLs to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on Url // Join with email URL info on URL\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, Url // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        Url,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nlet TI_Domains = TI_Indicators\n    | where isnotempty(DomainName) // Filter for non-empty domain names\n    | extend DomainName = tolower(DomainName) // Convert domain names to lowercase\n    | join kind=innerunique (EmailUrlInfo_) on $left.DomainName == $right.UrlDomain // Join with email URL info on domain name\n    | where EmailUrlInfo_TimeGenerated < ExpirationDateTime // Ensure email info was generated before the indicator expired\n    | summarize EmailUrlInfo_TimeGenerated = arg_max(EmailUrlInfo_TimeGenerated, *) by IndicatorId, UrlDomain // Get the latest email info for each indicator\n    | project\n        EmailUrlInfo_TimeGenerated,\n        Description,\n        ActivityGroupNames,\n        IndicatorId,\n        ThreatType,\n        ExpirationDateTime,\n        ConfidenceScore,\n        UrlDomain,\n        UrlLocation,\n        NetworkMessageId; // Select relevant columns\nunion TI_Urls, TI_Domains // Combine URL and domain threat intelligence data\n    | extend timestamp = EmailUrlInfo_TimeGenerated // Add a timestamp column\n    | join kind=inner (EmailEvents_) on NetworkMessageId // Join with email events on network message ID\n    | where DeliveryAction !has \"Blocked\" // Filter out blocked delivery actions\n    | extend\n        Name = tostring(split(RecipientEmailAddress, '@', 0)),\n        UPNSuffix = tostring(split(RecipientEmailAddress, '@', 1)); // Extract name and UPN suffix from recipient email address\n",
                 "queryFrequency": "PT1H",
                 "queryPeriod": "P14D",
                 "severity": "Medium",
@@ -2627,30 +2627,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "RecipientEmailAddress",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "RecipientEmailAddress"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -2706,7 +2706,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject6').analyticRuleVersion6]",
@@ -2772,32 +2772,32 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SrcIpAddr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SrcIpAddr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ],
                 "customDetails": {
+                  "ActivityGroupNames": "ActivityGroupNames",
                   "IndicatorId": "IndicatorId",
-                  "ThreatType": "ThreatType",
+                  "IoCExpirationTime": "ExpirationDateTime",
                   "IoCDescription": "Description",
                   "EventTime": "Event_TimeGenerated",
-                  "IoCExpirationTime": "ExpirationDateTime",
                   "IoCConfidenceScore": "ConfidenceScore",
-                  "ActivityGroupNames": "ActivityGroupNames"
+                  "ThreatType": "ThreatType"
                 },
                 "alertDetailsOverride": {
                   "alertDisplayNameFormat": "A web request from {{SrcIpAddr}} to hostname  {{domain}} matched an IoC",
@@ -2856,7 +2856,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject7').analyticRuleVersion7]",
@@ -2916,31 +2916,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "PA_Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "PA_Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -2996,7 +2996,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject8').analyticRuleVersion8]",
@@ -3062,31 +3062,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IP_addr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IP_addr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3142,7 +3142,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject9').analyticRuleVersion9]",
@@ -3202,39 +3202,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Computer"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "HostIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "HostIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3290,7 +3290,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject10').analyticRuleVersion10]",
@@ -3350,39 +3350,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Caller",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Caller"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "CallerIpAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "CallerIpAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3438,7 +3438,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_EmailEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject11').analyticRuleVersion11]",
@@ -3498,21 +3498,21 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "RecipientEmailAddress",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "RecipientEmailAddress"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   }
                 ]
               }
@@ -3568,7 +3568,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject12').analyticRuleVersion12]",
@@ -3628,39 +3628,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "UserId",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "UserId"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "ClientIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "ClientIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3716,7 +3716,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject13').analyticRuleVersion13]",
@@ -3776,31 +3776,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "DestinationUserID",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "DestinationUserID"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3856,7 +3856,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_SecurityAlert_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject14').analyticRuleVersion14]",
@@ -3916,30 +3916,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "EntityEmail",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "EntityEmail"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -3995,7 +3995,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject15').analyticRuleVersion15]",
@@ -4067,44 +4067,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "TargetUserName",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "TargetUserName"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IpAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IpAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -4160,7 +4160,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject16').analyticRuleVersion16]",
@@ -4226,39 +4226,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "UserPrincipalName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "UserPrincipalName"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IPAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IPAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -4314,7 +4314,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "FileHashEntity_CommonSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject17').analyticRuleVersion17]",
@@ -4374,69 +4374,69 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceUserName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "SourceUserName"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "DeviceName"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
-                        "columnName": "FileHashValue",
-                        "identifier": "Value"
+                        "identifier": "Value",
+                        "columnName": "FileHashValue"
                       },
                       {
-                        "columnName": "FileHashType",
-                        "identifier": "Algorithm"
+                        "identifier": "Algorithm",
+                        "columnName": "FileHashType"
                       }
-                    ]
+                    ],
+                    "entityType": "FileHash"
                   }
                 ]
               }
@@ -4492,7 +4492,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_DeviceFileEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "FileHashEntity_DeviceFileEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject18').analyticRuleVersion18]",
@@ -4552,43 +4552,43 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "RequestAccountName",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "RequestAccountName"
                       },
                       {
-                        "columnName": "RequestAccountSid",
-                        "identifier": "Sid"
+                        "identifier": "Sid",
+                        "columnName": "RequestAccountSid"
                       },
                       {
-                        "columnName": "RequestAccountDomain",
-                        "identifier": "NTDomain"
+                        "identifier": "NTDomain",
+                        "columnName": "RequestAccountDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
-                        "columnName": "FileHashValue",
-                        "identifier": "Value"
+                        "identifier": "Value",
+                        "columnName": "FileHashValue"
                       },
                       {
-                        "columnName": "FileHashType",
-                        "identifier": "Algorithm"
+                        "identifier": "Algorithm",
+                        "columnName": "FileHashType"
                       }
-                    ]
+                    ],
+                    "entityType": "FileHash"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   }
                 ]
               }
@@ -4644,7 +4644,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "FileHashEntity_SecurityEvent_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject19').analyticRuleVersion19]",
@@ -4716,60 +4716,60 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Account",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Account"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "NTDomain",
-                        "identifier": "NTDomain"
+                        "identifier": "NTDomain",
+                        "columnName": "NTDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Computer"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
-                        "columnName": "FileHashValue",
-                        "identifier": "Value"
+                        "identifier": "Value",
+                        "columnName": "FileHashValue"
                       },
                       {
-                        "columnName": "FileHashType",
-                        "identifier": "Algorithm"
+                        "identifier": "Algorithm",
+                        "columnName": "FileHashType"
                       }
-                    ]
+                    ],
+                    "entityType": "FileHash"
                   }
                 ]
               }
@@ -4825,7 +4825,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AppServiceHTTPLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AppServiceHTTPLogs_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject20').analyticRuleVersion20]",
@@ -4879,53 +4879,53 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "CsUsername",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "CsUsername"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "CIp",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "CIp"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
-                        "columnName": "_ResourceId",
-                        "identifier": "ResourceId"
+                        "identifier": "ResourceId",
+                        "columnName": "_ResourceId"
                       }
-                    ]
+                    ],
+                    "entityType": "AzureResource"
                   }
                 ],
                 "alertDetailsOverride": {
@@ -4984,7 +4984,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AWSCloudTrail_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AWSCloudTrail_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject21').analyticRuleVersion21]",
@@ -5044,31 +5044,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "UserIdentityUserName",
-                        "identifier": "ObjectGuid"
+                        "identifier": "ObjectGuid",
+                        "columnName": "UserIdentityUserName"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIpAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIpAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -5124,7 +5124,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AzureActivity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject22').analyticRuleVersion22]",
@@ -5184,57 +5184,57 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Caller",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Caller"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "AadUserId",
-                        "identifier": "AadUserId"
+                        "identifier": "AadUserId",
+                        "columnName": "AadUserId"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "CallerIpAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "CallerIpAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
-                        "columnName": "ResourceId",
-                        "identifier": "ResourceId"
+                        "identifier": "ResourceId",
+                        "columnName": "ResourceId"
                       }
-                    ]
+                    ],
+                    "entityType": "AzureResource"
                   }
                 ]
               }
@@ -5290,7 +5290,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureFirewall_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AzureFirewall_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject23').analyticRuleVersion23]",
@@ -5350,22 +5350,22 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "TI_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "TI_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -5421,7 +5421,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureKeyVault_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AzureKeyVault_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject24').analyticRuleVersion24]",
@@ -5481,22 +5481,22 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "ClientIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "ClientIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "AzureResource",
                     "fieldMappings": [
                       {
-                        "columnName": "ResourceId",
-                        "identifier": "ResourceId"
+                        "identifier": "ResourceId",
+                        "columnName": "ResourceId"
                       }
-                    ]
+                    ],
+                    "entityType": "AzureResource"
                   }
                 ]
               }
@@ -5552,7 +5552,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureNetworkAnalytics_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AzureNetworkAnalytics_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject25').analyticRuleVersion25]",
@@ -5606,39 +5606,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Computer"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "TI_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "TI_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -5694,7 +5694,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_AzureSQL_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_AzureSQL_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject26').analyticRuleVersion26]",
@@ -5754,13 +5754,13 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "ClientIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "ClientIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -5816,7 +5816,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_CustomSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_CustomSecurityLog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject27').analyticRuleVersion27]",
@@ -5876,13 +5876,13 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "CS_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "CS_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -5938,7 +5938,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject28').analyticRuleVersion28]",
@@ -5998,44 +5998,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "TI_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "TI_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "RemoteUrl",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "RemoteUrl"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   }
                 ]
               }
@@ -6091,7 +6091,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject29').analyticRuleVersion29]",
@@ -6151,39 +6151,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Computer"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "ClientIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "ClientIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -6239,7 +6239,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_imWebSession_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject30').analyticRuleVersion30]",
@@ -6305,23 +6305,23 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "DstIpAddr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "DstIpAddr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ],
                 "customDetails": {
+                  "ActivityGroupNames": "ActivityGroupNames",
                   "IndicatorId": "IndicatorId",
-                  "ThreatType": "ThreatType",
+                  "IoCExpirationTime": "ExpirationDateTime",
                   "IoCDescription": "Description",
                   "EventTime": "imNWS_TimeGenerated",
-                  "IoCExpirationTime": "ExpirationDateTime",
                   "IoCConfidenceScore": "ConfidenceScore",
-                  "ActivityGroupNames": "ActivityGroupNames"
+                  "ThreatType": "ThreatType"
                 },
                 "alertDetailsOverride": {
                   "alertDisplayNameFormat": "The IP {{SrcIpAddr}} of the web request matches an IP IoC",
@@ -6380,7 +6380,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject31').analyticRuleVersion31]",
@@ -6440,39 +6440,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "UserId",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "UserId"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "TI_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "TI_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -6528,7 +6528,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_SigninLogs_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject32').analyticRuleVersion32]",
@@ -6594,39 +6594,39 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "UserPrincipalName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "UserPrincipalName"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IPAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IPAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -6682,7 +6682,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_VMConnection_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_VMConnection_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject33').analyticRuleVersion33]",
@@ -6742,35 +6742,35 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "DnsDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "DnsDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "RemoteIp",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "RemoteIp"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -6826,7 +6826,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_W3CIISLog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_W3CIISLog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject34').analyticRuleVersion34]",
@@ -6886,40 +6886,40 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "csUserName",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "csUserName"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "Computer"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "cIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "cIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -6975,7 +6975,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_AuditLogs_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_AuditLogs_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject35').analyticRuleVersion35]",
@@ -7035,47 +7035,47 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "userPrincipalName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "userPrincipalName"
                       },
                       {
-                        "columnName": "AccountName",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "AccountName"
                       },
                       {
-                        "columnName": "AccountUPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "AccountUPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "TargetResourceDisplayName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "TargetResourceDisplayName"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "HostNameDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "HostNameDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7131,7 +7131,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_DeviceNetworkEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject36').analyticRuleVersion36]",
@@ -7191,44 +7191,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "Process",
                     "fieldMappings": [
                       {
-                        "columnName": "InitiatingProcessCommandLine",
-                        "identifier": "CommandLine"
+                        "identifier": "CommandLine",
+                        "columnName": "InitiatingProcessCommandLine"
                       }
-                    ]
+                    ],
+                    "entityType": "Process"
                   }
                 ]
               }
@@ -7284,7 +7284,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_EmailUrlInfo_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject37').analyticRuleVersion37]",
@@ -7344,30 +7344,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "RecipientEmailAddress",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "RecipientEmailAddress"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7423,7 +7423,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_OfficeActivity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject38').analyticRuleVersion38]",
@@ -7483,30 +7483,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "User",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "User"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7562,7 +7562,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_PaloAlto_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject39').analyticRuleVersion39]",
@@ -7622,31 +7622,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "PA_Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "PA_Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7702,7 +7702,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_SecurityAlerts_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_SecurityAlerts_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject40').analyticRuleVersion40]",
@@ -7768,22 +7768,22 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Compromised_Host",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "Compromised_Host"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7839,7 +7839,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_Syslog_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject41').analyticRuleVersion41]",
@@ -7899,31 +7899,31 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Computer",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "Computer"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "HostIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "HostIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -7979,7 +7979,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_UrlClickEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_UrlClickEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject42').analyticRuleVersion42]",
@@ -8039,30 +8039,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "AccountUpn",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "AccountUpn"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   }
                 ]
               }
@@ -8118,7 +8118,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_DuoSecurity_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_DuoSecurity_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject43').analyticRuleVersion43]",
@@ -8178,30 +8178,30 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "user_name_s",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "user_name_s"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "access_device_ip_s",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "access_device_ip_s"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -8257,7 +8257,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "imDns_DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "imDns_DomainEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject44').analyticRuleVersion44]",
@@ -8359,62 +8359,62 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Dvc",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Dvc"
                       },
                       {
-                        "columnName": "HostName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "HostName"
                       },
                       {
-                        "columnName": "HostNameDomain",
-                        "identifier": "DnsDomain"
+                        "identifier": "DnsDomain",
+                        "columnName": "HostNameDomain"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SrcIpAddr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SrcIpAddr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "DNS",
                     "fieldMappings": [
                       {
-                        "columnName": "Domain",
-                        "identifier": "DomainName"
+                        "identifier": "DomainName",
+                        "columnName": "Domain"
                       }
-                    ]
+                    ],
+                    "entityType": "DNS"
                   }
                 ],
                 "customDetails": {
-                  "IndicatorId": "IndicatorId",
-                  "QueryType": "DnsQueryType",
                   "DnsQuery": "DnsQuery",
-                  "ThreatType": "ThreatType",
-                  "ConfidenceScore": "ConfidenceScore",
+                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "DNSRequestTime": "DNS_TimeGenerated",
+                  "ConfidenceScore": "ConfidenceScore",
                   "ExpirationDateTime": "ExpirationDateTime",
-                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "SourceIPAddress": "SrcIpAddr",
                   "ActivityGroupNames": "ActivityGroupNames",
-                  "Description": "Description"
+                  "IndicatorId": "IndicatorId",
+                  "QueryType": "DnsQueryType",
+                  "Description": "Description",
+                  "ThreatType": "ThreatType"
                 }
               }
             },
@@ -8469,7 +8469,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "imDns_IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "imDns_IPEntity_DnsEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject45').analyticRuleVersion45]",
@@ -8571,44 +8571,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "Dvc",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "Dvc"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IoC",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IoC"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SrcIpAddr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SrcIpAddr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ],
                 "customDetails": {
-                  "IndicatorId": "IndicatorId",
                   "DnsQuery": "DnsQuery",
-                  "ThreatType": "ThreatType",
-                  "ConfidenceScore": "ConfidenceScore",
+                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "DNSRequestTime": "imDns_mintime",
+                  "ConfidenceScore": "ConfidenceScore",
                   "ExpirationDateTime": "ExpirationDateTime",
-                  "LatestIndicatorTime": "LatestIndicatorTime",
                   "SourceIPAddress": "SrcIpAddr",
                   "ActivityGroupNames": "ActivityGroupNames",
-                  "Description": "Description"
+                  "IndicatorId": "IndicatorId",
+                  "Description": "Description",
+                  "ThreatType": "ThreatType"
                 },
                 "alertDetailsOverride": {
                   "alertDisplayNameFormat": "The response {{IoC}} to DNS query matched an IoC",
@@ -8667,7 +8667,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_imNetworkSession_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_imNetworkSession_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject46').analyticRuleVersion46]",
@@ -8812,25 +8812,25 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IoCIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IoCIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ],
                 "customDetails": {
+                  "IoCIPDirection": "IoCDirection",
+                  "EventStartTime": "imNWS_mintime",
+                  "EventEndTime": "imNWS_maxtime",
                   "IndicatorId": "IndicatorId",
-                  "ThreatType": "ThreatType",
+                  "ActivityGroupNames": "ActivityGroupNames",
+                  "IoCExpirationTime": "ExpirationDateTime",
                   "IoCDescription": "Description",
-                  "EventStartTime": "imNWS_mintime",
                   "IoCConfidenceScore": "ConfidenceScore",
-                  "IoCExpirationTime": "ExpirationDateTime",
-                  "IoCIPDirection": "IoCDirection",
-                  "EventEndTime": "imNWS_maxtime",
-                  "ActivityGroupNames": "ActivityGroupNames"
+                  "ThreatType": "ThreatType"
                 },
                 "alertDetailsOverride": {
                   "alertDisplayNameFormat": "A network session {{IoCDirection}} address {{IoCIP}} matched an IoC.",
@@ -8889,7 +8889,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "Threat Intel Matches to GitHub Audit Logs_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "Threat Intel Matches to GitHub Audit Logs_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject47').analyticRuleVersion47]",
@@ -8943,22 +8943,22 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "AccountCustomEntity",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "AccountCustomEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IPCustomEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IPCustomEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -9014,7 +9014,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "DomainEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "DomainEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject48').analyticRuleVersion48]",
@@ -9062,22 +9062,22 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "DNS",
                     "fieldMappings": [
                       {
-                        "columnName": "DomainName",
-                        "identifier": "DomainName"
+                        "identifier": "DomainName",
+                        "columnName": "DomainName"
                       }
-                    ]
+                    ],
+                    "entityType": "DNS"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IPAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IPAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -9133,7 +9133,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "EmailEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "EmailEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject49').analyticRuleVersion49]",
@@ -9181,21 +9181,21 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "Name",
-                        "identifier": "DisplayName"
+                        "identifier": "DisplayName",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "User_Id",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "User_Id"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   }
                 ]
               }
@@ -9251,7 +9251,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "FileHashEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "FileHashEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject50').analyticRuleVersion50]",
@@ -9305,44 +9305,44 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "DestinationIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "DestinationIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "SourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "SourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "Host",
                     "fieldMappings": [
                       {
-                        "columnName": "DeviceName",
-                        "identifier": "HostName"
+                        "identifier": "HostName",
+                        "columnName": "DeviceName"
                       }
-                    ]
+                    ],
+                    "entityType": "Host"
                   },
                   {
-                    "entityType": "FileHash",
                     "fieldMappings": [
                       {
-                        "columnName": "FileHashValue",
-                        "identifier": "Value"
+                        "identifier": "Value",
+                        "columnName": "FileHashValue"
                       },
                       {
-                        "columnName": "FileHashType",
-                        "identifier": "Algorithm"
+                        "identifier": "Algorithm",
+                        "columnName": "FileHashType"
                       }
-                    ]
+                    ],
+                    "entityType": "FileHash"
                   }
                 ]
               }
@@ -9398,7 +9398,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject51').analyticRuleVersion51]",
@@ -9446,40 +9446,40 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "TI_ipEntity",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "TI_ipEntity"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "NetworkDestinationIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "NetworkDestinationIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "NetworkSourceIP",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "NetworkSourceIP"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "EmailSourceIPAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "EmailSourceIPAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -9535,7 +9535,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "URLEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "URLEntity_CloudAppEvents_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject52').analyticRuleVersion52]",
@@ -9583,52 +9583,52 @@
                 ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "AccountObjectId",
-                        "identifier": "ObjectGuid"
+                        "identifier": "ObjectGuid",
+                        "columnName": "AccountObjectId"
                       },
                       {
-                        "columnName": "userPrincipalName",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "userPrincipalName"
                       },
                       {
-                        "columnName": "AccountDisplayName",
-                        "identifier": "DisplayName"
+                        "identifier": "DisplayName",
+                        "columnName": "AccountDisplayName"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "URL",
                     "fieldMappings": [
                       {
-                        "columnName": "Url",
-                        "identifier": "Url"
+                        "identifier": "Url",
+                        "columnName": "Url"
                       }
-                    ]
+                    ],
+                    "entityType": "URL"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "IPAddress",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "IPAddress"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   },
                   {
-                    "entityType": "CloudApplication",
                     "fieldMappings": [
                       {
-                        "columnName": "Application",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Application"
                       },
                       {
-                        "columnName": "ApplicationID",
-                        "identifier": "AppId"
+                        "identifier": "AppId",
+                        "columnName": "ApplicationID"
                       }
-                    ]
+                    ],
+                    "entityType": "CloudApplication"
                   }
                 ]
               }
@@ -9684,7 +9684,7 @@
         "[extensionResourceId(resourceId('Microsoft.OperationalInsights/workspaces', parameters('workspace')), 'Microsoft.SecurityInsights/contentPackages', variables('_solutionId'))]"
       ],
       "properties": {
-        "description": "IPEntity_Workday_AnalyticalRules Analytics Rule with template version 3.0.8",
+        "description": "IPEntity_Workday_AnalyticalRules Analytics Rule with template version 3.0.9",
         "mainTemplate": {
           "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
           "contentVersion": "[variables('analyticRuleObject53').analyticRuleVersion53]",
@@ -9698,10 +9698,10 @@
               "kind": "Scheduled",
               "location": "[parameters('workspace-location')]",
               "properties": {
-                "description": "Identifies a match in Workday Activity from any IP IOC from TI",
-                "displayName": "TI map IP entity to Workday",
+                "description": "Detects a match in Workday activity from any IP Indicator of Compromise (IOC) provided by Threat Intelligence (TI).",
+                "displayName": "TI map IP entity to Workday(ASimAuditEventLogs)",
                 "enabled": false,
-                "query": "let dtLookBack = 1h; // Define the lookback period for audit events\nlet iocLookBack = 14d; // Define the lookback period for threat intelligence indicators\nThreatIntelligenceIndicator \n| where isnotempty(NetworkIP)\n    or isnotempty(EmailSourceIpAddress)\n    or isnotempty(NetworkDestinationIP)\n    or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields\n| where TimeGenerated >= ago(iocLookBack) // Filter indicators within the lookback period\n| extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity\n| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId, TI_ipEntity // Get the latest indicator time for each entity\n| where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired\n| join kind=inner (\n    ASimAuditEventLogs\n    | where EventVendor == \"Workday\" // Filter for Workday events\n    | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period\n    | where isnotempty(DvcIpAddr) // Filter for events with a device IP address\n    | extend WD_TimeGenerated = EventStartTime // Rename the event start time column\n    | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns\n    )\n    on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity\n| project\n    LatestIndicatorTime,\n    Description,\n    ActivityGroupNames,\n    IndicatorId,\n    ThreatType,\n    Url,\n    ExpirationDateTime,\n    ConfidenceScore,\n    WD_TimeGenerated,\n    ActorUsername,\n    DvcIpAddr,\n    Operation,\n    Object // Select relevant columns after the join\n| extend\n    timestamp = WD_TimeGenerated,\n    Name = tostring(split(ActorUsername, '@', 0)[0]),\n    UPNSuffix = tostring(split(ActorUsername, '@', 1)[0]) // Add additional fields for timestamp, name, and UPN suffix\n",
+                "query": "let dtLookBack = 1h; // Define the lookback period for audit events\nlet ioc_lookBack = 14d; // Define the lookback period for threat intelligence indicators\nThreatIntelligenceIndicator \n| where TimeGenerated >= ago(ioc_lookBack) // Filter threat intelligence indicators within the lookback period\n| where isnotempty(NetworkIP)\n      or isnotempty(EmailSourceIpAddress)\n      or isnotempty(NetworkDestinationIP)\n      or isnotempty(NetworkSourceIP) // Filter for indicators with relevant IP fields\n| summarize LatestIndicatorTime = arg_max(TimeGenerated, *) by IndicatorId // Get the latest indicator time for each IndicatorId\n  | extend TI_ipEntity = coalesce(NetworkIP, NetworkDestinationIP, NetworkSourceIP, EmailSourceIpAddress) // Combine IP fields into a single entity\n  | where Active == true and ExpirationDateTime > now() // Filter for active indicators that have not expired\n  | join kind=inner (\n      ASimAuditEventLogs\n      | where EventVendor == \"Workday\" // Filter for Workday events\n      | where TimeGenerated >= ago(dtLookBack) // Filter events within the lookback period\n      | where isnotempty(DvcIpAddr) // Filter for events with a device IP address\n      | extend WD_TimeGenerated = EventStartTime // Rename the event start time column\n      | project WD_TimeGenerated, ActorUsername, DvcIpAddr, Operation, Object // Select relevant columns\n      )\n      on $left.TI_ipEntity == $right.DvcIpAddr // Join on the IP entity\n  | project\n      LatestIndicatorTime,\n      Description,\n      ActivityGroupNames,\n      IndicatorId,\n      ThreatType,\n      Url,\n      ExpirationDateTime,\n      ConfidenceScore,\n      WD_TimeGenerated,\n      ActorUsername,\n      DvcIpAddr,\n      Operation,\n      Object // Select relevant columns after the join\n  | extend\n      timestamp = WD_TimeGenerated,\n      Name = tostring(split(ActorUsername, '@', 0)),\n      UPNSuffix = tostring(split(ActorUsername, '@', 1)) // Add additional fields for timestamp, name, and UPN suffix    \n",
                 "queryFrequency": "PT1H",
                 "queryPeriod": "P14D",
                 "severity": "Medium",
@@ -9736,32 +9736,38 @@
                     ]
                   }
                 ],
+                "tactics": [
+                  "CommandAndControl"
+                ],
+                "techniques": [
+                  "T1071"
+                ],
                 "entityMappings": [
                   {
-                    "entityType": "Account",
                     "fieldMappings": [
                       {
-                        "columnName": "ActorUsername",
-                        "identifier": "FullName"
+                        "identifier": "FullName",
+                        "columnName": "ActorUsername"
                       },
                       {
-                        "columnName": "Name",
-                        "identifier": "Name"
+                        "identifier": "Name",
+                        "columnName": "Name"
                       },
                       {
-                        "columnName": "UPNSuffix",
-                        "identifier": "UPNSuffix"
+                        "identifier": "UPNSuffix",
+                        "columnName": "UPNSuffix"
                       }
-                    ]
+                    ],
+                    "entityType": "Account"
                   },
                   {
-                    "entityType": "IP",
                     "fieldMappings": [
                       {
-                        "columnName": "DvcIpAddr",
-                        "identifier": "Address"
+                        "identifier": "Address",
+                        "columnName": "DvcIpAddr"
                       }
-                    ]
+                    ],
+                    "entityType": "IP"
                   }
                 ]
               }
@@ -9802,7 +9808,7 @@
         "contentSchemaVersion": "3.0.0",
         "contentId": "[variables('analyticRuleObject53')._analyticRulecontentId53]",
         "contentKind": "AnalyticsRule",
-        "displayName": "TI map IP entity to Workday",
+        "displayName": "TI map IP entity to Workday(ASimAuditEventLogs)",
         "contentProductId": "[variables('analyticRuleObject53')._analyticRulecontentProductId53]",
         "id": "[variables('analyticRuleObject53')._analyticRulecontentProductId53]",
         "version": "[variables('analyticRuleObject53').analyticRuleVersion53]"
@@ -9813,12 +9819,12 @@
       "apiVersion": "2023-04-01-preview",
       "location": "[parameters('workspace-location')]",
       "properties": {
-        "version": "3.0.8",
+        "version": "3.0.9",
         "kind": "Solution",
         "contentSchemaVersion": "3.0.0",
         "displayName": "Threat Intelligence",
         "publisherDisplayName": "Microsoft Sentinel, Microsoft Corporation",
-        "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Threat Intelligence solution contains data connectors for import of threat indicators into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.</p>\n<p><strong>Data Connectors:</strong> 5, <strong>Workbooks:</strong> 1, <strong>Analytic Rules:</strong> 53, <strong>Hunting Queries:</strong> 5</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
+        "descriptionHtml": "<p><strong>Note:</strong> Please refer to the following before installing the solution:</p>\n<p>• Review the solution <a href=\"https://github.com/Azure/Azure-Sentinel/tree/master/Solutions/Threat%20Intelligence/ReleaseNotes.md\">Release Notes</a></p>\n<p>• There may be <a href=\"https://aka.ms/sentinelsolutionsknownissues\">known issues</a> pertaining to this Solution, please refer to them before installing.</p>\n<p>The Threat Intelligence solution contains data connectors for import of supported STIX objects into Microsoft Sentinel, analytic rules for matching TI data with event data, workbook, and hunting queries. Threat indicators can be malicious IP's, URL's, filehashes, domains, email addresses etc.</p>\n<p><strong>Data Connectors:</strong> 5, <strong>Workbooks:</strong> 1, <strong>Analytic Rules:</strong> 53, <strong>Hunting Queries:</strong> 5</p>\n<p><a href=\"https://aka.ms/azuresentinel\">Learn more about Microsoft Sentinel</a> | <a href=\"https://aka.ms/azuresentinelsolutionsdoc\">Learn more about Solutions</a></p>\n",
         "contentKind": "Solution",
         "contentProductId": "[variables('_solutioncontentProductId')]",
         "id": "[variables('_solutioncontentProductId')]",
diff --git a/Solutions/Threat Intelligence/ReleaseNotes.md b/Solutions/Threat Intelligence/ReleaseNotes.md
index 1eafd5311ea..87bc2358067 100644
--- a/Solutions/Threat Intelligence/ReleaseNotes.md	
+++ b/Solutions/Threat Intelligence/ReleaseNotes.md	
@@ -1,5 +1,6 @@
 | **Version** | **Date Modified (DD-MM-YYYY)** | **Change History**                          |
 |-------------|--------------------------------|---------------------------------------------|
+| 3.0.9		  | 03-12-2024					   | Creted **Analytical Rule**  (IPEntity_Workday) and Modified **Analytical Rule** 		 			  |
 | 3.0.8		  | 28-11-2024					   | Removed (Preview) from name for **Data Connectors** Microsoft Defender Threat Intelligence and Premium Microsoft Defender Threat Intelligence, make the MDTI and PMDTI data connctors available in gov solution, and update descriptions of data connectors. |
 | 3.0.7		  | 24-10-2024					   | Updated Columns of **Analytical Rules** 				 			  |
 | 3.0.6		  | 24-09-2024					   | Updated Entity Mappings of **Analytical Rules** 				 			  |