← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
CAPE Sandbox
WHITE msudosos 2026-03-30 Modified: 2026-03-30
73
IOCs
HIGH VOLUME
A complete report on the vulnerability of the Windows operating system (KVM) from 2026-03-30, as compiled by the University of South Africa's Institute of Advanced Technology (IAS).
cnamedefaultshell foldersfoldersacceptgmt ifnonematchcape sandboxt1055t1542event providershutdownnull
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (73)
All IPv4 FileHash-MD5 FileHash-SHA1 FileHash-SHA256 hostname URL domain
TYPEINDICATORDESCRIPTIONCREATED
IPv4 168.61.215.74 CC=US ASN=AS8075 microsoft corporation 2026-03-30
FileHash-MD5 c5cd1d6b319bb5964db81cdf6770cb3c 2026-03-30
FileHash-SHA1 0775c8b22ee95caa0735db20d4b126217eb8ba24 2026-03-30
FileHash-SHA256 95b147e24e2c257630b7442d56a78c4952c1fdec9acc3f32139e4737c13585d4 2026-03-30
IPv4 135.232.92.137 CC=US ASN=AS10455 nokia of america corporation 2026-03-30
IPv4 150.171.27.12 CC=US ASN=AS8075 microsoft corporation 2026-03-30
IPv4 150.171.28.12 CC=US ASN=AS8075 microsoft corporation 2026-03-30
IPv4 23.204.165.196 CC=US ASN=AS16625 akamai technologies inc. 2026-03-30
IPv4 52.167.249.196 CC=US ASN=AS8075 microsoft corporation 2026-03-30
IPv4 74.178.240.51 CC=US ASN=AS8075 microsoft corporation 2026-03-30
IPv4 74.178.240.61 CC=US ASN=AS8075 microsoft corporation 2026-03-30
hostname api-msn-com.ax-0003.ax-msedge.net 2026-03-30
hostname ax-0003.ax-msedge.net 2026-03-30
hostname window.location.host 2026-03-30
IPv4 199.232.210.172 2026-03-30
IPv4 199.232.214.172 2026-03-30
IPv4 204.79.197.203 2026-03-30
IPv4 23.11.33.159 2026-03-30
IPv4 23.39.149.115 2026-03-30
URL http://131.107.255.255 2026-03-30
URL http://disallowedcertstl.cab?5919263ad7bf9b17 2026-03-30
URL http://disallowedcertstl.cab?e49f31ce9ab9a68b 2026-03-30
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?5919263ad7bf9b17 2026-03-30
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?e49f31ce9ab9a68b 2026-03-30
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?698acb09c915b515 2026-03-30
URL http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAsMayxGaRewR3PGR9SvwMg%3D 2026-03-30
URL http://oneocsp.microsoft.com/ocsp/MFQwUjBQME4wTDAJBgUrDgMCGgUABBR0TBEVYklX7A9yLoLD9hqmCWDxFgQU3pGGSLehMVkx8UtfB6nciHnaqHYCEzMAAAAPMyBlN%2B5Crk8AAAAAAA8%3D 2026-03-30
URL https://ton.local.twitter.com/responsive-web-internal/sourcemaps/client-web/bundle.Logout.57d80aaa.js.map 2026-03-30
URL https://twitter.com 2026-03-30
URL http://pinrulesstl.cab?698acb09c915b515 2026-03-30
domain c.mh 2026-03-30
domain disallowedcertstl.cab 2026-03-30
domain e.id 2026-03-30
domain m.mh 2026-03-30
domain pinrulesstl.cab 2026-03-30
domain t.map 2026-03-30
hostname a-0003.a-msedge.net 2026-03-30
hostname api-msn-com-oneservice-world-default.trafficmanager.net 2026-03-30
hostname api.msn.com 2026-03-30
hostname atm-settingsfe-prod-geo2.trafficmanager.net 2026-03-30
hostname bg.microsoft.map.fastly.net 2026-03-30
hostname bundle.logout.57d80aaa.js.map 2026-03-30
hostname cdn.onenote.net 2026-03-30
hostname cdn.onenote.net.edgekey.net 2026-03-30
hostname cdp1.digicert.com.akamaized.net 2026-03-30
hostname cdp1.digicert.com.eip.akadns.net 2026-03-30
hostname cdp1.digicert.com.splitter-eip.akadns.net 2026-03-30
hostname ctldl.windowsupdate.com 2026-03-30
hostname ctldl.windowsupdate.com.delivery.microsoft.com 2026-03-30
hostname dns.msftncsi.com 2026-03-30
hostname e1553.dspg.akamaiedge.net 2026-03-30
hostname e16604.dscf.akamaiedge.net 2026-03-30
hostname eip-terr-na.cdp1.digicert.com.akahost.net 2026-03-30
hostname fe3.delivery.mp.microsoft.com 2026-03-30
hostname fe3cr.delivery.mp.microsoft.com 2026-03-30
hostname fs-wildcard.microsoft.com.edgekey.net 2026-03-30
hostname fs-wildcard.microsoft.com.edgekey.net.globalredir.akadns.net 2026-03-30
hostname fs.microsoft.com 2026-03-30
hostname glb.cws.prod.dcat.dsp.trafficmanager.net 2026-03-30
hostname glb.sls.prod.dcat.dsp.trafficmanager.net 2026-03-30
hostname ocsp.digicert.com 2026-03-30
hostname ocsp.edge.digicert.com 2026-03-30
hostname oneocsp-microsoft-com.a-0003.a-msedge.net 2026-03-30
hostname oneocsp.microsoft.com 2026-03-30
hostname prod.fs.microsoft.com.akadns.net 2026-03-30
hostname settings-prod-eus2-1.eastus2.cloudapp.azure.com 2026-03-30
hostname settings-win.data.microsoft.com 2026-03-30
hostname sls.update.microsoft.com 2026-03-30
hostname slscr.update.microsoft.com 2026-03-30
hostname time.windows.com 2026-03-30
hostname ton.local.twitter.com 2026-03-30
hostname twc.trafficmanager.net 2026-03-30
hostname wu-b-net.trafficmanager.net 2026-03-30
References (1)
↗ https://vtbehaviour.commondatastorage.googleapis.com/95b147e24e2c257630b7442d56a78c4952c1fdec9acc3f32139e4737c13585d4_CAPE%20Sandbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1774855054&Signature=s5i81U%2Fn65bVBpy%2Fe95NOfjp0APBBBP5eSgA%2F2bOmgMHEtULOZVr8ISmPX0BsRy9Xp5%2FTIDKOfbSP2UtgDSpw0OuzZij2BHf5zEiNTAMrere4NhBdwLSycfach22m7%2FBEYPPZRifwceqA3BDjB7UujjU%2BPpK2%2FJ0%2B37oEuURlO0pk6ulYrfU%2FQyKEOXUgLi0lCRCk%2FvWcZ8M%2BI9dOBlWohDwbcLLWlrA%2Fh%2FM