← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
CAPE Sandbox
WHITE msudosos 2026-04-06 Modified: 2026-04-06
633
IOCs
HIGH VOLUME
spyware
renewed8gbramwindows1019inlcdmonitordesktop pcpackageintel corehard drivedvdrwwifititleblinkdatemetaelitebody
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (75 / 633 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 IPv4 URL hostname domain
TYPEINDICATORDESCRIPTIONCREATED
URL http://4.0.0.0 2026-04-06
URL http://131.107.255.255 2026-04-06
URL http://3.0.0.0 2026-04-06
URL http://disallowedcertstl.cab?334796fc8dbb6308 2026-04-06
URL http://disallowedcertstl.cab?464a2e3687c2c948 2026-04-06
URL http://disallowedcertstl.cab?dbe866b1519e3e14 2026-04-06
URL http://c.pki.goog/r/r1.crl 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?334796fc8dbb6308 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?464a2e3687c2c948 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?dbe866b1519e3e14 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?18fde52f5255bb2b 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?80947d51763d2a0e 2026-04-06
URL http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?c179616674105c7c 2026-04-06
URL http://o.pki.goog/wr2/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRTQtSEi8EX%2BbYUTXd8%2ByMxD3s1zQQU3hse7XkV1D43JMMhu%2Bw0OW1CsjACEH5NVLCVH6KfCdIHlLPkrOs%3D 2026-04-06
URL http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAsMayxGaRewR3PGR9SvwMg%3D 2026-04-06
URL http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBQ50otx%2Fh0Ztl%2Bz8SiPI7wEWVxDlQQUTiJUIBiV5uNu5g%2F6%2BrkS7QYXjzkCEAz1vQYrVgL0erhQLCPM8GY%3D 2026-04-06
URL http://ocsp.pki.goog/gsr1/MFEwTzBNMEswSTAJBgUrDgMCGgUABBS3V7W2nAf4FiMTjpDJKg6%2BMgGqMQQUYHtmGkUNl8qJUC99BM00qP%2F8%2FUsCEHe9DWzbNvka6iEPxPBY0w0%3D 2026-04-06
URL http://oneocsp.microsoft.com/ocsp/MFQwUjBQME4wTDAJBgUrDgMCGgUABBR0TBEVYklX7A9yLoLD9hqmCWDxFgQU3pGGSLehMVkx8UtfB6nciHnaqHYCEzMAAAAPMyBlN%2B5Crk8AAAAAAA8%3D 2026-04-06
URL http://schema.org/SearchRes= 2026-04-06
URL https://api.office.net 2026-04-06
URL https://hubblecontent.osi.office.net/ 2026-04-06
URL https://hubblecontent.osi.office.net/contentsvc/api/telemetry 2026-04-06
URL https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=icons&premium=1 2026-04-06
URL https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockimages&premium=1 2026-04-06
URL https://hubblecontent.osi.office.net/contentsvc/microsoftcontent?initpivot=stockvideos&premium=1 2026-04-06
URL https://hubblecontent.osi.office.net/contentsvc/microsofticon 2026-04-06
URL https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Bing 2026-04-06
URL https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=ClipArt 2026-04-06
URL https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Facebook 2026-04-06
URL https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Flickr 2026-04-06
URL https://insertmedia.bing.office.net/odc/insertmedia 2026-04-06
URL https://login.windows.net/common/oauth2/authorize 2026-04-06
URL https://o15.officeredir.microsoft.com/r 2026-04-06
URL https://ocsa.office.microsoft.com/client/15/help/clvupd 2026-04-06
URL https://ocsa.office.microsoft.com/client/15/help/template 2026-04-06
URL https://onedrive.live.com 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/docs/recent 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/docs/sharedwithme 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/docs/v2.0/sharedwithme 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/locations/recent 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/quickaccess/sitesandteams 2026-04-06
URL https://recent.svc.cloud.microsoft/ocs/v2/recent 2026-04-06
URL https://storage.live.com/clientlogs/uploadlocation 2026-04-06
URL https://support.microsoft.com/ems/clients/inapp 2026-04-06
URL https://support.office.microsoft.com/client/results 2026-04-06
URL https://word-edit.officeapps.live.com/we/rrdiscovery.ashx 2026-04-06
URL https://www.google.com/search?sca_esv=0eb31da26cb18a46&sca_upv=1&rlz=1CAJCUZ_enUS933&sxsrf=ACQVn083IsC5bSH3cBL2QDlnaKhaCF1cIQ:1711601727808&q=HP+Elite+7900+Desktop+PC+Package 2026-04-06
URL https://www.gstatic.com/og/_/ss/k=3Dog.qtm.KRY3GSse2XM.L.W.O/m= 2026-04-06
URL http://pinrulesstl.cab?18fde52f5255bb2b 2026-04-06
URL http://pinrulesstl.cab?80947d51763d2a0e 2026-04-06
URL http://pinrulesstl.cab?c179616674105c7c 2026-04-06
URL http://17.248.195.64:80 2026-04-06
URL http://17.248.195.66:80 2026-04-06
URL http://7b1.data.data/ 2026-04-06
URL http://ce2.data.data 2026-04-06
URL http://data.data.data/ 2026-04-06
URL http://eth.data.data/ 2026-04-06
URL http://file.data.data/ 2026-04-06
URL http://geometric.data.data/ 2026-04-06
URL http://packet.data.data.data/ 2026-04-06
URL http://pkt.data.data/ 2026-04-06
URL http://request.env.data.data/ 2026-04-06
URL http://res.data.data/ 2026-04-06
URL http://response.data.data/ 2026-04-06
URL http://safetx.data.data/ 2026-04-06
URL http://se.data.data/ 2026-04-06
URL http://sig.data.data/ 2026-04-06
URL http://system.data.data/ 2026-04-06
URL http://torch_geometric.data.data.data 2026-04-06
URL http://torch_geometric.data.data.data/ 2026-04-06
URL https://ce2.data.data 2026-04-06
URL https://torch_geometric.data.data.data 2026-04-06
URL http://client.sh 2026-04-06
URL http://a.data.data/?%28this.basic_content_home=a.data.data%2Cthis.botonesAct%3D%210%29%3Athis.basic_content_home%3Da.data%2Cnull%21%3Dthis.basic_content_home._links&&null%21=this.basic_content_home._links.image&%28this.basic_content_home.image_click=this.domain+this.basic_content_home._links.image.href+%22%2Ffit%22%29%3Btry 2026-04-06
URL http://a.data.data/?(this.basic_content_home=a.data.data%2Cthis.botonesAct%3D!0)%3Athis.basic_content_home%3Da.data%2Cnull!%3Dthis.basic_content_home._links&&null!=this.basic_content_home._links.image&(this.basic_content_home.image_click=this.domain+this.basic_content_home._links.image.href+"/fit")%3Btry 2026-04-06
References (2)
↗ https://vtbehaviour.commondatastorage.googleapis.com/2533042959ad1fe050d14ab7536126910a2d240992bff397640382472b6a7c69_CAPE%20Sandbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1775472287&Signature=rw%2BkzkQKY5M41fqBOOPOnF5nUXqseptUkZPX0VOkL5lmxzWIcqVfQFKQGRNKIzZOE90PJOiV7ZneTdKShjcZbrGhVubS6ms3aA16QMDcjwhN1ydkTmSwfmIuEhyWnqyPR28n7DU3JQ%2FKuYgCjUFaromvhWGfhh%2B5YArNd6sFv7Yrw9YwYZ644Ob%2F3hzdlY8JqqRt592k16rV%2F50Q3%2BaL%2Bs9LjV6%2BTJMwLFmQMSBYr4s2l1 ↗ https://vtbehaviour.commondatastorage.googleapis.com/2533042959ad1fe050d14ab7536126910a2d240992bff397640382472b6a7c69_CAPE%20Sandbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1775472412&Signature=QcBCZcKyHYxWwhSWOKX7apvx3%2BT3Bjzt3y1Xx2vTLrR768KeDlg7sY1Be5YVVKRCCT3rWlV9n36IfmZpQ0siFg%2BaS8Lw3STmcyFUw%2FF28Uar%2BVuRm1sKdVq24l7lGhYyAteWJqAIe8VHgUtUXBMOAcr4lzsj7YA%2BoYqiuspu%2BRgoCYoVEA55ujOTpbSulxwZ%2FgVUmIhSzlosNjBP1lSIEUOLWG%2BUC3yYSMS%2Bg4nxp9PO