diff --git a/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.json b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.json
index d154716..8de76b0 100644
--- a/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.json
+++ b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.json
@@ -226,8 +226,8 @@
       "x-action--9428a7c0-aee8-4b30-af0a-61d2625d8346",
       "x-action--671cb16d-69b9-4184-89cb-a208db198810"
     ],
-    "reconstructed_from": "x-crime-case--a6ee60b6-9460-4800-ae6f-cf1cb8cd34fe",
-    "reconstructed_by": "x-investigator--096e9478-2b7b-5bc9-a035-08464b16fc7b",
+    "reconstructed_from_ref": "x-crime-case--a6ee60b6-9460-4800-ae6f-cf1cb8cd34fe",
+    "reconstructed_by_ref": "x-investigator--096e9478-2b7b-5bc9-a035-08464b16fc7b",
     "created_by_ref": "identity--4f922f49-b4ac-41d6-b701-b374d7dc9b22",
     "created": "2021-02-16T11:26:00Z",
     "modified": "2021-02-19T18:27:00Z"
@@ -255,7 +255,7 @@
     "id": "indicator--e7a4aa2b-dfbe-4cf4-be2e-b5811699264d",
     "name": "delete indicator",
     "description": "Indication of delete",
-    "pattern": "[file:hashes.MD5='ca03f2eed3db06a82a8a31b3a3defa24' or file:hashes.MD5='ed870202082ea4fd8f5488533a561b35' or file:hashes.MD5='76610b7bdb85e5f65e96df3f7e417a74' or file:hashes.MD5='d03dc23d4ec39e4d16da3c46d2932d62']",
+    "pattern": "[file:extensions:status='recovered' and file:extensions:content_tags[0]='rhino']",
     "pattern_type": "stix",
     "created_by_ref": "identity--4f922f49-b4ac-41d6-b701-b374d7dc9b22",
     "created": "2021-02-15T12:15:00Z",
@@ -270,7 +270,10 @@
       "MD5": "ca03f2eed3db06a82a8a31b3a3defa24"
     },
     "extensions": {
-      "recovered_file_name": "f0106393.jpg"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "content_tags": ["rhino"],
+      "file_name": "f0106393.jpg"
     }
   },
   {
@@ -282,7 +285,10 @@
       "MD5": "ed870202082ea4fd8f5488533a561b35"
     },
     "extensions": {
-      "recovered_file_name": "f0106409.jpg"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "content_tags": ["rhino"],
+      "file_name": "f0106409.jpg"
     }
   },
   {
@@ -294,7 +300,10 @@
       "MD5": "76610b7bdb85e5f65e96df3f7e417a74"
     },
     "extensions": {
-      "recovered_file_name": "f0106865.gif"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "content_tags": ["rhino"],
+      "file_name": "f0106865.gif"
     }
   },
   {
@@ -306,7 +315,10 @@
       "MD5": "d03dc23d4ec39e4d16da3c46d2932d62"
     },
     "extensions": {
-      "recovered_file_name": "f0106889.gif"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "content_tags": ["rhino"],
+      "file_name": "f0106889.gif"
     }
   },
   {
@@ -392,7 +404,9 @@
     },
     "content_ref": "artifact--899e1d63-20ae-5487-b684-df8019d4177c",
     "extensions": {
-      "recovered_file_name": "f0335017_She_died_in_February_at_the_age_of_74.doc"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "file_name": "f0335017_She_died_in_February_at_the_age_of_74.doc"
     }
   },
   {
@@ -412,7 +426,7 @@
     "id": "indicator--afb0a853-e4c7-45a8-afea-d9f7c2dac3c1",
     "name": "delete doc indicator",
     "description": "Indication of delete a doc file that is recovered from the USB",
-    "pattern": "[artifact:payload_bin MATCHES 'I “hid” the photos']",
+    "pattern": "[file:extensions:status='recovered']",
     "pattern_type": "stix",
     "created_by_ref": "identity--4f922f49-b4ac-41d6-b701-b374d7dc9b22",
     "created": "2021-02-15T12:15:00Z",
@@ -481,7 +495,9 @@
       "MD5": "6bd0e9bd4fb4a738f9ca4c351a853281"
     },
     "extensions": {
-      "recovered_file_name": "f0105065.jpg"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "file_name": "f0105065.jpg"
     }
   },
   {
@@ -497,7 +513,7 @@
     "id": "indicator--e9d899b9-0c56-4108-839f-9cef41e37b34",
     "name": "use a steganography tool indicator",
     "description": "Indication of using steganography tool",
-    "pattern": "[artifact:payload_bin MATCHES 'jphide' and (file:hashes.'MD5'='63a39823f80b321c2dcd112158b55011' or file:hashes.'MD5'='87018ef0cfdb91e818d92efeb9c19338')]",
+    "pattern": "[artifact:payload_bin MATCHES 'anBoaWRl' and  file:extensions:status='decoded' and exists artifact--01b778f5-e334-52a5-a49d-f9b2de330be9 and exists artifact--5bb67aa9-d849-465d-a433-114063836965]",
     "pattern_type": "stix",
     "created_by_ref": "identity--4f922f49-b4ac-41d6-b701-b374d7dc9b22",
     "created": "2021-02-17T15:41:00Z",
@@ -510,9 +526,11 @@
     "labels": ["hide", "password", "image"],
     "number_observed": 1,
     "object_refs": [
+      "file--10571ebd-b587-50a6-9e86-acb3cba78437",
       "artifact--a0c90013-2008-57bc-b58e-88ed2e81a479",
       "artifact--01b778f5-e334-52a5-a49d-f9b2de330be9",
       "file--35ef592a-98bc-564e-81ce-d269cdbf8a1d",
+      "file--04c87cba-c468-59e0-8e26-e4652344489f",
       "artifact--9d44c6b5-e425-4499-a9e3-b569304f32b1",
       "artifact--5bb67aa9-d849-465d-a433-114063836965",
       "file--35ef592a-98bc-564e-81ce-d269cdbf8a1d"
@@ -573,7 +591,10 @@
       "MD5": "63a39823f80b321c2dcd112158b55011"
     },
     "extensions": {
-      "recovered_file_name": "r065.jpg"
+      "description": "decoded by stegdetect",
+      "status": "decoded",
+      "content_tags": ["rhino"],
+      "file_name": "r065.jpg"
     }
   },
   {
@@ -606,7 +627,9 @@
       "MD5": "4d37a1033450b8cc96ffd1564829d321"
     },
     "extensions": {
-      "recovered_file_name": "f0104249.jpg"
+      "description": "recovered from deletion",
+      "status": "recovered",
+      "file_name": "f0104249.jpg"
     }
   },
   {
@@ -653,7 +676,10 @@
       "MD5": "87018ef0cfdb91e818d92efeb9c19338"
     },
     "extensions": {
-      "recovered_file_name": "r249.jpg"
+      "description": "decoded by stegdetect",
+      "status": "decoded",
+      "content_tags": ["rhino"],
+      "file_name": "r249.jpg"
     }
   },
   {
diff --git a/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.svg b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.svg
new file mode 100644
index 0000000..916a160
--- /dev/null
+++ b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.svg
@@ -0,0 +1,1754 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<!-- Generated by Microsoft Visio, SVG Export illegal_possession_image.svg Page-1 -->
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:ev="http://www.w3.org/2001/xml-events"
+		xmlns:v="http://schemas.microsoft.com/visio/2003/SVGExtensions/" width="32.5in" height="21.5in" viewBox="0 0 2340 1548"
+		xml:space="preserve" color-interpolation-filters="sRGB" class="st22">
+	<v:documentProperties v:langID="1033" v:viewMarkup="false">
+		<v:userDefs>
+			<v:ud v:nameU="msvNoAutoConnect" v:val="VT0(1):26"/>
+		</v:userDefs>
+	</v:documentProperties>
+
+	<style type="text/css">
+	<![CDATA[
+		.st1 {fill:#ffffff;stroke:#008cd8;stroke-linecap:round;stroke-linejoin:round;stroke-width:1}
+		.st2 {fill:#004b74;font-family:Franklin Gothic Demi;font-size:1.00001em}
+		.st3 {font-size:1em}
+		.st4 {fill:#ffffff;stroke:#f37b49;stroke-linecap:round;stroke-linejoin:round;stroke-width:1}
+		.st5 {fill:#a0370b;font-family:Franklin Gothic Demi;font-size:1.00001em}
+		.st6 {marker-end:url(#mrkr5-21);stroke:#008cd8;stroke-linecap:round;stroke-linejoin:round;stroke-width:0.75}
+		.st7 {fill:#008cd8;fill-opacity:1;stroke:#008cd8;stroke-opacity:1;stroke-width:0.22935779816514}
+		.st8 {fill:#ffffff;stroke:none;stroke-linecap:butt}
+		.st9 {fill:#002f49;font-family:Franklin Gothic Demi;font-size:0.666664em}
+		.st10 {fill:#fce4da;stroke:#f37b49;stroke-linecap:round;stroke-linejoin:round;stroke-width:1}
+		.st11 {marker-end:url(#mrkr4-50);stroke:#008cd8;stroke-linecap:round;stroke-linejoin:round;stroke-width:0.75}
+		.st12 {fill:#ffffff;stroke:none;stroke-linecap:butt;stroke-width:7.2}
+		.st13 {fill:#a0360a;font-size:1em}
+		.st14 {marker-end:url(#mrkr4-152);stroke:#7030a0;stroke-linecap:round;stroke-linejoin:round;stroke-width:0.75}
+		.st15 {fill:#7030a0;fill-opacity:1;stroke:#7030a0;stroke-opacity:1;stroke-width:0.22935779816514}
+		.st16 {fill:#a0360a;font-family:Franklin Gothic Demi;font-size:1.00001em}
+		.st17 {fill:#00304a;font-family:Franklin Gothic Demi;font-size:0.666664em}
+		.st18 {fill:#ffffff}
+		.st19 {stroke:#00bc74;stroke-linecap:round;stroke-linejoin:round;stroke-width:1}
+		.st20 {fill:#00653e;font-family:Franklin Gothic Demi;font-size:1.00001em}
+		.st21 {fill:#ffffff;stroke:#00bc74;stroke-linecap:round;stroke-linejoin:round;stroke-width:1}
+		.st22 {fill:none;fill-rule:evenodd;font-size:12px;overflow:visible;stroke-linecap:square;stroke-miterlimit:3}
+	]]>
+	</style>
+
+	<defs id="Markers">
+		<g id="lend5">
+			<path d="M 2 1 L 0 0 L 1.98117 -0.993387 C 1.67173 -0.364515 1.67301 0.372641 1.98465 1.00043 " style="stroke:none"/>
+		</g>
+		<marker id="mrkr5-21" class="st7" v:arrowType="5" v:arrowSize="2" v:setback="7.63" refX="-7.63" orient="auto"
+				markerUnits="strokeWidth" overflow="visible">
+			<use xlink:href="#lend5" transform="scale(-4.36,-4.36) "/>
+		</marker>
+		<g id="lend4">
+			<path d="M 2 1 L 0 0 L 2 -1 L 2 1 " style="stroke:none"/>
+		</g>
+		<marker id="mrkr4-50" class="st7" v:arrowType="4" v:arrowSize="2" v:setback="8.72" refX="-8.72" orient="auto"
+				markerUnits="strokeWidth" overflow="visible">
+			<use xlink:href="#lend4" transform="scale(-4.36,-4.36) "/>
+		</marker>
+		<marker id="mrkr4-152" class="st15" v:arrowType="4" v:arrowSize="2" v:setback="8.72" refX="-8.72" orient="auto"
+				markerUnits="strokeWidth" overflow="visible">
+			<use xlink:href="#lend4" transform="scale(-4.36,-4.36) "/>
+		</marker>
+	</defs>
+	<g v:mID="0" v:index="1" v:groupContext="foregroundPage">
+		<v:userDefs>
+			<v:ud v:nameU="msvThemeOrder" v:val="VT0(0):26"/>
+		</v:userDefs>
+		<title>Page-1</title>
+		<v:pageProperties v:drawingScale="1" v:pageScale="1" v:drawingUnits="19" v:shadowOffsetX="9" v:shadowOffsetY="-9"/>
+		<v:layer v:name="Connector" v:index="0"/>
+		<g id="shape1-1" v:mID="1" v:groupContext="shape" transform="translate(1368.93,-865.482)">
+			<title>Sheet.1</title>
+			<desc>identity: Frank Xu</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="32.18" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">dentity</tspan>: <v:newlineChar/><tspan x="29.98" dy="1.2em" class="st3">Frank Xu</tspan>  </text>		</g>
+		<g id="shape2-6" v:mID="2" v:groupContext="shape" transform="translate(795.524,-384.091)">
+			<title>Sheet.2</title>
+			<desc>identity: administrator</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="32.18" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">dentity</tspan>: <tspan x="17.94" dy="1.2em" class="st3">administrator</tspan></text>		</g>
+		<g id="shape1000-11" v:mID="1000" v:groupContext="shape" transform="translate(1102.67,-864)">
+			<title>Rectangle.1067</title>
+			<desc>x-investigator: Frank Xu</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1532.25" width="107.07" height="31.5"/>
+			<rect x="0" y="1516.5" width="107.066" height="31.5" class="st4"/>
+			<text x="16.17" y="1528.65" class="st5" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigator<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="29.98" dy="1.2em" class="st3"
+						v:langID="1033">Frank Xu</tspan></text>		</g>
+		<g id="shape1001-16" v:mID="1001" v:groupContext="shape" v:layerMember="0" transform="translate(1209.73,-870.75)">
+			<title>Dynamic connector.1001</title>
+			<desc>attributed-to</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="79.6" cy="1539" width="54.11" height="17.6036"/>
+			<path d="M0 1539 L38.73 1539 A3 3 0 0 1 44.73 1539 L153.48 1539" class="st6"/>
+			<rect v:rectContext="textBkgnd" x="57.5495" y="1534.2" width="44.101" height="9.59985" class="st8"/>
+			<text x="57.55" y="1541.4" class="st9" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>attributed-to</text>		</g>
+		<g id="shape1002-24" v:mID="1002" v:groupContext="shape" transform="translate(900,-808.632)">
+			<title>Rectangle.1002</title>
+			<desc>x-crime-case: Illegal Rhino Images Possession</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.5492" cy="1525.47" width="129.1" height="45.0505"/>
+			<rect x="0" y="1502.95" width="129.098" height="45.0505" class="st10"/>
+			<text x="29.69" y="1514.67" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-crime-case:<v:newlineChar/><tspan
+						x="10.66" dy="1.2em" class="st3">Illegal Rhino Images </tspan><tspan x="35.06" dy="1.2em" class="st3">Possession</tspan></text>		</g>
+		<g id="shape1003-29" v:mID="1003" v:groupContext="shape" transform="translate(1089,-743.982)">
+			<title>Sheet.1003</title>
+			<desc>file: Rhino Hunt.pdf</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="43.68" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file: <v:newlineChar/><tspan
+						x="14.25" dy="1.2em" class="st3">Rhino Hunt.pdf</tspan>  </text>		</g>
+		<g id="shape1004-33" v:mID="1004" v:groupContext="shape" transform="translate(702,-659.963)">
+			<title>Sheet.1004</title>
+			<desc>file: rhino.log</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="43.68" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file: <v:newlineChar/><tspan
+						x="30.43" dy="1.2em" class="st3">rhino.log</tspan> </text>		</g>
+		<g id="shape1005-37" v:mID="1005" v:groupContext="shape" transform="translate(1075.5,-542.963)">
+			<title>Sheet.1005</title>
+			<desc>file: rhino2.log</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="43.68" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file: <v:newlineChar/><tspan
+						x="26.91" dy="1.2em" class="st3">rhino2.log</tspan> </text>		</g>
+		<g id="shape1006-41" v:mID="1006" v:groupContext="shape" transform="translate(882.467,-695.963)">
+			<title>Sheet.1006</title>
+			<desc>file: rhino3.log</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st1"/>
+			<text x="43.68" y="1527.88" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file: <v:newlineChar/><tspan
+						x="26.91" dy="1.2em" class="st3">rhino3.log</tspan> </text>		</g>
+		<g id="shape1007-45" v:mID="1007" v:groupContext="shape" v:layerMember="0" transform="translate(964.549,-808.632)">
+			<title>Dynamic connector.1007</title>
+			<desc>case_file_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="62.2254" cy="1564.83" width="58.97" height="17.6036"/>
+			<path d="M0 1548 L118.14 1579.95" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="37.7429" y="1560.03" width="48.965" height="9.59985" class="st12"/>
+			<text x="37.74" y="1567.23" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>case_file_refs</text>		</g>
+		<g id="shape1008-53" v:mID="1008" v:groupContext="shape" v:layerMember="0" transform="translate(964.549,-808.632)">
+			<title>Dynamic connector.1008</title>
+			<desc>case_file_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="76.7893" cy="1664.32" width="58.97" height="17.6036"/>
+			<path d="M0 1548 L149.98 1775.17" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="52.3068" y="1659.52" width="48.965" height="9.59985" class="st12"/>
+			<text x="52.31" y="1666.72" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>case_file_refs</text>		</g>
+		<g id="shape1009-60" v:mID="1009" v:groupContext="shape" v:layerMember="0" transform="translate(964.549,-808.632)">
+			<title>Dynamic connector.1009</title>
+			<desc>case_file_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-11.8223" cy="1587.82" width="58.97" height="17.6036"/>
+			<path d="M0 1548 L-21.78 1621.36" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-36.3048" y="1583.02" width="48.965" height="9.59985" class="st8"/>
+			<text x="-36.3" y="1590.22" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>case_file_refs</text>		</g>
+		<g id="shape1010-67" v:mID="1010" v:groupContext="shape" v:layerMember="0" transform="translate(964.549,-808.632)">
+			<title>Dynamic connector.1010</title>
+			<desc>case_file_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-91.4451" cy="1605.82" width="58.97" height="17.6036"/>
+			<path d="M0 1548 L-129.51 1629.89 A3 3 -180 1 0 -134.58 1633.09 L-177.36 1660.14" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-115.928" y="1601.02" width="48.965" height="9.59985" class="st12"/>
+			<text x="-115.93" y="1608.22" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>case_file_refs</text>		</g>
+		<g id="shape1011-74" v:mID="1011" v:groupContext="shape" transform="translate(1197.93,-502.463)">
+			<title>Rectangle.1011</title>
+			<desc>x-image: rhino usb image</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st4"/>
+			<text x="31.17" y="1527.88" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-image:<v:newlineChar/><tspan
+						x="11.42" dy="1.2em" class="st3">rhino usb image</tspan></text>		</g>
+		<g id="shape1012-78" v:mID="1012" v:groupContext="shape" v:layerMember="0" transform="translate(1156.2,-864)">
+			<title>Dynamic connector.1012</title>
+			<desc>investigates</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-63.5515" cy="1564.42" width="52.76" height="17.6036"/>
+			<path d="M0 1548 L-120.77 1579.21" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-84.9264" y="1559.62" width="42.7497" height="9.59985" class="st12"/>
+			<text x="-84.93" y="1566.82" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>investigates</text>		</g>
+		<g id="shape1014-85" v:mID="1014" v:groupContext="shape" transform="translate(801.934,-461.963)">
+			<title>Rectangle.1014</title>
+			<desc>x-investigator: administrator</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1531.48" width="107.07" height="33.0366"/>
+			<rect x="0" y="1514.96" width="107.066" height="33.0366" class="st4"/>
+			<text x="16.17" y="1527.88" class="st5" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigator<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="17.94" dy="1.2em" class="st13"
+						v:langID="1033">administrator</tspan></text>		</g>
+		<g id="shape1015-90" v:mID="1015" v:groupContext="shape" v:layerMember="0" transform="translate(846.467,-461.963)">
+			<title>Dynamic connector.1015</title>
+			<desc>attributed-to</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1570.42" width="54.11" height="17.6036"/>
+			<path d="M9 1548 L9 1586.3" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-13.0506" y="1565.62" width="44.101" height="9.59985" class="st12"/>
+			<text x="-13.05" y="1572.82" class="st9" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>attributed-to</text>		</g>
+		<g id="shape1016-97" v:mID="1016" v:groupContext="shape" v:layerMember="0" transform="translate(855.467,-495)">
+			<title>Dynamic connector.1016</title>
+			<desc>captures-evidence-in</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="0" cy="1430.49" width="82.73" height="17.6036"/>
+			<path d="M0 1548 L0 1359.38 L-39.86 1359.38" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-36.359" y="1425.69" width="72.718" height="9.59985" class="st12"/>
+			<text x="-36.36" y="1432.89" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>captures-evidence-in</text>		</g>
+		<g id="shape1017-104" v:mID="1017" v:groupContext="shape" v:layerMember="0" transform="translate(855.467,-495)">
+			<title>Dynamic connector.1017</title>
+			<desc>captures-evidence-in</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="152.533" cy="1485" width="82.73" height="17.6036"/>
+			<path d="M0 1548 L0 1483.52 L90.8 1483.52 A3 3 0 0 1 96.8 1483.52 L213.49 1483.52" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="116.174" y="1480.2" width="72.718" height="9.59985" class="st12"/>
+			<text x="116.17" y="1487.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>captures-evidence-in</text>		</g>
+		<g id="shape1018-111" v:mID="1018" v:groupContext="shape" v:layerMember="0" transform="translate(909,-478.482)">
+			<title>Dynamic connector.1018</title>
+			<desc>captures-evidence-in</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="39.375" cy="1405.48" width="82.73" height="17.6036"/>
+			<path d="M0 1548 L40.27 1548 L40.27 1337.06" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="3.01599" y="1400.68" width="72.718" height="9.59985" class="st12"/>
+			<text x="3.02" y="1407.88" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>captures-evidence-in</text>		</g>
+		<g id="shape1019-118" v:mID="1019" v:groupContext="shape" v:layerMember="0" transform="translate(1251.47,-502.463)">
+			<title>Dynamic connector.1019</title>
+			<desc>acquired_by_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-159.243" cy="1571.98" width="66.14" height="17.6036"/>
+			<path d="M0 1548 L0 1571.98 L-335.93 1571.98" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-187.309" y="1567.18" width="56.1327" height="9.59985" class="st8"/>
+			<text x="-187.31" y="1574.38" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>acquired_by_ref</text>		</g>
+		<g id="shape1020-125" v:mID="1020" v:groupContext="shape" v:layerMember="0" transform="translate(1233,-535.5)">
+			<title>Dynamic connector.1020</title>
+			<desc>evidence-of</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-85.3814" cy="1251" width="52.27" height="17.6036"/>
+			<path d="M0 1548 L0 1252.34 L-197.36 1252.34" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-105.512" y="1246.2" width="40.2613" height="9.59985" class="st12"/>
+			<text x="-105.51" y="1253.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>evidence-of  </text>		</g>
+		<g id="shape1021-132" v:mID="1021" v:groupContext="shape" transform="translate(378.934,-997.875)">
+			<title>Rectangle.1021</title>
+			<desc>x-action: Delete Images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1526.52" width="107.07" height="42.9551"/>
+			<rect x="0" y="1505.04" width="107.066" height="42.9551" class="st4"/>
+			<text x="30.96" y="1522.92" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-action:<v:newlineChar/><tspan
+						x="15.52" dy="1.2em" class="st3">Delete Images </tspan> </text>		</g>
+		<g id="shape1022-136" v:mID="1022" v:groupContext="shape" transform="translate(1327.5,-450)">
+			<title>Rectangle.4</title>
+			<desc>x-secondary-storage-: USB</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1532.27" width="130.51" height="31.4623"/>
+			<rect x="0" y="1516.54" width="130.5" height="31.4623" class="st4"/>
+			<text x="9.23" y="1528.67" class="st5" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>x-secondary-storage-:<v:newlineChar/><tspan
+						x="53.96" dy="1.2em" class="st3">USB</tspan></text>		</g>
+		<g id="shape1023-140" v:mID="1023" v:groupContext="shape" v:layerMember="0" transform="translate(1305,-518.982)">
+			<title>Dynamic connector.1023</title>
+			<desc>image-of</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="62.6347" cy="1548" width="40.66" height="17.6036"/>
+			<path d="M0 1548 L87.75 1548 L87.75 1578.98" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="47.3105" y="1543.2" width="30.6483" height="9.59985" class="st12"/>
+			<text x="47.31" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>image-of</text>		</g>
+		<g id="shape1024-147" v:mID="1024" v:groupContext="shape" v:layerMember="0" transform="translate(944.927,-927)">
+			<title>Dynamic connector.1024</title>
+			<desc>action_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-256.23" cy="1512.56" width="49.44" height="17.6036"/>
+			<path d="M0 1548 L-505.98 1478.02" class="st14"/>
+			<rect v:rectContext="textBkgnd" x="-275.945" y="1507.76" width="39.4297" height="9.59985" class="st12"/>
+			<text x="-275.94" y="1514.96" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>action_refs</text>		</g>
+		<g id="shape1025-155" v:mID="1025" v:groupContext="shape" transform="translate(366.75,-1097.05)">
+			<title>Rectangle.1001</title>
+			<desc>indicator: Delete images indicator</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="40.27" y="1515.72" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicator:<v:newlineChar/></tspan><tspan x="27.38" dy="1.2em" class="st3">Delete images </tspan><tspan
+						x="41.82" dy="1.2em" class="st3">indicator</tspan></text>		</g>
+		<g id="shape1027-161" v:mID="1027" v:groupContext="shape" transform="translate(366.75,-1172.04)">
+			<title>Rectangle.1027</title>
+			<desc>observed-data: Deleted images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="26.56" y="1522.92" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>observed-data<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="24.15" dy="1.2em" class="st3"
+						v:langID="1033">Deleted images</tspan></text>		</g>
+		<g id="shape1028-166" v:mID="1028" v:groupContext="shape" v:layerMember="0" transform="translate(441.234,-1040.83)">
+			<title>Dynamic connector.1028</title>
+			<desc>indicated-by</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-9.23358" cy="1520.13" width="52.77" height="17.6036"/>
+			<path d="M-8.77 1548 L-8.77 1534.5 L-9.23 1534.5 L-9.23 1498.32" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-30.6125" y="1515.33" width="42.7577" height="9.59985" class="st12"/>
+			<text x="-30.61" y="1522.53" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicated</tspan><tspan class="st3" v:langID="2057">-</tspan><tspan class="st3"
+						v:langID="2057">by</tspan></text>		</g>
+		<g id="shape1029-176" v:mID="1029" v:groupContext="shape" transform="translate(880.239,-906.545)">
+			<title>Rectangle.1006</title>
+			<desc>x-timeline</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1537.77" width="129.38" height="20.4551"/>
+			<rect x="0" y="1527.54" width="129.375" height="20.4551" class="st4"/>
+			<text x="40.15" y="1541.37" class="st16" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-timeline</text>		</g>
+		<g id="shape1031-179" v:mID="1031" v:groupContext="shape" v:layerMember="0" transform="translate(1009.61,-916.772)">
+			<title>Dynamic connector.1031</title>
+			<desc>reconstructed_by_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="73.2936" cy="1558.64" width="84.57" height="17.6036"/>
+			<path d="M0 1548 L140.12 1568.33" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="36.0144" y="1553.84" width="74.5584" height="9.59985" class="st12"/>
+			<text x="36.01" y="1561.04" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>reconstructed_by<tspan
+						class="st3" v:langID="2057">_ref</tspan></text>		</g>
+		<g id="shape1032-187" v:mID="1032" v:groupContext="shape" v:layerMember="0" transform="translate(423,-1140)">
+			<title>Dynamic connector.1032</title>
+			<desc>based-on</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1531.98" width="41.81" height="17.6036"/>
+			<path d="M9 1548 L9 1522.5" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-6.89821" y="1527.18" width="31.7964" height="9.59985" class="st12"/>
+			<text x="-6.9" y="1534.38" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>based-on</text>		</g>
+		<g id="shape1034-194" v:mID="1034" v:groupContext="shape" transform="translate(105.75,-1280.25)">
+			<title>Rectangle.1075</title>
+			<desc>file: f0106393.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st1"/>
+			<text x="55.4" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="28.99" dy="1.2em" class="st3">f0106393.jpg</tspan></text>		</g>
+		<g id="shape1035-198" v:mID="1035" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1215)">
+			<title>Dynamic connector.1035</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-190.049" cy="1503" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L-135.46 1514.13 A3 3 -180 0 0 -141.29 1512.68 L-254.66 1484.34" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-209.733" y="1498.2" width="39.367" height="9.59985" class="st12"/>
+			<text x="-209.73" y="1505.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1037-205" v:mID="1037" v:groupContext="shape" transform="translate(366.75,-1371)">
+			<title>Rectangle.1098</title>
+			<desc>x-investigation-tool: PhotoRec7.1</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st16" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="31.03" dy="1.2em" class="st3">PhotoRec7.1</tspan></text>		</g>
+		<g id="shape1039-209" v:mID="1039" v:groupContext="shape" transform="translate(265.5,-1283.25)">
+			<title>Rectangle.1039</title>
+			<desc>file: f0106409.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="28.43" dy="1.2em" class="st3">f0106409.jpg</tspan></text>		</g>
+		<g id="shape1043-213" v:mID="1043" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1215)">
+			<title>Dynamic connector.1043</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-64.4715" cy="1507.48" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L-96.38 1483.39" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-84.155" y="1502.68" width="39.367" height="9.59985" class="st12"/>
+			<text x="-84.16" y="1509.88" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1044-220" v:mID="1044" v:groupContext="shape" transform="translate(468,-1283.25)">
+			<title>Rectangle.1044</title>
+			<desc>file: f0106865.gif&#34;</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st1"/>
+			<text x="55.4" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="28.1" dy="1.2em" class="st3">f0106865.gif&#34;</tspan></text>		</g>
+		<g id="shape1047-224" v:mID="1047" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1215)">
+			<title>Dynamic connector.1047</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="42.8313" cy="1511.99" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L77.96 1483.9" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="23.1477" y="1507.19" width="39.367" height="9.59985" class="st12"/>
+			<text x="23.15" y="1514.39" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1049-231" v:mID="1049" v:groupContext="shape" transform="translate(621,-1283.25)">
+			<title>Rectangle.1049</title>
+			<desc>file: f0106889.gif</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st1"/>
+			<text x="55.4" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="30.33" dy="1.2em" class="st3">f0106889.gif</tspan></text>		</g>
+		<g id="shape1051-235" v:mID="1051" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1215)">
+			<title>Dynamic connector.1051</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="160.615" cy="1503" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L123.1 1514.95 A3 3 0 1 1 128.9 1513.4 L247.93 1481.45" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="140.931" y="1498.2" width="39.367" height="9.59985" class="st12"/>
+			<text x="140.93" y="1505.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1054-242" v:mID="1054" v:groupContext="shape" transform="translate(883.125,-1408.5)">
+			<title>Sheet.1054</title>
+			<desc>artifact: I “hid” the photos</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1532.25" width="129.38" height="31.5"/>
+			<rect x="0" y="1516.5" width="129.375" height="31.5" class="st1"/>
+			<text x="43.76" y="1528.65" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="18.65" dy="1.2em" class="st3">I </tspan>“hid” the photos</text>		</g>
+		<g id="shape1055-246" v:mID="1055" v:groupContext="shape" transform="translate(883.125,-1329.15)">
+			<title>Rectangle.1055</title>
+			<desc>file: F0335017.doc</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="25.67" dy="1.2em" class="st3">F0335017.doc</tspan></text>		</g>
+		<g id="shape1056-250" v:mID="1056" v:groupContext="shape" v:layerMember="0" transform="translate(938.812,-1359.14)">
+			<title>Dynamic connector.1056</title>
+			<desc>content_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1523.32" width="50.68" height="17.6036"/>
+			<path d="M9 1548 L9 1505.18" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-11.336" y="1518.52" width="40.6719" height="9.59985" class="st12"/>
+			<text x="-11.34" y="1525.72" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>content_ref</text>		</g>
+		<g id="shape1059-257" v:mID="1059" v:groupContext="shape" transform="translate(882,-1170.44)">
+			<title>Rectangle.1059</title>
+			<desc>observed-data: Deleted doc</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st1"/>
+			<text x="26.56" y="1529.4" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>observed-data<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="33.78" dy="1.2em" class="st3"
+						v:langID="1033">Deleted doc</tspan></text>		</g>
+		<g id="shape1060-262" v:mID="1060" v:groupContext="shape" v:layerMember="0" transform="translate(938.531,-1200.44)">
+			<title>Dynamic connector.1060</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9.28125" cy="1483.93" width="49.38" height="17.6036"/>
+			<path d="M8.72 1548 L8.72 1534.5 L9.28 1534.5 L9.28 1425.83" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-10.4023" y="1479.13" width="39.367" height="9.59985" class="st8"/>
+			<text x="-10.4" y="1486.33" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1061-269" v:mID="1061" v:groupContext="shape" transform="translate(882,-1078.13)">
+			<title>Rectangle.1061</title>
+			<desc>Indicator: Delete doc indicator</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="40.12" y="1522.92" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>Indicator:<v:newlineChar/><tspan
+						x="12.08" dy="1.2em" class="st3" v:langID="1033">Delete doc indicator</tspan></text>		</g>
+		<g id="shape1062-273" v:mID="1062" v:groupContext="shape" v:layerMember="0" transform="translate(938.25,-1121.08)">
+			<title>Dynamic connector.1062</title>
+			<desc>based-on</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1523.32" width="41.81" height="17.6036"/>
+			<path d="M9 1548 L9 1505.18" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-6.89821" y="1518.52" width="31.7964" height="9.59985" class="st12"/>
+			<text x="-6.9" y="1525.72" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>based-on</text>		</g>
+		<g id="shape1063-280" v:mID="1063" v:groupContext="shape" transform="translate(891,-997.875)">
+			<title>Rectangle.1063</title>
+			<desc>x-action: Delete .doc</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1526.52" width="107.07" height="42.9551"/>
+			<rect x="0" y="1505.04" width="107.066" height="42.9551" class="st4"/>
+			<text x="30.96" y="1522.92" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-action:<v:newlineChar/><tspan
+						x="23.76" dy="1.2em" class="st3">Delete </tspan><tspan class="st3" v:langID="2057">.doc</tspan> </text>		</g>
+		<g id="shape1064-285" v:mID="1064" v:groupContext="shape" v:layerMember="0" transform="translate(953.73,-927)">
+			<title>Dynamic connector.1064</title>
+			<desc>action_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-9.19694" cy="1512.76" width="49.44" height="17.6036"/>
+			<path d="M-8.8 1548 L-8.8 1534.5 L-9.2 1534.5 L-9.2 1483.66" class="st14"/>
+			<rect v:rectContext="textBkgnd" x="-28.9118" y="1507.96" width="39.4297" height="9.59985" class="st8"/>
+			<text x="-28.91" y="1515.16" class="st17" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>action_refs</text>		</g>
+		<g id="shape1065-292" v:mID="1065" v:groupContext="shape" v:layerMember="0" transform="translate(936.891,-1040.83)">
+			<title>Dynamic connector.1065</title>
+			<desc>indicated-by</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="10.3586" cy="1530.71" width="52.77" height="17.6036"/>
+			<path d="M7.64 1548 L7.64 1534.5 L10.36 1534.5 L10.36 1517.24" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-11.0203" y="1525.91" width="42.7577" height="9.59985" class="st12"/>
+			<text x="-11.02" y="1533.11" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicated</tspan><tspan class="st3" v:langID="2057">-</tspan><tspan class="st3"
+						v:langID="2057">by</tspan></text>		</g>
+		<g id="shape1067-302" v:mID="1067" v:groupContext="shape" transform="translate(1076.62,-1407)">
+			<title>Rectangle.1067</title>
+			<desc>file: F0105065.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="27.02" dy="1.2em" class="st3">F</tspan><tspan class="st3" v:langID="2052">010</tspan>5065<tspan
+						class="st3" v:langID="2052">.jpg</tspan></text>		</g>
+		<g id="shape1068-308" v:mID="1068" v:groupContext="shape" transform="translate(1077.75,-1078.13)">
+			<title>Rectangle.1068</title>
+			<desc>Indicator: steganographic tool, images indicator</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="40.12" y="1515.72" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>Indicator:<v:newlineChar/><tspan
+						x="11.04" dy="1.2em" class="st3" v:langID="1033">steganographic tool, </tspan><tspan x="21.16" dy="1.2em"
+						class="st3" v:langID="1033">images indicator</tspan></text>		</g>
+		<g id="shape1069-313" v:mID="1069" v:groupContext="shape" transform="translate(1077.75,-1249.79)">
+			<title>Rectangle.1069</title>
+			<desc>artifact: jphide</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="43.76" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="48.54" dy="1.2em" class="st3">jphide</tspan></text>		</g>
+		<g id="shape1070-317" v:mID="1070" v:groupContext="shape" transform="translate(1075.5,-1338)">
+			<title>Rectangle.1070</title>
+			<desc>x-investigation-tool: stegdetect</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="36.83" dy="1.2em" class="st3">stegdetect</tspan></text>		</g>
+		<g id="shape1071-321" v:mID="1071" v:groupContext="shape" v:layerMember="0" transform="translate(1132.03,-1368)">
+			<title>Dynamic connector.1071</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1528.5" width="49.16" height="17.6036"/>
+			<path d="M8.72 1548 L9.19 1515.54" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-10.5781" y="1523.7" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-10.58" y="1530.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1072-328" v:mID="1072" v:groupContext="shape" v:layerMember="0" transform="translate(1132.42,-1338)">
+			<title>Dynamic connector.1072</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1577.11" width="54.08" height="17.6036"/>
+			<path d="M8.33 1548 L9.52 1599.67" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-13.0349" y="1572.31" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-13.03" y="1579.51" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1073-335" v:mID="1073" v:groupContext="shape" transform="translate(1077.75,-1170.44)">
+			<title>Rectangle.1073</title>
+			<desc>observed-data: steg tool and images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="26.56" y="1522.92" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>observed-data<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="10.22" dy="1.2em" class="st3"
+						v:langID="2052">steg tool</tspan><tspan class="st3" v:langID="1033"> </tspan><tspan class="st3"
+						v:langID="1033">and images </tspan> </text>		</g>
+		<g id="shape1074-342" v:mID="1074" v:groupContext="shape" v:layerMember="0" transform="translate(1151.72,-1213.39)">
+			<title>Dynamic connector.1074</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-9.28125" cy="1530.08" width="49.38" height="17.6036"/>
+			<path d="M-8.72 1548 L-8.72 1534.5 L-9.28 1534.5 L-9.28 1518.14" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-28.9648" y="1525.28" width="39.367" height="9.59985" class="st12"/>
+			<text x="-28.96" y="1532.48" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1075-349" v:mID="1075" v:groupContext="shape" v:layerMember="0" transform="translate(1134,-1121.08)">
+			<title>Dynamic connector.1075</title>
+			<desc>based-on</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1523.32" width="41.81" height="17.6036"/>
+			<path d="M9 1548 L9 1505.18" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-6.89821" y="1518.52" width="31.7964" height="9.59985" class="st12"/>
+			<text x="-6.9" y="1525.72" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>based-on</text>		</g>
+		<g id="shape1076-356" v:mID="1076" v:groupContext="shape" v:layerMember="0" transform="translate(366.75,-1386)">
+			<title>Dynamic connector.1076</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-97.875" cy="1585.88" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-189.65 1621.39" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-119.91" y="1581.08" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-119.91" y="1588.28" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1077-363" v:mID="1077" v:groupContext="shape" v:layerMember="0" transform="translate(411.009,-1371)">
+			<title>Dynamic connector.1077</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-40.4106" cy="1576.88" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-75.5 1601.95" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-62.4455" y="1572.08" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-62.45" y="1579.28" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1078-370" v:mID="1078" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1371)">
+			<title>Dynamic connector.1078</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="50.625" cy="1576.88" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L95.57 1602.51" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="28.5901" y="1572.08" width="44.0697" height="9.59985" class="st12"/>
+			<text x="28.59" y="1579.28" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1079-377" v:mID="1079" v:groupContext="shape" v:layerMember="0" transform="translate(497.25,-1386)">
+			<title>Dynamic connector.1079</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="94.5" cy="1584.38" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L182.9 1618.4" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="72.4651" y="1579.58" width="44.0697" height="9.59985" class="st12"/>
+			<text x="72.47" y="1586.78" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1080-384" v:mID="1080" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1401)">
+			<title>Dynamic connector.1080</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="253.99" cy="1509" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1509 L358.03 1509 L358.03 1604.85 L444.58 1604.85" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="231.955" y="1504.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="231.95" y="1511.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1081-391" v:mID="1081" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1401)">
+			<title>Dynamic connector.1081</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="336.656" cy="1473" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1473 L709.31 1473 L709.31 1505.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="314.621" y="1468.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="314.62" y="1475.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1082-398" v:mID="1082" v:groupContext="shape" v:layerMember="0" transform="translate(497.25,-1386)">
+			<title>Dynamic connector.1082</title>
+			<desc>imputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="389.259" cy="1961.1" width="51.37" height="17.6036"/>
+			<path d="M0 1548 L267.75 1548 L267.75 1961.1 L444.28 1961.1 A3 3 0 0 1 450.28 1961.1 L572.95 1961.1 A3 3 0 0 1 578.95
+						 1961.1 L754.22 1961.1 L754.22 2391.96" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="368.579" y="1956.3" width="41.3591" height="9.59985" class="st12"/>
+			<text x="368.58" y="1963.5" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>imputs_refs</text>		</g>
+		<g id="shape1083-405" v:mID="1083" v:groupContext="shape" transform="translate(1089.47,-997.875)">
+			<title>Rectangle.1083</title>
+			<desc>x-action: Hide Images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1526.52" width="107.07" height="42.9551"/>
+			<rect x="0" y="1505.04" width="107.066" height="42.9551" class="st4"/>
+			<text x="30.96" y="1522.92" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-action:<v:newlineChar/><tspan
+						x="20.81" dy="1.2em" class="st3">Hide Images </tspan> </text>		</g>
+		<g id="shape1084-409" v:mID="1084" v:groupContext="shape" v:layerMember="0" transform="translate(378.934,-1019.35)">
+			<title>Dynamic connector.1084</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-243.934" cy="1459.22" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L-243.93 1548 L-243.93 1293.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-265.245" y="1454.42" width="42.6209" height="9.59985" class="st12"/>
+			<text x="-265.24" y="1461.62" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1085-416" v:mID="1085" v:groupContext="shape" v:layerMember="0" transform="translate(896.062,-1019.35)">
+			<title>Dynamic connector.1085</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-59.2875" cy="1434.8" width="52.63" height="17.6036"/>
+			<path d="M-5.06 1548 L-62.66 1548 L-62.66 1223.21 L-19.48 1223.21" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-80.598" y="1430" width="42.6209" height="9.59985" class="st12"/>
+			<text x="-80.6" y="1437.2" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1086-423" v:mID="1086" v:groupContext="shape" v:layerMember="0" transform="translate(1196.53,-1019.35)">
+			<title>Dynamic connector.1086</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="177.355" cy="1501.94" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L175.67 1548 L175.67 1352.89" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="156.044" y="1497.14" width="42.6209" height="9.59985" class="st12"/>
+			<text x="156.04" y="1504.34" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1087-430" v:mID="1087" v:groupContext="shape" v:layerMember="0" transform="translate(1134,-1040.83)">
+			<title>Dynamic connector.1087</title>
+			<desc>indicated-by</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1529.35" width="52.77" height="17.6036"/>
+			<path d="M9 1548 L9 1517.24" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-12.3789" y="1524.55" width="42.7577" height="9.59985" class="st12"/>
+			<text x="-12.38" y="1531.75" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicated</tspan><tspan class="st3" v:langID="2057">-</tspan><tspan class="st3"
+						v:langID="2057">by</tspan></text>		</g>
+		<g id="shape1088-440" v:mID="1088" v:groupContext="shape" v:layerMember="0" transform="translate(944.927,-927)">
+			<title>Dynamic connector.1088</title>
+			<desc>action_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="99.0366" cy="1512.56" width="49.44" height="17.6036"/>
+			<path d="M0 1548 L191.92 1479.33" class="st14"/>
+			<rect v:rectContext="textBkgnd" x="79.3218" y="1507.76" width="39.4297" height="9.59985" class="st12"/>
+			<text x="79.32" y="1514.96" class="st17" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>action_refs</text>		</g>
+		<g id="shape1089-447" v:mID="1089" v:groupContext="shape" transform="translate(1234.12,-1264.5)">
+			<title>Sheet.1089</title>
+			<desc>artifact: password-gator</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1532.25" width="129.38" height="31.5"/>
+			<rect x="0" y="1516.5" width="129.375" height="31.5" class="st1"/>
+			<text x="43.76" y="1528.65" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="24.15" dy="1.2em" class="st3">password</tspan>-gator</text>		</g>
+		<g id="shape1090-451" v:mID="1090" v:groupContext="shape" v:layerMember="0" transform="translate(1140.75,-1338)">
+			<title>Dynamic connector.1090</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="57.4777" cy="1569" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L78.18 1576.57 A3 3 0 0 1 83.82 1578.62 L108.81 1587.76" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="35.4428" y="1564.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="35.44" y="1571.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1091-458" v:mID="1091" v:groupContext="shape" transform="translate(1234.12,-1338)">
+			<title>Rectangle.1091</title>
+			<desc>x-investigation-tool: jpseek</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="47.89" dy="1.2em" class="st3">jpseek</tspan></text>		</g>
+		<g id="shape1092-462" v:mID="1092" v:groupContext="shape" v:layerMember="0" transform="translate(1299.37,-1368)">
+			<title>Dynamic connector.1092</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-19.6875" cy="1494" width="49.16" height="17.6036"/>
+			<path d="M0 1548 L0 1494 L-74.62 1494 A3 3 -180 1 0 -80.62 1494 L-86.84 1494" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-39.2656" y="1489.2" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-39.27" y="1496.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1093-469" v:mID="1093" v:groupContext="shape" v:layerMember="0" transform="translate(1290.37,-1338)">
+			<title>Dynamic connector.1093</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1569" width="49.16" height="17.6036"/>
+			<path d="M9 1548 L9 1583.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-10.5781" y="1564.2" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-10.58" y="1571.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1094-476" v:mID="1094" v:groupContext="shape" transform="translate(1346.62,-1221)">
+			<title>Rectangle.1094</title>
+			<desc>file: r065.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="42.34" dy="1.2em" class="st3">r065.jpg</tspan></text>		</g>
+		<g id="shape1095-480" v:mID="1095" v:groupContext="shape" v:layerMember="0" transform="translate(1364.62,-1353)">
+			<title>Dynamic connector.1095</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="46.6875" cy="1575.66" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L46.69 1548 L46.69 1643.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="24.6526" y="1570.86" width="44.0697" height="9.59985" class="st12"/>
+			<text x="24.65" y="1578.06" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1096-487" v:mID="1096" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1096</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="203.062" cy="1533.91" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L160.95 1548 A3 3 0 0 1 166.95 1548 L203.06 1548 L203.06 1525.45" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="183.379" y="1529.12" width="39.367" height="9.59985" class="st12"/>
+			<text x="183.38" y="1536.32" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1097-494" v:mID="1097" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1097</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="101.813" cy="1512.93" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L101.81 1548 L101.81 1481.95" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="82.129" y="1508.13" width="39.367" height="9.59985" class="st12"/>
+			<text x="82.13" y="1515.33" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1098-501" v:mID="1098" v:groupContext="shape" transform="translate(1432.97,-1407)">
+			<title>Rectangle.1098</title>
+			<desc>file: F0104249.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="27.02" dy="1.2em" class="st3">F</tspan><tspan class="st3" v:langID="2052">0104249.jpg</tspan></text>		</g>
+		<g id="shape1099-506" v:mID="1099" v:groupContext="shape" v:layerMember="0" transform="translate(432,-1401)">
+			<title>Dynamic connector.1099</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="514.828" cy="1437" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1437 L1065.66 1437 L1065.66 1505.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="492.793" y="1432.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="492.79" y="1439.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1100-513" v:mID="1100" v:groupContext="shape" transform="translate(1436.34,-1266)">
+			<title>Rectangle.1100</title>
+			<desc>artifact: jphide</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="43.76" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="48.54" dy="1.2em" class="st3">jphide</tspan></text>		</g>
+		<g id="shape1101-517" v:mID="1101" v:groupContext="shape" transform="translate(1587.66,-1250.25)">
+			<title>Sheet.1101</title>
+			<desc>artifact: password-gumbo</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1532.25" width="129.38" height="31.5"/>
+			<rect x="0" y="1516.5" width="129.375" height="31.5" class="st1"/>
+			<text x="43.76" y="1528.65" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="20.13" dy="1.2em" class="st3">password</tspan>-gumbo</text>		</g>
+		<g id="shape1102-521" v:mID="1102" v:groupContext="shape" transform="translate(1434.09,-1338)">
+			<title>Rectangle.1102</title>
+			<desc>x-investigation-tool: stegdetect</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="36.83" dy="1.2em" class="st3">stegdetect</tspan></text>		</g>
+		<g id="shape1103-525" v:mID="1103" v:groupContext="shape" v:layerMember="0" transform="translate(1507.5,-1368)">
+			<title>Dynamic connector.1103</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-9" cy="1528.5" width="49.16" height="17.6036"/>
+			<path d="M-8.16 1548 L-9.56 1515.53" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-28.5781" y="1523.7" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-28.58" y="1530.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1104-532" v:mID="1104" v:groupContext="shape" v:layerMember="0" transform="translate(1491.19,-1338)">
+			<title>Dynamic connector.1104</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1569" width="54.08" height="17.6036"/>
+			<path d="M8.16 1548 L9.58 1583.47" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-13.0349" y="1564.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-13.03" y="1571.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1105-539" v:mID="1105" v:groupContext="shape" v:layerMember="0" transform="translate(1499.34,-1338)">
+			<title>Dynamic connector.1105</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="59.766" cy="1576.13" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L113.61 1601.47" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="37.7311" y="1571.33" width="44.0697" height="9.59985" class="st12"/>
+			<text x="37.73" y="1578.53" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1106-546" v:mID="1106" v:groupContext="shape" transform="translate(1733.62,-1215)">
+			<title>Rectangle.1106</title>
+			<desc>file: r249.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="42.34" dy="1.2em" class="st3">r249.jpg</tspan></text>		</g>
+		<g id="shape1107-550" v:mID="1107" v:groupContext="shape" transform="translate(1588.5,-1338)">
+			<title>Rectangle.1107</title>
+			<desc>x-investigation-tool: jpseek</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="47.89" dy="1.2em" class="st3">jpseek</tspan></text>		</g>
+		<g id="shape1108-554" v:mID="1108" v:groupContext="shape" v:layerMember="0" transform="translate(1653.75,-1368)">
+			<title>Dynamic connector.1108</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-18.7031" cy="1494" width="49.16" height="17.6036"/>
+			<path d="M0 1548 L0 1494 L-84.87 1494" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-38.2812" y="1489.2" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-38.28" y="1496.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1109-561" v:mID="1109" v:groupContext="shape" v:layerMember="0" transform="translate(1644.75,-1338)">
+			<title>Dynamic connector.1109</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1576.13" width="49.16" height="17.6036"/>
+			<path d="M9 1548 L9 1597.71" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-10.5781" y="1571.33" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-10.58" y="1578.53" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1110-568" v:mID="1110" v:groupContext="shape" v:layerMember="0" transform="translate(1719,-1353)">
+			<title>Dynamic connector.1110</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="79.3125" cy="1562.34" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L79.31 1548 L79.31 1649.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="57.2776" y="1557.54" width="44.0697" height="9.59985" class="st12"/>
+			<text x="57.28" y="1564.74" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1111-575" v:mID="1111" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1111</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="294.75" cy="1506.04" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L160.95 1548 A3 3 0 0 1 166.95 1548 L292.78 1548 L292.78 1480.45" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="275.066" y="1501.24" width="39.367" height="9.59985" class="st12"/>
+			<text x="275.07" y="1508.44" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1112-582" v:mID="1112" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1112</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="438.75" cy="1519.29" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L160.95 1548 A3 3 0 0 1 166.95 1548 L444.09 1548 L444.09 1496.21" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="419.066" y="1514.49" width="39.367" height="9.59985" class="st8"/>
+			<text x="419.07" y="1521.69" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1113-589" v:mID="1113" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1113</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="510.75" cy="1547.41" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L160.95 1548 A3 3 0 0 1 166.95 1548 L590.06 1548 L590.06 1531.45" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="491.066" y="1542.62" width="39.367" height="9.59985" class="st12"/>
+			<text x="491.07" y="1549.82" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1114-596" v:mID="1114" v:groupContext="shape" transform="translate(106.313,-746.145)">
+			<title>Rectangle.1114</title>
+			<desc>url: 137.30.120.40</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="56.22" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>url:<v:newlineChar/><tspan
+						x="24.87" dy="1.2em" class="st3">137.30.120.40</tspan></text>		</g>
+		<g id="shape1115-600" v:mID="1115" v:groupContext="shape" transform="translate(106.313,-680.999)">
+			<title>Rectangle.1115</title>
+			<desc>url: 137.30.122.253</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="56.22" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>url:<v:newlineChar/><tspan
+						x="21.35" dy="1.2em" class="st3">137.30.122.253</tspan></text>		</g>
+		<g id="shape1116-604" v:mID="1116" v:groupContext="shape" transform="translate(634.32,-758.269)">
+			<title>Rectangle.1116</title>
+			<desc>file: rhino1.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="40.6796" cy="1532.27" width="81.36" height="31.4623"/>
+			<rect x="0" y="1516.54" width="81.3593" height="31.4623" class="st1"/>
+			<text x="30.83" y="1528.67" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="14.01" dy="1.2em" class="st3">rhino1.jpg</tspan></text>		</g>
+		<g id="shape1117-608" v:mID="1117" v:groupContext="shape" transform="translate(295.249,-714.001)">
+			<title>Rectangle.1117</title>
+			<desc>network-traffic: rhino1.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="24.17" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>network-traffic:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino1.jpg</tspan></text>		</g>
+		<g id="shape1118-612" v:mID="1118" v:groupContext="shape" v:layerMember="0" transform="translate(295.249,-729)">
+			<title>Dynamic connector.1118</title>
+			<desc>src_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-13.7082" cy="1515.86" width="40" height="17.6036"/>
+			<path d="M0 1548 L-13.5 1548 L-13.5 1515.86 L-19.5 1515.86 A3 3 -180 1 0 -25.5 1515.86 L-53.02 1515.86" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-25.8431" y="1511.06" width="24.2696" height="9.59985" class="st12"/>
+			<text x="-25.84" y="1518.26" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>src_ref</text>		</g>
+		<g id="shape1119-619" v:mID="1119" v:groupContext="shape" v:layerMember="0" transform="translate(295.249,-729)">
+			<title>Dynamic connector.1119</title>
+			<desc>dst_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-13.5" cy="1580.78" width="40" height="17.6036"/>
+			<path d="M0 1548 L-13.5 1548 L-13.5 1581 L-19.5 1581 A3 3 -180 1 0 -25.5 1581 L-53.02 1581" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-25.7637" y="1575.98" width="24.5273" height="9.59985" class="st12"/>
+			<text x="-25.76" y="1583.18" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>dst_ref</text>		</g>
+		<g id="shape1120-626" v:mID="1120" v:groupContext="shape" transform="translate(666,-569.288)">
+			<title>Rectangle.1120</title>
+			<desc>x-investigation-tool: Wireshark</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1532.27" width="130.51" height="31.4623"/>
+			<rect x="0" y="1516.54" width="130.5" height="31.4623" class="st4"/>
+			<text x="13.42" y="1528.67" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="38.44" dy="1.2em" class="st3">Wireshark</tspan></text>		</g>
+		<g id="shape1121-630" v:mID="1121" v:groupContext="shape" v:layerMember="0" transform="translate(731.25,-600.75)">
+			<title>Dynamic connector.1121</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="31.5" cy="1507.57" width="49.16" height="17.6036"/>
+			<path d="M0 1548 L0 1534.5 L33.75 1534.5 L33.75 1495.33" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="11.9219" y="1502.77" width="39.1561" height="9.59985" class="st12"/>
+			<text x="11.92" y="1509.97" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1122-637" v:mID="1122" v:groupContext="shape" v:layerMember="0" transform="translate(666,-585.019)">
+			<title>Dynamic connector.1122</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-309.375" cy="1548.02" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-51 1548 A3 3 -180 1 0 -57 1548 L-229.87 1548 A3 3 -180 0 0 -235.87 1548 L-366.19 1548 L-366.19 1518.56"
+					class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-331.41" y="1543.22" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-331.41" y="1550.42" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1123-644" v:mID="1123" v:groupContext="shape" v:layerMember="0" transform="translate(731.25,-600.75)">
+			<title>Dynamic connector.1123</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-56.25" cy="1497.37" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1534.5 L-56.25 1534.5 L-56.25 1397.02" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-78.2849" y="1492.57" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-78.28" y="1499.77" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1124-651" v:mID="1124" v:groupContext="shape" transform="translate(445.5,-824.044)">
+			<title>Rectangle.1124</title>
+			<desc>observed-data: network images FTP</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="26.56" y="1522.92" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>observed-data<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="11.73" dy="1.2em" class="st3"
+						v:langID="1033">network images FTP</tspan></text>		</g>
+		<g id="shape1125-656" v:mID="1125" v:groupContext="shape" v:layerMember="0" transform="translate(445.5,-845.521)">
+			<title>Dynamic connector.1125</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-85.5638" cy="1555.98" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L-85.56 1548 L-85.56 1642.98" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-105.247" y="1551.18" width="39.367" height="9.59985" class="st12"/>
+			<text x="-105.25" y="1558.38" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1126-663" v:mID="1126" v:groupContext="shape" v:layerMember="0" transform="translate(576,-845.521)">
+			<title>Dynamic connector.1126</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="77.3951" cy="1548" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L99 1548 L99 1597.25" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="57.7116" y="1543.2" width="39.367" height="9.59985" class="st12"/>
+			<text x="57.71" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1127-670" v:mID="1127" v:groupContext="shape" transform="translate(400.5,-901.771)">
+			<title>Rectangle.1127</title>
+			<desc>indicator: upload indicator</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1532.25" width="130.51" height="31.5"/>
+			<rect x="0" y="1516.5" width="130.5" height="31.5" class="st1"/>
+			<text x="40.27" y="1528.65" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicator:<v:newlineChar/></tspan><tspan x="22.54" dy="1.2em" class="st3">upload indicator</tspan></text>		</g>
+		<g id="shape1128-675" v:mID="1128" v:groupContext="shape" v:layerMember="0" transform="translate(465.75,-901.771)">
+			<title>Dynamic connector.1128</title>
+			<desc>based-on</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="26.3862" cy="1561.5" width="41.81" height="17.6036"/>
+			<path d="M0 1548 L0 1561.5 L45 1561.5 L45 1576.23" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="10.488" y="1556.7" width="31.7964" height="9.59985" class="st12"/>
+			<text x="10.49" y="1563.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>based-on</text>		</g>
+		<g id="shape1129-682" v:mID="1129" v:groupContext="shape" transform="translate(651.016,-896.044)">
+			<title>Rectangle.1129</title>
+			<desc>x-action: upload Images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1526.52" width="107.07" height="42.9551"/>
+			<rect x="0" y="1505.04" width="107.066" height="42.9551" class="st4"/>
+			<text x="30.96" y="1522.92" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-action:<v:newlineChar/><tspan
+						x="14.96" dy="1.2em" class="st3">upload Images </tspan> </text>		</g>
+		<g id="shape1130-686" v:mID="1130" v:groupContext="shape" v:layerMember="0" transform="translate(695.962,-896.044)">
+			<title>Dynamic connector.1130</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="6.03823" cy="1584.54" width="52.63" height="17.6036"/>
+			<path d="M8.59 1548 L9.36 1647.77" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-15.2723" y="1579.74" width="42.6209" height="9.59985" class="st12"/>
+			<text x="-15.27" y="1586.94" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1131-693" v:mID="1131" v:groupContext="shape" v:layerMember="0" transform="translate(651.016,-908.521)">
+			<title>Dynamic connector.1131</title>
+			<desc>indicated-by</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-60.0079" cy="1539" width="52.77" height="17.6036"/>
+			<path d="M0 1539 L-113.48 1539" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-81.3867" y="1534.2" width="42.7577" height="9.59985" class="st8"/>
+			<text x="-81.39" y="1541.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicated</tspan><tspan class="st3" v:langID="2057">-</tspan><tspan class="st3"
+						v:langID="2057">by</tspan></text>		</g>
+		<g id="shape1132-703" v:mID="1132" v:groupContext="shape" v:layerMember="0" transform="translate(880.239,-908.147)">
+			<title>Dynamic connector.1132</title>
+			<desc>action_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-61.0789" cy="1539" width="49.44" height="17.6036"/>
+			<path d="M0 1539.37 L-115.62 1538.67" class="st14"/>
+			<rect v:rectContext="textBkgnd" x="-80.7938" y="1534.2" width="39.4297" height="9.59985" class="st12"/>
+			<text x="-80.79" y="1541.4" class="st17" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>action_refs</text>		</g>
+		<g id="shape1133-710" v:mID="1133" v:groupContext="shape" transform="translate(235.125,-621)">
+			<title>Rectangle.1133</title>
+			<desc>network-traffic: rhino3.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="24.17" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>network-traffic:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino3.jpg</tspan></text>		</g>
+		<g id="shape1134-714" v:mID="1134" v:groupContext="shape" v:layerMember="0" transform="translate(235.125,-644.062)">
+			<title>Dynamic connector.1134</title>
+			<desc>des_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-41.8122" cy="1548" width="40" height="17.6036"/>
+			<path d="M0 1548 L-46.69 1548 L-46.69 1517.6" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-54.8082" y="1543.2" width="25.992" height="9.59985" class="st12"/>
+			<text x="-54.81" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>des_ref</text>		</g>
+		<g id="shape1135-721" v:mID="1135" v:groupContext="shape" v:layerMember="0" transform="translate(235.125,-627)">
+			<title>Dynamic connector.1135</title>
+			<desc>src_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-142.312" cy="1545.33" width="40" height="17.6036"/>
+			<path d="M0 1548 L-85.31 1548 A3 3 -180 0 0 -91.31 1548 L-142.31 1548 L-142.31 1413.86 L-135.35 1413.86" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-154.447" y="1540.53" width="24.2696" height="9.59985" class="st12"/>
+			<text x="-154.45" y="1547.73" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>src_ref</text>		</g>
+		<g id="shape1137-728" v:mID="1137" v:groupContext="shape" transform="translate(446.625,-643.5)">
+			<title>Rectangle.1137</title>
+			<desc>file: rhino3.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino3.jpg</tspan></text>		</g>
+		<g id="shape1138-732" v:mID="1138" v:groupContext="shape" v:layerMember="0" transform="translate(666,-585.019)">
+			<title>Dynamic connector.1138</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-157.5" cy="1516.52" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-51 1548 A3 3 -180 1 0 -57 1548 L-154.69 1548 L-154.69 1496.06" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-179.535" y="1511.72" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-179.53" y="1518.92" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1139-739" v:mID="1139" v:groupContext="shape" v:layerMember="0" transform="translate(502.031,-824.044)">
+			<title>Dynamic connector.1139</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9.28125" cy="1622.99" width="49.38" height="17.6036"/>
+			<path d="M8.72 1548 L8.72 1561.5 L9.28 1561.5 L9.28 1692" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-10.4023" y="1618.19" width="39.367" height="9.59985" class="st12"/>
+			<text x="-10.4" y="1625.39" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1140-746" v:mID="1140" v:groupContext="shape" v:layerMember="0" transform="translate(445.5,-845.521)">
+			<title>Dynamic connector.1140</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-172.751" cy="1572.42" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L-172.75 1548 L-172.75 1729.02 L-145.69 1729.02 L-145.69 1735.98" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-192.435" y="1567.62" width="39.367" height="9.59985" class="st12"/>
+			<text x="-192.43" y="1574.82" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1141-753" v:mID="1141" v:groupContext="shape" transform="translate(277.313,-537.001)">
+			<title>Rectangle.1141</title>
+			<desc>network-traffic: contraband.zip</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="24.17" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>network-traffic:<v:newlineChar/><tspan
+						x="25.68" dy="1.2em" class="st3">contraband.zip</tspan></text>		</g>
+		<g id="shape1142-757" v:mID="1142" v:groupContext="shape" v:layerMember="0" transform="translate(731.25,-569.644)">
+			<title>Dynamic connector.1142</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-153.638" cy="1565.64" width="54.08" height="17.6036"/>
+			<path d="M0 1548.36 L0 1565.64 L-116.25 1565.64 A3 3 -180 0 0 -122.25 1565.64 L-295.13 1565.64 A3 3 -180 0 0 -301.13
+						 1565.64 L-318.02 1565.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-175.673" y="1560.84" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-175.67" y="1568.04" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1143-764" v:mID="1143" v:groupContext="shape" transform="translate(417.448,-473.701)">
+			<title>Rectangle.1143</title>
+			<desc>file: contraband.zip</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="25.68" dy="1.2em" class="st3">contraband.zip</tspan></text>		</g>
+		<g id="shape1144-768" v:mID="1144" v:groupContext="shape" transform="translate(417.448,-392.701)">
+			<title>Rectangle.1144</title>
+			<desc>file: rhino2.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino2.jpg</tspan></text>		</g>
+		<g id="shape1145-772" v:mID="1145" v:groupContext="shape" transform="translate(180,-392.701)">
+			<title>Sheet.1145</title>
+			<desc>artifact: password.monkey</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1532.25" width="129.38" height="31.5"/>
+			<rect x="0" y="1516.5" width="129.375" height="31.5" class="st1"/>
+			<text x="43.76" y="1528.65" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>artifact:<v:newlineChar/><tspan
+						x="17.53" dy="1.2em" class="st3">password.monkey</tspan></text>		</g>
+		<g id="shape1146-776" v:mID="1146" v:groupContext="shape" transform="translate(63,-473.701)">
+			<title>Rectangle.1146</title>
+			<desc>x-investigation-tool: fcrackzip</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1533" width="130.51" height="29.9989"/>
+			<rect x="0" y="1518" width="130.5" height="29.9989" class="st4"/>
+			<text x="13.42" y="1529.4" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="41.2" dy="1.2em" class="st3">fcrackzip</tspan></text>		</g>
+		<g id="shape1147-780" v:mID="1147" v:groupContext="shape" v:layerMember="0" transform="translate(193.5,-479.7)">
+			<title>Dynamic connector.1147</title>
+			<desc>inputs_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="111.974" cy="1539" width="45.38" height="17.6036"/>
+			<path d="M0 1539 L217.41 1539" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="94.2886" y="1534.2" width="35.371" height="9.59985" class="st12"/>
+			<text x="94.29" y="1541.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_ref</text>		</g>
+		<g id="shape1148-787" v:mID="1148" v:groupContext="shape" v:layerMember="0" transform="translate(128.25,-473.701)">
+			<title>Dynamic connector.1148</title>
+			<desc>outputs_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="0" cy="1606.5" width="50.29" height="17.6036"/>
+			<path d="M0 1548 L0 1613.25 L45.21 1613.25" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-20.1424" y="1601.7" width="40.2847" height="9.59985" class="st12"/>
+			<text x="-20.14" y="1608.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_ref</text>		</g>
+		<g id="shape1149-794" v:mID="1149" v:groupContext="shape" v:layerMember="0" transform="translate(473.136,-473.701)">
+			<title>Dynamic connector.1149</title>
+			<desc>extensions.archive-ext.contains_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1573.5" width="138.46" height="17.6036"/>
+			<path d="M9 1548 L9 1592.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-55.2262" y="1568.7" width="128.452" height="9.59985" class="st12"/>
+			<text x="-55.23" y="1575.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>extensions.archive-ext.contains_refs</text>		</g>
+		<g id="shape1150-801" v:mID="1150" v:groupContext="shape" v:layerMember="0" transform="translate(417.448,-488.7)">
+			<title>Dynamic connector.1150</title>
+			<desc>extensions.archive-ext.contains_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-69.4271" cy="1580.25" width="138.46" height="17.6036"/>
+			<path d="M0 1548 L-132.92 1609.74" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-133.653" y="1575.45" width="128.452" height="9.59985" class="st12"/>
+			<text x="-133.65" y="1582.65" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>extensions.archive-ext.contains_refs</text>		</g>
+		<g id="shape1151-808" v:mID="1151" v:groupContext="shape" v:layerMember="0" transform="translate(277.313,-543.751)">
+			<title>Dynamic connector.1151</title>
+			<desc>src_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-234" cy="1524.8" width="40" height="17.6036"/>
+			<path d="M0 1548 L-234 1548 L-234 1330.61 L-177.54 1330.61" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-246.135" y="1520" width="24.2696" height="9.59985" class="st12"/>
+			<text x="-246.13" y="1527.2" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>src_ref</text>		</g>
+		<g id="shape1152-815" v:mID="1152" v:groupContext="shape" v:layerMember="0" transform="translate(277.313,-562.201)">
+			<title>Dynamic connector.1152</title>
+			<desc>des_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-124.649" cy="1548" width="40" height="17.6036"/>
+			<path d="M0 1548 L-130.5 1548 L-130.5 1435.74" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-137.645" y="1543.2" width="25.992" height="9.59985" class="st12"/>
+			<text x="-137.65" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>des_ref</text>		</g>
+		<g id="shape1153-822" v:mID="1153" v:groupContext="shape" v:layerMember="0" transform="translate(666,-585.019)">
+			<title>Dynamic connector.1153</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-102.041" cy="1432.52" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-13.5 1548 L-13.5 1432.52 L-51 1432.52 A3 3 -180 0 0 -57 1432.52 L-73.5 1432.52 A3 3 -180 0 0 -79.5
+						 1432.52 L-151.69 1432.52 A3 3 -180 0 0 -157.69 1432.52 L-229.87 1432.52 A3 3 -180 0 0 -235.87 1432.52 L-306.06
+						 1432.52 L-306.06 1425.56" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-124.076" y="1427.72" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-124.08" y="1434.92" class="st9" v:langID="2052"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1154-829" v:mID="1154" v:groupContext="shape" v:layerMember="0" transform="translate(731.25,-569.288)">
+			<title>Dynamic connector.1154</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-51.9195" cy="1628.59" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1628.59 L-116.25 1628.59 A3 3 -180 1 0 -122.25 1628.59 L-177.89 1628.59" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-73.9544" y="1623.79" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-73.95" y="1630.99" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1155-836" v:mID="1155" v:groupContext="shape" v:layerMember="0" transform="translate(445.5,-845.521)">
+			<title>Dynamic connector.1155</title>
+			<path d="M0 1548 L-12.37 1548 L-12.37 1876.32 L36.64 1876.32 L36.64 1883.28" class="st11"/>
+		</g>
+		<g id="shape1156-841" v:mID="1156" v:groupContext="shape" v:layerMember="0" transform="translate(576,-845.521)">
+			<title>Dynamic connector.1156</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="36" cy="1781.5" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L36 1548 L36 1985.82 L-22.64 1985.82" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="16.3165" y="1776.7" width="39.367" height="9.59985" class="st12"/>
+			<text x="16.32" y="1783.9" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1157-848" v:mID="1157" v:groupContext="shape" v:layerMember="0" transform="translate(567,-845.521)">
+			<title>Dynamic connector.1157</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="22.5" cy="1641.51" width="49.38" height="17.6036"/>
+			<path d="M9 1548 L22.5 1548 L22.5 1735.02 L15.54 1735.02" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="2.81645" y="1636.71" width="39.367" height="9.59985" class="st12"/>
+			<text x="2.82" y="1643.91" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1158-855" v:mID="1158" v:groupContext="shape" v:layerMember="0" transform="translate(731.25,-569.288)">
+			<title>Dynamic connector.1158</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-36.2635" cy="1738.09" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L0 1738.09 L-249.11 1738.09 L-249.11 1731.13" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-58.2984" y="1733.29" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-58.3" y="1740.49" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1159-862" v:mID="1159" v:groupContext="shape" transform="translate(1395,-760.315)">
+			<title>Rectangle.1159</title>
+			<desc>url: 137.30.123.234</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="56.22" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>url:<v:newlineChar/><tspan
+						x="21.35" dy="1.2em" class="st3">137.30.123.234</tspan></text>		</g>
+		<g id="shape1160-866" v:mID="1160" v:groupContext="shape" transform="translate(1395,-706.741)">
+			<title>Rectangle.1160</title>
+			<desc>url: 137.30.120.37</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="56.22" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>url:<v:newlineChar/><tspan
+						x="24.87" dy="1.2em" class="st3">137.30.120.37</tspan></text>		</g>
+		<g id="shape1161-870" v:mID="1161" v:groupContext="shape" transform="translate(1510.31,-660.001)">
+			<title>Rectangle.1161</title>
+			<desc>network-traffic: rhino4.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="24.17" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>network-traffic:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino4.jpg</tspan></text>		</g>
+		<g id="shape1162-874" v:mID="1162" v:groupContext="shape" transform="translate(1627.31,-737.312)">
+			<title>Rectangle.1162</title>
+			<desc>file: rhino4.jpg</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="38.02" dy="1.2em" class="st3">rhino4.jpg</tspan></text>		</g>
+		<g id="shape1163-878" v:mID="1163" v:groupContext="shape" v:layerMember="0" transform="translate(1575,-689.999)">
+			<title>Dynamic connector.1163</title>
+			<desc>src_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="0" cy="1480.03" width="40" height="17.6036"/>
+			<path d="M0 1548 L0 1462.69 L-44.08 1462.69" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-12.1349" y="1475.23" width="24.2696" height="9.59985" class="st12"/>
+			<text x="-12.13" y="1482.43" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>src_ref</text>		</g>
+		<g id="shape1164-885" v:mID="1164" v:groupContext="shape" v:layerMember="0" transform="translate(1557,-689.999)">
+			<title>Dynamic connector.1164</title>
+			<desc>dst_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-0.441907" cy="1516.26" width="40" height="17.6036"/>
+			<path d="M0 1548 L0 1516.26 L-26.09 1516.26" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-12.7056" y="1511.46" width="24.5273" height="9.59985" class="st12"/>
+			<text x="-12.71" y="1518.66" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>dst_ref</text>		</g>
+		<g id="shape1165-892" v:mID="1165" v:groupContext="shape" transform="translate(1509.75,-582.769)">
+			<title>Rectangle.1165</title>
+			<desc>x-investigation-tool: Wireshark</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1532.27" width="130.51" height="31.4623"/>
+			<rect x="0" y="1516.54" width="130.5" height="31.4623" class="st4"/>
+			<text x="13.42" y="1528.67" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-investigation-tool:<v:newlineChar/><tspan
+						x="38.44" dy="1.2em" class="st3">Wireshark</tspan></text>		</g>
+		<g id="shape1166-896" v:mID="1166" v:groupContext="shape" v:layerMember="0" transform="translate(1575,-582.952)">
+			<title>Dynamic connector.1166</title>
+			<desc>inputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-187.4" cy="1565.82" width="49.16" height="17.6036"/>
+			<path d="M0 1548.18 L0 1565.82 L-320.53 1565.82 A3 3 -180 0 0 -326.53 1565.82 L-339 1565.82 A3 3 -180 0 0 -345 1565.82
+						 L-385.89 1565.82" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-206.978" y="1561.02" width="39.1561" height="9.59985" class="st12"/>
+			<text x="-206.98" y="1568.22" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>inputs_refs</text>		</g>
+		<g id="shape1167-903" v:mID="1167" v:groupContext="shape" v:layerMember="0" transform="translate(1566,-614.231)">
+			<title>Dynamic connector.1167</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1525.12" width="54.08" height="17.6036"/>
+			<path d="M9 1548 L9 1508.77" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-13.0349" y="1520.32" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-13.03" y="1527.52" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1168-910" v:mID="1168" v:groupContext="shape" v:layerMember="0" transform="translate(1640.25,-598.5)">
+			<title>Dynamic connector.1168</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="51.75" cy="1504.47" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L51.75 1548 L51.75 1415.73" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="29.7151" y="1499.67" width="44.0697" height="9.59985" class="st12"/>
+			<text x="29.72" y="1506.87" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1169-917" v:mID="1169" v:groupContext="shape" transform="translate(1534.5,-810)">
+			<title>Rectangle.1169</title>
+			<desc>observed-data: http download images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="26.56" y="1522.92" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>observed-data<tspan
+						class="st3" v:langID="1033">:<v:newlineChar/></tspan><tspan x="7.02" dy="1.2em" class="st3" v:langID="1033">http download images</tspan></text>		</g>
+		<g id="shape1170-922" v:mID="1170" v:groupContext="shape" v:layerMember="0" transform="translate(1599.75,-810)">
+			<title>Dynamic connector.1170</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="2.25004" cy="1620" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L0 1654.5 L53.44 1654.5 L53.44 1683 L46.48 1683" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-17.4335" y="1615.2" width="39.367" height="9.59985" class="st12"/>
+			<text x="-17.43" y="1622.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1171-929" v:mID="1171" v:groupContext="shape" v:layerMember="0" transform="translate(1665,-831.478)">
+			<title>Dynamic connector.1171</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="27" cy="1566.58" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L27 1548 L27 1605.63" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="7.31644" y="1561.78" width="39.367" height="9.59985" class="st12"/>
+			<text x="7.32" y="1568.98" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1172-936" v:mID="1172" v:groupContext="shape" transform="translate(1534.5,-928.739)">
+			<title>Rectangle.1172</title>
+			<desc>Indicator: download image pattern</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="65.25" cy="1526.52" width="130.51" height="42.9551"/>
+			<rect x="0" y="1505.04" width="130.5" height="42.9551" class="st1"/>
+			<text x="40.12" y="1515.72" class="st2" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>Indicator:<v:newlineChar/><tspan
+						x="22.08" dy="1.2em" class="st3" v:langID="1033">download image </tspan><tspan x="45.96" dy="1.2em"
+						class="st3" v:langID="1033">pattern</tspan></text>		</g>
+		<g id="shape1173-941" v:mID="1173" v:groupContext="shape" v:layerMember="0" transform="translate(1590.75,-928.739)">
+			<title>Dynamic connector.1173</title>
+			<desc>based-on</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9" cy="1585.89" width="41.81" height="17.6036"/>
+			<path d="M9 1548 L9 1617.24" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-6.89821" y="1581.09" width="31.7964" height="9.59985" class="st12"/>
+			<text x="-6.9" y="1588.29" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>based-on</text>		</g>
+		<g id="shape1174-948" v:mID="1174" v:groupContext="shape" v:layerMember="0" transform="translate(378.934,-1019.35)">
+			<title>Dynamic connector.1174</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-85.3093" cy="1458.71" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L-85.31 1548 L-85.31 1290.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-106.62" y="1453.91" width="42.6209" height="9.59985" class="st12"/>
+			<text x="-106.62" y="1461.11" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1175-955" v:mID="1175" v:groupContext="shape" v:layerMember="0" transform="translate(486,-1019.35)">
+			<title>Dynamic connector.1175</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="72" cy="1458.71" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L72 1548 L72 1290.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="50.6895" y="1453.91" width="42.6209" height="9.59985" class="st12"/>
+			<text x="50.69" y="1461.11" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1176-962" v:mID="1176" v:groupContext="shape" v:layerMember="0" transform="translate(486,-1019.35)">
+			<title>Dynamic connector.1176</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="219.375" cy="1461.57" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L220.5 1548 L220.5 1290.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="198.065" y="1456.77" width="42.6209" height="9.59985" class="st12"/>
+			<text x="198.06" y="1463.97" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1177-969" v:mID="1177" v:groupContext="shape" v:layerMember="0" transform="translate(1196.53,-1019.35)">
+			<title>Dynamic connector.1177</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="272.717" cy="1440.1" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L270.47 1548 L270.47 1397.35 L601.78 1397.35 L601.78 1358.89" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="251.407" y="1435.3" width="42.6209" height="9.59985" class="st12"/>
+			<text x="251.41" y="1442.5" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1178-976" v:mID="1178" v:groupContext="shape" v:layerMember="0" transform="translate(736.875,-896.044)">
+			<title>Dynamic connector.1178</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-2.23114" cy="1619.52" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L-0 1640.81 L95.62 1640.81 L95.62 1723.3 L139.05 1723.3" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-23.5416" y="1614.72" width="42.6209" height="9.59985" class="st12"/>
+			<text x="-23.54" y="1621.92" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1179-983" v:mID="1179" v:groupContext="shape" transform="translate(1329.75,-928.022)">
+			<title>Rectangle.1179</title>
+			<desc>x-action: Download Images</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="53.5328" cy="1526.52" width="107.07" height="42.9551"/>
+			<rect x="0" y="1505.04" width="107.066" height="42.9551" class="st4"/>
+			<text x="30.96" y="1522.92" class="st5" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>x-action:<v:newlineChar/><tspan
+						x="6.72" dy="1.2em" class="st3">Download Images </tspan> </text>		</g>
+		<g id="shape1180-987" v:mID="1180" v:groupContext="shape" v:layerMember="0" transform="translate(1009.61,-916.772)">
+			<title>Dynamic connector.1180</title>
+			<desc>action_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="160.068" cy="1531.64" width="49.44" height="17.6036"/>
+			<path d="M0 1548 L238.87 1523.58 A3 3 0 1 1 244.84 1522.97 L313.63 1515.94" class="st14"/>
+			<rect v:rectContext="textBkgnd" x="140.353" y="1526.84" width="39.4297" height="9.59985" class="st8"/>
+			<text x="140.35" y="1534.04" class="st17" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>action_refs</text>		</g>
+		<g id="shape1181-994" v:mID="1181" v:groupContext="shape" v:layerMember="0" transform="translate(1436.82,-940.858)">
+			<title>Dynamic connector.1181</title>
+			<desc>indicated-by</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="48.484" cy="1538.64" width="52.77" height="17.6036"/>
+			<path d="M0 1539.36 L13.5 1539.36 L13.5 1538.64 L91.14 1538.64" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="27.1051" y="1533.84" width="42.7577" height="9.59985" class="st12"/>
+			<text x="27.11" y="1541.04" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>i<tspan class="st3"
+						v:langID="2057">ndicated</tspan><tspan class="st3" v:langID="2057">-</tspan><tspan class="st3"
+						v:langID="2057">by</tspan></text>		</g>
+		<g id="shape1182-1004" v:mID="1182" v:groupContext="shape" transform="translate(1292.62,-665.776)">
+			<title>Rectangle.1182</title>
+			<desc>network-traffic: rhino5.gif</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="24.17" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>network-traffic:<v:newlineChar/><tspan
+						x="39.35" dy="1.2em" class="st3">rhino5.gif</tspan></text>		</g>
+		<g id="shape1183-1008" v:mID="1183" v:groupContext="shape" v:layerMember="0" transform="translate(1509.75,-598.5)">
+			<title>Dynamic connector.1183</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-109.857" cy="1548" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L-152.44 1548 L-152.44 1487.26" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-131.892" y="1543.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="-131.89" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1184-1015" v:mID="1184" v:groupContext="shape" v:layerMember="0" transform="translate(1342.12,-695.775)">
+			<title>Dynamic connector.1184</title>
+			<desc>src_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-1.125" cy="1487.78" width="40" height="17.6036"/>
+			<path d="M0 1548 L0 1468.46 L46.33 1468.46" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-13.2599" y="1482.98" width="24.2696" height="9.59985" class="st12"/>
+			<text x="-13.26" y="1490.18" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>src_ref</text>		</g>
+		<g id="shape1185-1022" v:mID="1185" v:groupContext="shape" v:layerMember="0" transform="translate(1357.31,-695.775)">
+			<title>Dynamic connector.1185</title>
+			<desc>det_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="5.86113" cy="1522.03" width="40" height="17.6036"/>
+			<path d="M0 1548 L0 1522.03 L31.15 1522.03" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-6.64867" y="1517.23" width="25.0194" height="9.59985" class="st12"/>
+			<text x="-6.65" y="1524.43" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>det_ref</text>		</g>
+		<g id="shape1186-1029" v:mID="1186" v:groupContext="shape" transform="translate(1720.12,-664.74)">
+			<title>Rectangle.1186</title>
+			<desc>file: rhino5.gif</desc>
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:val="VT0(15):26"/>
+			</v:userDefs>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="64.6875" cy="1533" width="129.38" height="29.9989"/>
+			<rect x="0" y="1518" width="129.375" height="29.9989" class="st1"/>
+			<text x="54.83" y="1529.4" class="st2" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>file:<v:newlineChar/><tspan
+						x="39.35" dy="1.2em" class="st3">rhino5.gif</tspan></text>		</g>
+		<g id="shape1187-1033" v:mID="1187" v:groupContext="shape" v:layerMember="0" transform="translate(1640.25,-598.5)">
+			<title>Dynamic connector.1187</title>
+			<desc>outputs_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="105.401" cy="1548" width="54.08" height="17.6036"/>
+			<path d="M0 1548 L144.56 1548 L144.56 1488.3" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="83.3663" y="1543.2" width="44.0697" height="9.59985" class="st12"/>
+			<text x="83.37" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>outputs_refs</text>		</g>
+		<g id="shape1188-1040" v:mID="1188" v:groupContext="shape" v:layerMember="0" transform="translate(1665,-831.478)">
+			<title>Dynamic connector.1188</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="135.563" cy="1591.25" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L102.19 1548 A3 3 0 1 1 108.19 1548 L135 1548 L135 1678.2" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="115.879" y="1586.45" width="39.367" height="9.59985" class="st12"/>
+			<text x="115.88" y="1593.65" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1189-1047" v:mID="1189" v:groupContext="shape" v:layerMember="0" transform="translate(1534.5,-831.478)">
+			<title>Dynamic connector.1189</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-209.788" cy="1548" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L-255.37 1548 L-255.37 1698.7 L-248.41 1698.7" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-229.472" y="1543.2" width="39.367" height="9.59985" class="st12"/>
+			<text x="-229.47" y="1550.4" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1190-1054" v:mID="1190" v:groupContext="shape" v:layerMember="0" transform="translate(1383.28,-970.978)">
+			<title>Dynamic connector.1190</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="389.717" cy="1591.98" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L0 1534.5 L386.9 1534.5 L386.9 1766.67 L379.94 1766.67" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="368.407" y="1587.18" width="42.6209" height="9.59985" class="st12"/>
+			<text x="368.41" y="1594.38" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1191-1061" v:mID="1191" v:groupContext="shape" v:layerMember="0" transform="translate(1383.28,-970.978)">
+			<title>Dynamic connector.1191</title>
+			<desc>targets_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="479.717" cy="1591.98" width="52.63" height="17.6036"/>
+			<path d="M0 1548 L0 1534.5 L479.72 1534.5 L479.72 1839.24 L472.76 1839.24" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="458.407" y="1587.18" width="42.6209" height="9.59985" class="st12"/>
+			<text x="458.41" y="1594.38" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>targets_refs</text>		</g>
+		<g id="shape1192-1068" v:mID="1192" v:groupContext="shape" v:layerMember="0" transform="translate(944.927,-906.545)">
+			<title>Dynamic connector.1192</title>
+			<desc>reconstructed_from_ref</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="9.81126" cy="1574.43" width="92.86" height="17.6036"/>
+			<path d="M0 1548 L17.35 1594.73" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-31.6144" y="1569.63" width="82.8512" height="9.59985" class="st12"/>
+			<text x="-31.61" y="1576.83" class="st9" v:langID="2057"><v:paragraph v:horizAlign="1"/><v:tabList/>reconstructed_from_ref</text>		</g>
+		<g id="shape1197-1075" v:mID="1197" v:groupContext="shape" v:layerMember="0" transform="translate(1086.19,-1191.91)">
+			<title>Dynamic connector.1197</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="-21.9375" cy="1433.52" width="49.38" height="17.6036"/>
+			<path d="M-8.44 1548 L-21.94 1548 L-21.94 1317.91 L-16.1 1317.91" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="-41.621" y="1428.72" width="39.367" height="9.59985" class="st12"/>
+			<text x="-41.62" y="1435.92" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="shape1198-1082" v:mID="1198" v:groupContext="shape" v:layerMember="0" transform="translate(1208.25,-1191.91)">
+			<title>Dynamic connector.1198</title>
+			<desc>object_refs</desc>
+			<v:textBlock v:margins="rect(4,4,4,4)"/>
+			<v:textRect cx="150.75" cy="1299.91" width="49.38" height="17.6036"/>
+			<path d="M0 1548 L13.5 1548 L13.5 1299.91 L171.91 1299.91 L171.91 1317.91 L218.18 1317.91" class="st11"/>
+			<rect v:rectContext="textBkgnd" x="131.066" y="1295.12" width="39.367" height="9.59985" class="st12"/>
+			<text x="131.07" y="1302.32" class="st9" v:langID="1033"><v:paragraph v:horizAlign="1"/><v:tabList/>object_refs</text>		</g>
+		<g id="group1193-1089" transform="translate(171,-1136.04)" v:mID="1193" v:groupContext="group">
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:prompt="" v:val="VT0(15):26"/>
+				<v:ud v:nameU="msvStructureType" v:prompt="" v:val="VT4(Callout)"/>
+				<v:ud v:nameU="msvSDTargetIntersection" v:prompt=""/>
+				<v:ud v:nameU="msvSDCalloutNoHighlight" v:prompt="" v:val="VT0(0):5"/>
+				<v:ud v:nameU="msvShapeCategories" v:prompt="" v:val="VT0(0):26"/>
+				<v:ud v:nameU="Side" v:prompt="" v:val="VT0(4):26"/>
+				<v:ud v:nameU="LeaderEnd" v:prompt="" v:val="VT7(PNT(0.25,-0.25)):40"/>
+				<v:ud v:nameU="WHBoxIntersection" v:prompt="" v:val="VT7(PNT(0.40384615384615,0)):40"/>
+				<v:ud v:nameU="FoldSize" v:prompt="" v:val="VT0(0.125):0"/>
+				<v:ud v:nameU="msvSDTargetIntersection" v:prompt="" v:val="VT7(PNT(2.7187501840293,-0.47159750332817)):40"/>
+				<v:ud v:nameU="Side" v:prompt="" v:val="VT0(1):26"/>
+				<v:ud v:nameU="LeaderEnd" v:prompt="" v:val="VT7(PNT(2.7187501840293,-0.47159750332817)):40"/>
+				<v:ud v:nameU="WHBoxIntersection" v:prompt="" v:val="VT7(PNT(1.2500000707805,0)):40"/>
+			</v:userDefs>
+			<title>Note.1193</title>
+			<desc>[file:extensions:status=&#39;recovered&#39; and file:extensions:conte...</desc>
+			<g id="shape1193-1090" v:mID="1193" v:groupContext="groupContent">
+				<v:textBlock v:margins="rect(4,4,4,4)"/>
+				<v:textRect cx="45" cy="1500.75" width="90.01" height="94.4043"/>
+				<path d="M0 1548 L90 1548 L90 1462.5 L81 1453.5 L0 1453.5 L0 1548 Z" class="st18"/>
+				<path d="M90 1548 L195.75 1581.96" class="st19"/>
+				<path d="M0 1548 L90 1548 L90 1462.5 L81 1453.5 L0 1453.5 L0 1548" class="st19"/>
+				<text x="4" y="1468.35" class="st20" v:langID="2057"><v:paragraph/><v:tabList/>[file:extensions<tspan x="4"
+							dy="1.2em" class="st3">:status=&#39;recove</tspan><tspan x="4" dy="1.2em" class="st3">red&#39; and </tspan><tspan
+							x="4" dy="1.2em" class="st3">file:extensions:</tspan><tspan x="4" dy="1.2em" class="st3">content_tags[0</tspan><tspan
+							x="4" dy="1.2em" class="st3">]=&#39;rhino&#39;]</tspan></text>			</g>
+			<g id="shape1194-1100" v:mID="1194" v:groupContext="shape" transform="translate(81,-85.5)">
+				<title>Sheet.1194</title>
+				<v:userDefs>
+					<v:ud v:nameU="FoldSize" v:prompt="" v:val="VT0(0.125):0"/>
+				</v:userDefs>
+				<path d="M0 1548 L9 1548 L9 1548.9 L9 1548 L0 1539 L-0.9 1539 L0 1539 L0 1548 Z" class="st21"/>
+			</g>
+		</g>
+		<g id="group1195-1102" transform="translate(1509.77,-1026)" v:mID="1195" v:groupContext="group">
+			<v:userDefs>
+				<v:ud v:nameU="visVersion" v:prompt="" v:val="VT0(15):26"/>
+				<v:ud v:nameU="msvStructureType" v:prompt="" v:val="VT4(Callout)"/>
+				<v:ud v:nameU="msvSDTargetIntersection" v:prompt=""/>
+				<v:ud v:nameU="msvSDCalloutNoHighlight" v:prompt="" v:val="VT0(0):5"/>
+				<v:ud v:nameU="msvShapeCategories" v:prompt="" v:val="VT0(0):26"/>
+				<v:ud v:nameU="Side" v:prompt="" v:val="VT0(4):26"/>
+				<v:ud v:nameU="LeaderEnd" v:prompt="" v:val="VT7(PNT(0.25,-0.25)):40"/>
+				<v:ud v:nameU="WHBoxIntersection" v:prompt="" v:val="VT7(PNT(0.40384615384615,0)):40"/>
+				<v:ud v:nameU="FoldSize" v:prompt="" v:val="VT0(0.125):0"/>
+				<v:ud v:nameU="msvSDTargetIntersection" v:prompt="" v:val="VT7(PNT(-4.1877610756132,0.99225442329323)):40"/>
+				<v:ud v:nameU="Side" v:prompt="" v:val="VT0(3):26"/>
+				<v:ud v:nameU="LeaderEnd" v:prompt="" v:val="VT7(PNT(-4.1877610756132,0.99225442329323)):40"/>
+				<v:ud v:nameU="WHBoxIntersection" v:prompt="" v:val="VT7(PNT(0,0.85347761122036)):40"/>
+			</v:userDefs>
+			<title>Note.1195</title>
+			<desc>//&#34;jphide tool used for hidding images&#34;+&#34;two passwords found&#34;...</desc>
+			<g id="shape1195-1103" v:mID="1195" v:groupContext="groupContent">
+				<v:textBlock v:margins="rect(4,4,4,4)"/>
+				<v:textRect cx="156.928" cy="1491.75" width="313.86" height="108.804"/>
+				<path d="M0 1548 L313.86 1548 L313.86 1444.5 L304.86 1435.5 L0 1435.5 L0 1548 Z" class="st18"/>
+				<path d="M0 1486.55 L-301.52 1476.56" class="st19"/>
+				<path d="M0 1548 L313.86 1548 L313.86 1444.5 L304.86 1435.5 L0 1435.5 L0 1548" class="st19"/>
+				<text x="4" y="1452.15" class="st20" v:langID="2057"><v:paragraph/><v:tabList/>//&#34;jphide tool used for hidding images&#34;+&#34;two passwords <tspan
+							x="4" dy="1.2em" class="st3">found&#34; + &#34;two jpgs are decoded from other images&#34;<v:lf/><v:newlineChar/></tspan><tspan
+							x="4" dy="2.4em" class="st3">[artifact:payload_bin MATCHES &#39;anBoaWRl&#39; and  </tspan><tspan x="4"
+							dy="1.2em" class="st3">file:extensions:status=&#39;decoded&#39; and exists artifact</tspan>--<tspan
+							x="4" dy="1.2em" class="st3">01b778f5</tspan>-e334-52a5-a49d-f9b2de330be9 and exists <tspan x="4"
+							dy="1.2em" class="st3">artifact</tspan>--5bb67aa9-d849-465d-a433-114063836965]</text>			</g>
+			<g id="shape1196-1113" v:mID="1196" v:groupContext="shape" transform="translate(304.856,-103.5)">
+				<title>Sheet.1196</title>
+				<v:userDefs>
+					<v:ud v:nameU="FoldSize" v:prompt="" v:val="VT0(0.125):0"/>
+				</v:userDefs>
+				<path d="M0 1548 L9 1548 L9 1548.9 L9 1548 L0 1539 L-0.9 1539 L0 1539 L0 1548 Z" class="st21"/>
+			</g>
+		</g>
+	</g>
+</svg>
diff --git a/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.vsdx b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.vsdx
index 4313942..84e7529 100644
Binary files a/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.vsdx and b/STIX_for_digital_forensics/Illegal_Possession_Images/illegal_possession_image.vsdx differ
diff --git a/STIX_for_digital_forensics/readme.md b/STIX_for_digital_forensics/readme.md
index bdf1b71..b3330dd 100644
--- a/STIX_for_digital_forensics/readme.md
+++ b/STIX_for_digital_forensics/readme.md
@@ -416,14 +416,14 @@ A Timeline object describes a specific cybercrime case that is represented by a
 
 ## Timeline Specific Properties
 
-| Property Name      | Type                  | Description                                                            |
-| ------------------ | --------------------- | ---------------------------------------------------------------------- |
-| type (required)    | string                | The value of this property MUST be x-timeline.                         |
-| action_refs        | list of type x-action | Specifies a list of actions in chronological order.                    |
-| name               | string                | Specifies the name of a timeline.                                      |
-| description        | string                | A description that provides more details and context about a timeline. |
-| reconstructed_from | identifier            | Specifies timeline is reconstructed from a crime case.                 |
-| reconstructed_by   | identifier            | Specifies timeline is reconstructed by an investigator.                |
+| Property Name          | Type                  | Description                                                            |
+| ---------------------- | --------------------- | ---------------------------------------------------------------------- |
+| type (required)        | string                | The value of this property MUST be x-timeline.                         |
+| action_refs            | list of type x-action | Specifies a list of actions in chronological order.                    |
+| name                   | string                | Specifies the name of a timeline.                                      |
+| description            | string                | A description that provides more details and context about a timeline. |
+| reconstructed_from_ref | identifier            | Specifies timeline is reconstructed from a crime case.                 |
+| reconstructed_by_ref   | identifier            | Specifies timeline is reconstructed by an investigator.                |
 
 ### Relationships
 
@@ -445,7 +445,7 @@ A Timeline object describes a specific cybercrime case that is represented by a
       "x-action--6ba0fce7-1ff9-44a4-9fbb-28760afc7827",
       "x-action--83aee86d-1523-4111-938e-8edc8a6c804f"
     ],
-    "reconstructed_from": "x-crime-case--49aadd9f-8bb0-4728-bd56-7bc708714516",
+    "reconstructed_from_ref": "x-crime-case--49aadd9f-8bb0-4728-bd56-7bc708714516",
     "exploits": "user-account-2485b844-4efe-4343-84c8-eb33312dd56f",
     "created_by_ref": "identity--f431f809-377b-45e0-aa1c-6a4751cae5ff",
     "created": "2021-04-06T20:03:00.000Z",