NSHC’s April 2024 roundup identifies SectorA01 activity in India, Bangladesh, Singapore, and Hungary using malicious Windows LNK files disguised as job descriptions. SectorA01 payloads transmitted system information, added registry persistence, and executed attacker-supplied code on compromised hosts. In South Korea, SectorA05 used a meeting-agenda LNK lure and Dropbox API downloads, while SectorA07 used LNK files disguised as North Korea internal-trend documents to fetch AutoIt-based malware. NSHC describes SectorA activity as focused on South Korean government, political, and diplomatic information while also supporting global financial-resource collection.