{
    "type": "bundle",
    "id": "bundle--966cd19b-d2ab-48f6-8c0a-9215109c87f0",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7",
            "created": "2023-03-08T12:51:43.404685Z",
            "modified": "2024-08-31T04:09:59.408166Z",
            "name": "Microsoft",
            "identity_class": "organization"
        },
        {
            "type": "domain-name",
            "spec_version": "2.1",
            "id": "domain-name--22661779-ffd7-441d-925d-1119a7f49263",
            "value": "weinsteinfrog.com"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--07508793-2a33-5982-b040-9114591a8330",
            "created": "2026-06-24T17:28:15.827479Z",
            "modified": "2026-06-24T17:28:15.827479Z",
            "name": "CitrineSleet"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--6d317f57-7b19-4257-a446-e87c71b54f2d",
            "created_by_ref": "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7",
            "created": "2026-06-24T17:28:15.830214Z",
            "modified": "2026-06-24T17:28:15.830214Z",
            "name": "North Korean threat actor Citrine Sleet exploiting Chromium zero-day",
            "published": "2024-08-31T00:00:00Z",
            "object_refs": [
                "identity--a361b290-d09a-4e0e-a13d-681ca0c3dcc7",
                "domain-name--22661779-ffd7-441d-925d-1119a7f49263",
                "threat-actor--07508793-2a33-5982-b040-9114591a8330"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://www.microsoft.com/en-us/security/blog/2024/08/30/north-korean-threat-actor-citrine-sleet-exploiting-chromium-zero-day/"
                }
            ]
        }
    ]
}