{
    "type": "bundle",
    "id": "bundle--b6a79a9b-032f-49f2-887f-6424db6e45c3",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--ce40c63e-51d4-4ec5-a85b-2d76cd5ec7d1",
            "created": "2023-03-08T12:52:07.036238Z",
            "modified": "2025-06-18T12:58:21.951363Z",
            "name": "CiscoTalos",
            "identity_class": "organization"
        },
        {
            "type": "file",
            "spec_version": "2.1",
            "id": "file--18ad5547-1b26-49ae-9bb0-48028809553d",
            "hashes": {
                "SHA-256": "ed8ec7a8dd089019cfd29143f008fa0951c56a35d73b2e1b274315152d0c0ee6"
            }
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--06f50cf1-7968-4abe-86a9-75e309a6d3a4",
            "value": "146.4.21.94"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--82fe2b29-7aca-4cc5-bbc3-0f5e0316cc9a",
            "created_by_ref": "identity--ce40c63e-51d4-4ec5-a85b-2d76cd5ec7d1",
            "created": "2026-06-24T19:23:52.569621Z",
            "modified": "2026-06-24T19:23:52.569621Z",
            "name": "Lazarus Group exploits ManageEngine vulnerability to deploy QuiteRAT",
            "published": "2023-08-24T00:00:00Z",
            "object_refs": [
                "identity--ce40c63e-51d4-4ec5-a85b-2d76cd5ec7d1",
                "file--18ad5547-1b26-49ae-9bb0-48028809553d",
                "ipv4-addr--06f50cf1-7968-4abe-86a9-75e309a6d3a4"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://blog.talosintelligence.com/lazarus-quiterat/"
                }
            ]
        }
    ]
}