← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
CAPE Sandbox- Very Evasive and Aggressive 'bot?'.......
WHITE msudosos 2026-04-15 Modified: 2026-05-15
561
IOCs
HIGH VOLUME
A full report on the Microsoft Office malware, published on 3 February 2026, has been published online by the University of California, Los Angeles, and the National Security Agency (NSA) in New York.> This is malicious.
settingsfirst counterdefaulttoolspanosemwdbbazaarsha3384ssdeepfile sizembisslshortacceptbridgeinfodatelightagentshutdownrootperforms dnsextra infoattack networkinfo droppedinfo processeszenbox verdictguest systemultimate fileinfo fileascii textmaliciousnextmitre attacknetwork infoprocesses extraoverviewoverview zenboxverdictunknown
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (49 / 561 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL hostname email domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 003c6d9c77211a9d27df1ff6fb6245a8dde81c6c6fed71e8c75e2ee5ce223e86 2026-04-15
FileHash-SHA256 0a4d7e4860afac36c43f2e5272678b7e267b46618ab46a596dd28dbc4c5915e3 2026-04-15
FileHash-SHA256 16a19763520bc5acfa82af2e5e88c3392483d7fc79726e0f774fb6b737a4042f 2026-04-15
FileHash-SHA256 22aa981f10e839fbf2c5c3a8f3de7caa2f9c3add7af4750420fd2b1a05be1709 SHA256 of 6c865cb3a2b51a3ef44235986b25dd541563bace 2026-04-15
FileHash-SHA256 24d6742653761510338bb242f67a627d03a7ccf98f0ab8d21292034f9bb3bd34 2026-04-15
FileHash-SHA256 378d9c79391eaefd42d0eb98f60b4c59252becf9c488e68824fc287e70389648 2026-04-15
FileHash-SHA256 452acbf807a408b767ad4318d01e17053499521dc201aa502e47950726872c83 2026-04-15
FileHash-SHA256 48e537902c03a3eee4790fc97ee072cddc7c1a90122702dd18243d8c12a0d99a SHA256 of ceccd0cff2dd12aede7de14457d15d00687165bb 2026-04-15
FileHash-SHA256 4d21bebf31c3c8238097c786f31663b7dca9c61ca4ddb11cf6b0d76aefdd051d 2026-04-15
FileHash-SHA256 51e368e840cb6fe7bf8111e50a800acf8c37c5035f37d8738160b6216068b1ec 2026-04-15
FileHash-SHA256 59bad7a67e750f80032f33b086542eda8e25024c75fb3e61c594a697ea980504 2026-04-15
FileHash-SHA256 61aee88809afcc6f0146e4290163bc92947accf3a5361b04983930a028d8956d 2026-04-15
FileHash-SHA256 6c1b1e6b7a1f5a9499a3f7c66939b933d89efd7bff818255f57cd182c7474650 2026-04-15
FileHash-SHA256 75e413212614854f8fe3b67418b0047728aaadd19b2aae0a6df0501c1bb22f2c 2026-04-15
FileHash-SHA256 7dfd9f131494d23952f4428b9a6d20f358910796729c7ac4815f76a14b3c643e 2026-04-15
FileHash-SHA256 7eacfaeff5ebb7f3e3bbcfbc297035050b5f42a333c76116c6d1844b7103498d 2026-04-15
FileHash-SHA256 801d98da622d18b1d51461ffdd839939b68ee70417101836de11540c55f66926 2026-04-15
FileHash-SHA256 80bfb3c50c8d3b5d0cc4b631b65310944bfd33f6650a53b6d58d8f111f721f05 2026-04-15
FileHash-SHA256 88d904cb0a4762f5451bf33cbfd6903ad20d621f5006374828cfda8b877969f2 2026-04-15
FileHash-SHA256 8b064ebb257b55ee09b619b791475058b4d9d2b90907ec727e70235e5b25b730 2026-04-15
FileHash-SHA256 933b971c6388d594a23fa1559825db5bec8ade2db1240aa8fc9d0c684949e8c9 SHA256 of f6d0c643351580307b2eaa6a7560e76965496bc7 2026-04-15
FileHash-SHA256 97da3c982874ec87dcba39e8ae9e8c8df8acd4e06f360a8a4179b82fa0014346 2026-04-15
FileHash-SHA256 a48c02fd36302685b5fbb3691db0fb2c4aca77c0b3b1df9aa7ec6f154affa0a8 2026-04-15
FileHash-SHA256 b4ecf6fe5302ee845c784a6cc3e61ce75fdbf6163a0fe9f1caa782a67797375f 2026-04-15
FileHash-SHA256 c6dd2fe4fda48f78f11ea2e981ca918c1a2b0814d4e45f7b0d3e099a80966fc2 2026-04-15
FileHash-SHA256 cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f SHA256 of df3c24f9bfd666761b268073fe06d1cc8d4f82a4 2026-04-15
FileHash-SHA256 cf09fefd7d5839ee0c23e237b4b386a67868646070f7c9545f74c6c7d8259fc2 2026-04-15
FileHash-SHA256 d1614ad99aded9f6f5c1be7fe7ffa5124bd04a526580da3818ea8a954e852aa6 2026-04-15
FileHash-SHA256 d92c586b0e960b78c16fcf6ca2d23874c3db58a3a93f15a4f64b29934817f8a2 2026-04-15
FileHash-SHA256 de0d386738a98fa396985a30ec05ab6e536cc540e931acbdedf67e48891f56dd 2026-04-15
FileHash-SHA256 de925e8b962f61093114355b15bfeeebca88b848901ff3b8f546e5c038d82c7d 2026-04-15
FileHash-SHA256 dfbde381fde1a284c81a72d06a1a43faf49cd1c085c87234e34e50b881567806 SHA256 of 936b54a457c3c556f9450b145fe8c2c37e39edb2 2026-04-15
FileHash-SHA256 e11eb59cf535da90ef6617ac9256138659a8420b47afbe8749a8076fbdcd29bc 2026-04-15
FileHash-SHA256 ea59b1c92e2c62c5f9472d3a6ed2fcfa16b204acb6e1c093c3bff915c65c1f37 2026-04-15
FileHash-SHA256 ee9e288c3495fd548fd49095be08807f215fc0780064e179011098c0c7461a34 SHA256 of a30f0cf0161addbdd3b04b482fef651ee4eae322 2026-04-15
FileHash-SHA256 effbef3fa8a63a1e83c1e1781d50f5a2c9982f8af54287495ee17c8ed58fe9b1 2026-04-15
FileHash-SHA256 ff486e38d3ae9caa673dad747b086f3cc9267ef8c33259b4c86cdf830fb08795 2026-04-15
FileHash-SHA256 7ee979e976acf8f47699717010a1a0259a991b62d6690571d8b68dd16b294b2b 2026-04-15
FileHash-SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 2026-04-15
FileHash-SHA256 930fd5e980c675c0eeb55d1c3c4b462dae4e9add472228ef9d9d3941d8603c48 2026-04-15
FileHash-SHA256 18f57d380d4a03e6f1c333b5e011fae6f61fe9e4a126fa69cd4dbc84fd1f482f 2026-04-15
FileHash-SHA256 98c2acc9658da65df60b7e12593be2242f117950faa524ea7637fded6b8a95c4 2026-04-15
FileHash-SHA256 a0a839933f0284e3caa56a1d4867a48fe83e531bd76f030897918fa2c16d2694 2026-04-15
FileHash-SHA256 b2372ca39330b0940e437417b0c877baea7c175c9d9307a7c1cf08159e70817f 2026-04-15
FileHash-SHA256 fd59a74bb790d947570755df45fa22319fa689b4b40be7bb8152c65e5fc6e298 2026-04-15
FileHash-SHA256 9e2605523c643763d3a063036511dfd0a6de00a157ec441e25a2519ca4bb4161 2026-04-15
FileHash-SHA256 fe4ff0a2b02961ac2aac3ef8ae0c6d00966ccfcf98d82aeab8c7e5ea626bff18 2026-04-15
FileHash-SHA256 6b5562ddbdde932fbaa91120ae4d25aa3cf7fa8983ce04d108cbc4fd87887f5a 2026-04-15
FileHash-SHA256 7d34a14ece41f01463f4561222849ff4bd91320f46c452c1aa247e34845c5365 2026-04-15
References (4)
↗ https://vtbehaviour.commondatastorage.googleapis.com/930fd5e980c675c0eeb55d1c3c4b462dae4e9add472228ef9d9d3941d8603c48_CAPE%20Sandbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1776246714&Signature=jA8ZNQzdLZfCMA%2BeZdzBjB3xA0B7xKtgmBMmVGhpCsbkEU53LPuuNVLyugFpe7diOUDoR55j7HbDl9qcOHkMPamkpv3i44NiD46yJbU4LSQkaP1qPkrF0YTWKn4PkEnuUYIAEr6z6J76c33VYseiQzUFAb%2F2EmiSrP2P0B%2BTV3lvRclFr%2FAxEVTCCZcmWffeMujO3jhC9czl3rYy9DQH1v23x4tcX0%2BcVcRjvTPUjfACcx8trhtm ↗ https://vtbehaviour.commondatastorage.googleapis.com/7ee979e976acf8f47699717010a1a0259a991b62d6690571d8b68dd16b294b2b_Zenbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1776246777&Signature=yNFSBGy%2Bm8tg5Sl9XzqsISl5kfgoB4%2Fnf%2FJn6WTRwmAZFUp51dt85ONZCzDMwEPqIoiUXlYybE4s09saW5RxfASOPh2spHs6dyCMsXnDPX%2Bk97XShYdomVvaBJsmRZDzDF1inptzQCRTtdDSe9IeE0ZE0Sr7AlXrkR1sVf151d4nyK3gdcwxaojAALetWrh%2Fx%2BjcpJYEo7D5hlba1zTfWJ57CQVjWvixx1vFyzw%2B8s59JIuuvTK25JI2 ↗ https://vtbehaviour.commondatastorage.googleapis.com/930fd5e980c675c0eeb55d1c3c4b462dae4e9add472228ef9d9d3941d8603c48_Zenbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1776246967&Signature=Ir5y9DGvGgNLFUDY8U6XR53N35ujwlwfUYKT1GK9MfB1XTAtJk8qVigh7fO1EPVnJQP%2BkVNsUCkx1JjW9L03u0PfThYXwIBYbjulP7glaB%2BqBIqGVjsKq%2BlOwN0MLlSG408dZWbdUekl6p8wKR8L4Y1wXpN5UU%2F6gKv2dm9WFA9aHsBZd3K33gYAJ0cjsJEz%2BY4WITcbYvW0eJDyk7JGmMa1c4VaL6Wqud26xKwdeyOExz3D472vYkEAROfQ ↗ https://vtbehaviour.commondatastorage.googleapis.com/930fd5e980c675c0eeb55d1c3c4b462dae4e9add472228ef9d9d3941d8603c48_CAPE%20Sandbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1776246921&Signature=X1jzLW3418s%2FQ18Krko%2B307kskS6d2hv1BEZN918A03%2BgNR7LtEHC48e5%2F3mRCz0n3H1wrLvbc3pB9GFSEcPI1iYWIN2YZa8TRUv8pk%2BTsrfc0GlUPG1JwElP67v80tNQVAvFXYkI00vaXUyTEIAWltRkZnJCH1iOD%2BnGOcmzDsQ28fJBY6ZXAoee8pz1CL%2B95j7wn8%2FdET4YQdhduJj0x3M%2BM5oon%2FgzuHLI70rvQ