{
    "type": "bundle",
    "id": "bundle--f751ee75-1def-4cf9-98fd-7b1fcda99162",
    "objects": [
        {
            "type": "identity",
            "spec_version": "2.1",
            "id": "identity--c48c8182-30a2-4ef4-b0ce-54542b87ae11",
            "created": "2023-03-08T12:51:51.955089Z",
            "modified": "2024-11-20T11:35:16.572356Z",
            "name": "NTTSecurity",
            "identity_class": "organization"
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--aaafb69f-656f-4bc3-b61f-c6857f1b6307",
            "value": "185.163.125.196"
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--26591eeb-7c6f-4f90-82df-c00a759de675",
            "value": "147.124.202.208"
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--f35de203-ef9d-4e91-b1d9-79a762d146d5",
            "value": "163.245.194.216"
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--ce0df1f2-17ad-491d-98fc-42de51998906",
            "value": "66.235.168.136"
        },
        {
            "type": "ipv4-addr",
            "spec_version": "2.1",
            "id": "ipv4-addr--3c508568-d8f4-42c9-9eb3-b07b70bc9500",
            "value": "87.236.177.9"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--517f1d6a-514b-592b-8216-43a310ad6d08",
            "created": "2026-06-24T19:50:03.799841Z",
            "modified": "2026-06-24T19:50:03.799841Z",
            "name": "ContagiousInterview"
        },
        {
            "type": "threat-actor",
            "spec_version": "2.1",
            "id": "threat-actor--0e354a3b-06b5-59d8-bd4e-247d03b79526",
            "created": "2026-06-24T19:50:03.802172Z",
            "modified": "2026-06-24T19:50:03.802172Z",
            "name": "WaterPlum"
        },
        {
            "type": "report",
            "spec_version": "2.1",
            "id": "report--a2ae33b7-d7ff-4ddc-975e-1351c6f90842",
            "created_by_ref": "identity--c48c8182-30a2-4ef4-b0ce-54542b87ae11",
            "created": "2026-06-24T19:50:03.805984Z",
            "modified": "2026-06-24T19:50:03.805984Z",
            "name": "StoatWaffle, malware used by WaterPlum",
            "published": "2026-03-17T00:00:00Z",
            "object_refs": [
                "identity--c48c8182-30a2-4ef4-b0ce-54542b87ae11",
                "ipv4-addr--aaafb69f-656f-4bc3-b61f-c6857f1b6307",
                "ipv4-addr--26591eeb-7c6f-4f90-82df-c00a759de675",
                "ipv4-addr--f35de203-ef9d-4e91-b1d9-79a762d146d5",
                "ipv4-addr--ce0df1f2-17ad-491d-98fc-42de51998906",
                "ipv4-addr--3c508568-d8f4-42c9-9eb3-b07b70bc9500",
                "threat-actor--517f1d6a-514b-592b-8216-43a310ad6d08",
                "threat-actor--0e354a3b-06b5-59d8-bd4e-247d03b79526"
            ],
            "external_references": [
                {
                    "source_name": "source",
                    "url": "https://jp.security.ntt/insights_resources/tech_blog/stoatwaffle_malware_en/"
                }
            ]
        }
    ]
}