{ "type": "bundle", "id": "bundle--58240f48-98d4-4ee0-9ee7-768f77bb1dc0", "objects": [ { "type": "identity", "spec_version": "2.1", "id": "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7", "created": "2023-03-08T12:51:43.404685Z", "modified": "2024-08-31T04:09:59.408166Z", "name": "Microsoft", "identity_class": "organization" }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--26591eeb-7c6f-4f90-82df-c00a759de675", "value": "147.124.202.208" }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--f35de203-ef9d-4e91-b1d9-79a762d146d5", "value": "163.245.194.216" }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--ce0df1f2-17ad-491d-98fc-42de51998906", "value": "66.235.168.136" }, { "type": "ipv4-addr", "spec_version": "2.1", "id": "ipv4-addr--3c508568-d8f4-42c9-9eb3-b07b70bc9500", "value": "87.236.177.9" }, { "type": "domain-name", "spec_version": "2.1", "id": "domain-name--4419d2ab-2479-4718-a9e5-0d3e6bf6ddcf", "value": "api.ipify.org" }, { "type": "file", "spec_version": "2.1", "id": "file--b6454a18-5c5e-4e11-afee-b4e13ab8c6ba", "hashes": { "SHA-256": "13152dcb3be425e1ce0f085cd733121a4665cf9935cf8867738e3d510a80308a" } }, { "type": "file", "spec_version": "2.1", "id": "file--4484e978-1794-4271-af1a-42a9daaa75d3", "hashes": { "SHA-256": "449e2bf57ab4790427a3a7de3d98b6c540e76190a3d844de2f0e7b66be842b19" } }, { "type": "file", "spec_version": "2.1", "id": "file--5a49a9b6-b80b-40a7-9f85-75f32e9e0b07", "hashes": { "SHA-256": "e4d71aa95be0725c351e9d1d273d35ccdb0a8bdb31a57927c8738431b89788f5" } }, { "type": "file", "spec_version": "2.1", "id": "file--3527d926-b78c-47a4-a4ca-0621718e8118", "hashes": { "SHA-256": "ddd43e493cb333c1cc5d7cd50a6a5a61ecd89cfa5f4076f62c2adf96748b87f8" } }, { "type": "file", "spec_version": "2.1", "id": "file--e5fd0ac1-0999-495c-b8c7-752e1ed96187", "hashes": { "SHA-1": "9ab4045654a6d97762f9ae8bb97d4ecf67fa53ab" } }, { "type": "file", "spec_version": "2.1", "id": "file--93ef607c-545c-4c05-a905-bbd7c926fe67", "hashes": { "SHA-256": "6d59740d0710da370d5c38ddf88d6912487a1799e4ad09b72d764a3d27ed16b3" } }, { "type": "file", "spec_version": "2.1", "id": "file--0b9fcf65-f469-4e2a-b469-c202e95cd72d", "hashes": { "SHA-256": "07ad8525844ce61471e08e8c515b76bf063bac482394152bad814026cd577f69" } }, { "type": "url", "spec_version": "2.1", "id": "url--61980c91-9a68-4350-9673-22bf38081e6d", "value": "https://price-oracle-v2.vercel.app" }, { "type": "report", "spec_version": "2.1", "id": "report--0a3ae31a-9507-4093-9338-5f2674f5f8df", "created_by_ref": "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7", "created": "2026-06-24T16:54:16.230402Z", "modified": "2026-06-24T16:54:16.230402Z", "name": "Developer-targeting campaign using malicious Next.js repositories", "published": "2026-02-24T00:00:00Z", "object_refs": [ "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7", "ipv4-addr--26591eeb-7c6f-4f90-82df-c00a759de675", "ipv4-addr--f35de203-ef9d-4e91-b1d9-79a762d146d5", "ipv4-addr--ce0df1f2-17ad-491d-98fc-42de51998906", "ipv4-addr--3c508568-d8f4-42c9-9eb3-b07b70bc9500", "domain-name--4419d2ab-2479-4718-a9e5-0d3e6bf6ddcf", "file--b6454a18-5c5e-4e11-afee-b4e13ab8c6ba", "file--4484e978-1794-4271-af1a-42a9daaa75d3", "file--5a49a9b6-b80b-40a7-9f85-75f32e9e0b07", "file--3527d926-b78c-47a4-a4ca-0621718e8118", "file--e5fd0ac1-0999-495c-b8c7-752e1ed96187", "file--93ef607c-545c-4c05-a905-bbd7c926fe67", "file--0b9fcf65-f469-4e2a-b469-c202e95cd72d", "url--61980c91-9a68-4350-9673-22bf38081e6d" ], "external_references": [ { "source_name": "source", "url": "https://www.microsoft.com/en-us/security/blog/2026/02/24/c2-developer-targeting-campaign/" } ] } ] }