{ "type": "bundle", "id": "bundle--81100f06-ad34-4b85-85b2-060665c3b0c5", "objects": [ { "type": "identity", "spec_version": "2.1", "id": "identity--5cb6c063-b2c4-4d8a-8bd2-88171741cb8f", "created": "2023-03-08T12:51:51.980512Z", "modified": "2024-04-04T09:49:05.246172Z", "name": "Norfolk", "identity_class": "organization" }, { "type": "file", "spec_version": "2.1", "id": "file--df11c9d6-8cc2-435a-8ccd-7424c3b9f565", "hashes": { "SHA-1": "7a86e6bffba91997553ac4cf0baec407bc255212" } }, { "type": "file", "spec_version": "2.1", "id": "file--7afd4714-ddf8-4c37-888f-aab99b16d49a", "hashes": { "SHA-256": "5d9e5c7b1b71af3c5f058f8521d383dbee88c99ebe8d509ebc8aeb52d4b6267b" } }, { "type": "file", "spec_version": "2.1", "id": "file--c57279f2-bd26-4070-b4b6-8a739e00ae2d", "hashes": { "MD5": "f2e936ff1977d123809d167a2a51cdeb" } }, { "type": "report", "spec_version": "2.1", "id": "report--5fcb0781-23e7-4dab-80d9-a959f0ccf66b", "created_by_ref": "identity--5cb6c063-b2c4-4d8a-8bd2-88171741cb8f", "created": "2026-06-24T19:51:32.490437Z", "modified": "2026-06-24T19:51:32.490437Z", "name": "How To: Analyzing a Malicious Hangul Word Processor Document from a DPRK Threat Actor Group", "published": "2019-02-25T00:00:00Z", "object_refs": [ "identity--5cb6c063-b2c4-4d8a-8bd2-88171741cb8f", "file--df11c9d6-8cc2-435a-8ccd-7424c3b9f565", "file--7afd4714-ddf8-4c37-888f-aab99b16d49a", "file--c57279f2-bd26-4070-b4b6-8a739e00ae2d" ], "external_references": [ { "source_name": "source", "url": "https://norfolkinfosec.com/how-to-analyzing-a-malicious-hangul-word-processor-document-from-a-dprk-threat-actor-group/" } ] } ] }