TraderTraitor, a DPRK threat actor-lazarusholic

TraderTraitor

2022-04-18, USCISA
TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies

Also known as

Name	Named by	AKA	First seen	Last seen
APT38	Mandiant	BlueNoroff	2018-10-03	2025-04-13
AlluringPisces	PaloaltoNetworks	BlueNoroff	2024-09-09	2025-02-26
BeagleBoyz	USCISA	BlueNoroff	2020-08-26	2021-03-04
BlackDev2	PWC	BlueNoroff	2021-09-08	2023-04-12
BlueNoroff	Kaspersky	-	2017-04-03	2025-01-20
CryptoCore	Clearskysec	BlueNoroff	2020-06-24	2021-05-24
DarkRiver	Ptsecurity	JadeSleet	2023-09-27	2023-09-27
JadeSleet	Microsoft	TraderTraitor	2023-07-18	2024-10-15
NickelGladstone	SecureWorks	BlueNoroff	-	-
PUKCHONG	Google	UNC4899	2024-06-12	2024-06-12
REF9135	Elastic	BlueNoroff	2023-06-29	2023-06-29
RedCarpet	KRCERT	BlueNoroff	-	-
SlowPisces	PaloaltoNetworks	JadeSleet	2024-06-28	2025-04-14
StardustChollima	CrowdStrike	BlueNoroff	2018-02-26	2025-02-21
T-APT-15	Tencent	BlueNoroff	2018-03-07	2018-03-07
TAG-71	RecordedFuture	BlueNoroff	2023-06-06	2024-01-10
TEMP.Hermit	Fireeye	BlueNoroff	2017-09-13	2023-10-10
TraderTraitor	USCISA	BlueNoroff	2022-04-18	2025-04-22
UNC4899	Mandiant	TraderTraitor	2023-07-24	2025-04-24

Reports

2025-04-22
S2W
Analysis of TraderTraitor’s GopherGrabber Malware observed by Willo Campaign
#GopherGrabber #TraderTraitor #Willo

2025-04-14
Wired
TraderTraitor: The Kings of the Crypto Heist
#News #TraderTraitor

2025-04-01
Paradigm
Demystifying the North Korean Threat
#AppleJeus #ITWorker #Lazarus #Trend #DangerousPassword #TraderTraitor

2025-02-26
USFBI
North Korea Responsible for $1.5 Billion Bybit Hack
#Bybit #TraderTraitor

2024-12-25
piyokango
TraderTraitorによるDMM Bitcoinのビットコイン不正流出についてまとめてみた
#DMM #TraderTraitor

2024-12-23
USFBI
FBI, DC3, and NPA Identification of North Korean Cyber Actors, Tracked as TraderTraitor, Responsible for Theft of $308 Million USD from Bitcoin.DMM.com
#DMM #TraderTraitor #News

2024-12-06
Proofpoint
A Better Way, YARA-X, Mach-O Feature Extraction, and Malware Similarity
#Youtube #AppleJeus #BlueNoroff #TraderTraitor #YARA

2024-12-03
USCOURTS
USA v. APPROXIMATELY 2210.8222 OF SOL CRYPTOCURRENCY
#APT38 #Cryptocurrency #Rain #TraderTraitor

2023-08-22
USFBI
FBI Identifies Cryptocurrency Funds Stolen by DPRK
#AxieInfinity #Cryptocurrency #AtomicWallet #Alphapo #CoinsPaid #Harmony #TraderTraitor #APT38 #News

2023-01-23
USFBI
FBI Confirms Lazarus Group, APT38 Cyber Actors Responsible for Harmony's Horizon Bridge Currency Theft
#News #Cryptocurrency #APT38 #TraderTraitor #Harmony

2022-04-18
USCISA
TraderTraitor: North Korean State-Sponsored APT Targets Blockchain Companies
#Cryptocurrency #TraderTraitor