NSHC ThreatRecon's October 2023 report identifies four SectorA groups, its North Korea-linked cluster set, operating during the September 21 to October 20 collection period. SectorA01 targeted recruiters in Singapore, India, Poland, and the United Kingdom through social-platform lures that delivered malware disguised as recruitment-offer PDF files. SectorA02 used LNK malware disguised as a document about North Korea's Supreme People's Assembly results, then downloaded additional malware through PowerShell for in-memory execution. SectorA05 spoofed a Korean portal login page to collect account credentials, while SectorA07 used payroll-themed CHM files that launched PowerShell to fetch and run more malware.