Search for adversaries

Ricochet Chollima

North Korea

Details

RICOCHET CHOLLIMA is a Democratic Peoples’ Republic of Korea (DPRK)-nexus targeted intrusion adversary that has been involved in espionage operations since at least 2016. RICOCHET CHOLLIMA’s observed operations have almost exclusively targeted the Republic of Korea (ROK) and are assessed to be focused on ROK government officials, non-governmental organizations (NGOs), academics, journalists, and D...

Community Identifiers

dobWLjcKrlaCTuI

Objective

  • MuepQa7irg0vn1RBf3NKFdk

Motivation

  • 1KGbzyLHt9k2MIe

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo