2019-02-19
CrowdStrike
2019 Global Threat Report
#VelvetChollima
#Trend
#StardustChollima
#LabyrinthChollima
#SilentChollima
#RicochetChollima
StardustChollima
"STARDUST CHOLLIMA is an adversary associated with the Democratic People’s Republic of Korea (DPRK) that has been active operationally since at least 2015 and is affiliated with large-scale currency generation operations. CrowdStrike Intelligence assesses that STARDUST CHOLLIMA may represent an element of Bureau 121 of the DPRK’s Reconnaissance General Bureau (RGB) based on public disclosures by th..."
- CrowdStrike, https://www.crowdstrike.com/adversaries/stardust-chollima/
Also known as
Name | Named by | AKA | First seen | Last seen |
---|---|---|---|---|
APT38 | Mandiant | BlueNoroff | 2018-10-03 | 2024-10-04 |
AlluringPisces | PaloaltoNetworks | BlueNoroff | 2024-09-09 | 2024-09-09 |
BeagleBoyz | USCISA | BlueNoroff | 2020-08-26 | 2021-03-04 |
BlackDev2 | PWC | BlueNoroff | 2021-09-08 | 2023-04-12 |
BlueNoroff | Kaspersky | - | 2017-04-03 | 2024-11-07 |
CryptoCore | Clearskysec | BlueNoroff | 2020-06-24 | 2021-05-24 |
NickelGladstone | SecureWorks | BlueNoroff | - | - |
REF9135 | Elastic | BlueNoroff | 2023-06-29 | 2023-06-29 |
RedCarpet | KRCERT | BlueNoroff | - | - |
StardustChollima | CrowdStrike | BlueNoroff | 2018-02-26 | 2019-02-19 |
T-APT-15 | Tencent | BlueNoroff | 2018-03-07 | 2018-03-07 |
TAG-71 | RecordedFuture | BlueNoroff | 2023-06-06 | 2024-01-10 |
TEMP.Hermit | Fireeye | BlueNoroff | 2017-09-13 | 2023-10-10 |
TraderTraitor | USCISA | BlueNoroff | 2022-04-18 | 2023-08-22 |