cti-python-stix2/stix2/test/v21/stix2_data/malware/malware--6b616fc1-1505-48e3-8b2c-0d19337bff38.json

{
    "id": "bundle--f64de948-7067-4534-8018-85f03d470625",
    "objects": [
        {
            "created": "2017-05-31T21:32:58.226477Z",
            "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5",
            "description": "Rover is malware suspected of being used for espionage purposes. It was used in 2015 in a targeted email sent to an Indian Ambassador to Afghanistan.[[Citation: Palo Alto Rover]]",
            "external_references": [
                {
                    "external_id": "S0090",
                    "source_name": "mitre-attack",
                    "url": "https://attack.mitre.org/wiki/Software/S0090"
                },
                {
                    "description": "Ray, V., Hayashi, K. (2016, February 29). New Malware \u2018Rover\u2019 Targets Indian Ambassador to Afghanistan. Retrieved February 29, 2016.",
                    "source_name": "Palo Alto Rover",
                    "url": "http://researchcenter.paloaltonetworks.com/2016/02/new-malware-rover-targets-indian-ambassador-to-afghanistan/"
                }
            ],
            "id": "malware--6b616fc1-1505-48e3-8b2c-0d19337bff38",
            "malware_types": [
                "malware"
            ],
            "modified": "2017-05-31T21:32:58.226477Z",
            "name": "Rover",
            "object_marking_refs": [
                "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168"
            ],
            "spec_version": "2.1",
            "type": "malware",
            "is_family": false
        }
    ],
    "type": "bundle"
}