{
    "type": "bundle",
    "id": "bundle--f8e6a71c-505c-47c5-a712-fb87592d4063",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--a0a0ec0b-8e85-40bc-a03e-a4a13d91944d",
            "created": "2024-05-15T07:57:57.082746Z",
            "modified": "2024-05-15T07:57:57.082796Z",
            "name": "Vipyrsec",
            "identity_class": "organization"
        },
        {
            "type": "file",
            "spec_version": "2.1",
            "id": "file--f9c4a0d3-0f52-44a7-aa16-a55a03a81276",
            "hashes": {
                "SHA-256": "973f7939ea03fd2c9663dafc21bb968f56ed1b9a56b0284acf73c3ee141c053c"
            }
        },
        {
            "type": "domain-name",
            "spec_version": "2.1",
            "id": "domain-name--2a2c7d0e-b09c-4dc5-8fc1-6f442f44c07a",
            "value": "arcashop.org"
        },
        {
            "type": "domain-name",
            "spec_version": "2.1",
            "id": "domain-name--3e93ea5f-8918-45aa-ad20-f83002a53332",
            "value": "jdkgradle.com"
        },
        {
            "type": "file",
            "spec_version": "2.1",
            "id": "file--0b6d42dd-0e9b-455c-b53a-4ea1c5be4d41",
            "hashes": {
                "MD5": "33c9a47debdb07824c6c51e13740bdfe"
            }
        },
        {
            "type": "url",
            "spec_version": "2.1",
            "id": "url--b3231aa9-9dc9-4224-88b5-9b86a4617aff",
            "value": "https://jdkgradle.com/jdk/update/check"
        },
        {
            "type": "url",
            "spec_version": "2.1",
            "id": "url--e47a52b6-f529-4526-b3e0-a79744fdab89",
            "value": "https://arcashop.org/boards.php?type="
        },
        {
            "type": "url",
            "spec_version": "2.1",
            "id": "url--78d4ee3a-ec1f-4be6-9f4c-e3a6b0c06aa8",
            "value": "https://pypi.online/cloud.php?type="
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--1316ee46-ce7e-4a4d-8da1-413fedc2d9c9",
            "created_by_ref": "identity--a0a0ec0b-8e85-40bc-a03e-a4a13d91944d",
            "created": "2026-06-24T22:19:26.539871Z",
            "modified": "2026-06-24T22:19:26.539871Z",
            "name": "Novel ELF64 Remote Access Tool Embedded in Malicious PyPI Uploads",
            "published": "2024-02-29T00:00:00Z",
            "object_refs": [
                "identity--a0a0ec0b-8e85-40bc-a03e-a4a13d91944d",
                "file--f9c4a0d3-0f52-44a7-aa16-a55a03a81276",
                "domain-name--2a2c7d0e-b09c-4dc5-8fc1-6f442f44c07a",
                "domain-name--3e93ea5f-8918-45aa-ad20-f83002a53332",
                "file--0b6d42dd-0e9b-455c-b53a-4ea1c5be4d41",
                "url--b3231aa9-9dc9-4224-88b5-9b86a4617aff",
                "url--e47a52b6-f529-4526-b3e0-a79744fdab89",
                "url--78d4ee3a-ec1f-4be6-9f4c-e3a6b0c06aa8"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://vipyrsec.com/research/elf64-rat-malware/"
                }
            ]
        }
    ]
}