NICKEL GLADSTONE
Contents
NICKEL GLADSTONE
Objectives
Financial Gain
Aliases
Alluring Pisces (Palo Alto), APT38 (FireEye), ATK 117 (Thales), Black Alicanto (PWC), Bluenoroff (Kaspersky), Citrine Sleet (Microsoft), CTG-6459 (SCWX CTU), HIDDEN COBRA (US Government), Lazarus Group, Sapphire Sleet (Microsoft), Selective Pisces (Palo Alto), Stardust Chollima (CrowdStrike), T-APT-15 (Tencent), TA444 (Proofpoint), TAG-71 (Recorded Future)
Tools
AlphaNC, Bankshot, CCGC_Proxy, Ratankba, RustBucket, SUGARLOADER, SwiftLoader, Wcry
Summary
NICKEL GLADSTONE is a subgroup of NICKEL ACADEMY that CTU researchers assess with high confidence focuses on acquisitive financial crime, targeting financial institutions and conducting online criminal activities for financial gain. This focus on finance expands NICKEL GLADSTONE’s geographic scope beyond other North Korean groups, to include organizations in North and South America, Europe, Africa, and Asia. The group appears particularly interested in targeting companies operating in countries that have weaker financial regulatory regimes.
NICKEL GLADSTONE came into prominence in February 2016, when the news broke about Bangladesh Central Bank's loss of $81 million USD through fraudulent messages in the …
Objectives
Financial Gain
Aliases
Alluring Pisces (Palo Alto), APT38 (FireEye), ATK 117 (Thales), Black Alicanto (PWC), Bluenoroff (Kaspersky), Citrine Sleet (Microsoft), CTG-6459 (SCWX CTU), HIDDEN COBRA (US Government), Lazarus Group, Sapphire Sleet (Microsoft), Selective Pisces (Palo Alto), Stardust Chollima (CrowdStrike), T-APT-15 (Tencent), TA444 (Proofpoint), TAG-71 (Recorded Future)
Tools
AlphaNC, Bankshot, CCGC_Proxy, Ratankba, RustBucket, SUGARLOADER, SwiftLoader, Wcry
Summary
NICKEL GLADSTONE is a subgroup of NICKEL ACADEMY that CTU researchers assess with high confidence focuses on acquisitive financial crime, targeting financial institutions and conducting online criminal activities for financial gain. This focus on finance expands NICKEL GLADSTONE’s geographic scope beyond other North Korean groups, to include organizations in North and South America, Europe, Africa, and Asia. The group appears particularly interested in targeting companies operating in countries that have weaker financial regulatory regimes.
NICKEL GLADSTONE came into prominence in February 2016, when the news broke about Bangladesh Central Bank's loss of $81 million USD through fraudulent messages in the …