DBAPPSecurity analyzed APT37 activity using North Korea related political themes to target South Korean users and researchers. The samples used compressed archives with Korean political lure documents, including commentary on anti state forces and other inter Korean affairs, while the core trojan changed little from earlier activity. The report says APT37 adjusted lure content and loading methods rather than rebuilding its malware, and increased archive size to reduce detection. The campaign fits APT37's long running focus on South Korean public and private sector targets and may benefit from heightened public attention to worsening North Korea and South Korea relations.