lazarusholic

Everyday is lazarus.dayβ

StardustChollima

2018-02-26, CrowdStrike
https://www.darkreading.com/vulnerabilities---threats/lazarus-group-fancy-bear-most-active-threat-groups-in-2017/d/d-id/1330954
"STARDUST CHOLLIMA is an adversary associated with the Democratic People’s Republic of Korea (DPRK) that has been active operationally since at least 2015 and is affiliated with large-scale currency generation operations. CrowdStrike Intelligence assesses that STARDUST CHOLLIMA may represent an element of Bureau 121 of the DPRK’s Reconnaissance General Bureau (RGB) based on public disclosures by th..."

- CrowdStrike, https://www.crowdstrike.com/adversaries/stardust-chollima/

Also known as

 
Name Named by AKA First seen Last seen
APT38 Mandiant BlueNoroff 2018-10-03 2024-10-04
AlluringPisces PaloaltoNetworks BlueNoroff 2024-09-09 2024-09-09
BeagleBoyz USCISA BlueNoroff 2020-08-26 2021-03-04
BlackDev2 PWC BlueNoroff 2021-09-08 2023-04-12
BlueNoroff Kaspersky - 2017-04-03 2024-11-07
CryptoCore Clearskysec BlueNoroff 2020-06-24 2021-05-24
NickelGladstone SecureWorks BlueNoroff - -
REF9135 Elastic BlueNoroff 2023-06-29 2023-06-29
RedCarpet KRCERT BlueNoroff - -
StardustChollima CrowdStrike BlueNoroff 2018-02-26 2019-02-19
T-APT-15 Tencent BlueNoroff 2018-03-07 2018-03-07
TAG-71 RecordedFuture BlueNoroff 2023-06-06 2024-01-10
TEMP.Hermit Fireeye BlueNoroff 2017-09-13 2023-10-10
TraderTraitor USCISA BlueNoroff 2022-04-18 2023-08-22

Reports