NSHC's July 2024 monthly threat actor report includes SectorA activity that aligns with North Korea-focused tracking. SectorA01 used recruiter-themed archives with job tests or source code review tests to lure victims in France, Pakistan, Malaysia, Taiwan, Spain, the United States, India, the Philippines, South Korea, Vietnam, Morocco, Brazil, Israel, and Bosnia and Herzegovina into running malicious scripts. SectorA04 targeted South Korea by abusing vulnerabilities in centralized management solutions to seize control and distribute malware. SectorA05 used lecture request-themed LNK malware against South Korea and Germany with Dropbox API-based fileless execution, while SectorA07 used a value-added tax correction notice LNK in South Korea to run VBS and batch scripts for information collection and additional payload delivery.