Search for adversaries

Stardust Chollima

North Korea

Details

STARDUST CHOLLIMA is a Democratic People’s Republic of Korea (DPRK)-nexus adversary that has been active operationally since at least 2015 and is affiliated with large-scale currency generation operations. CrowdStrike Intelligence assesses that STARDUST CHOLLIMA likely represents an element of Bureau 121 of the DPRK’s Reconnaissance General Bureau (RGB) based on public disclosures by the U.S. gove...

Community Identifiers

4dUK9pvmQWr2ueY

Objective

  • p6YX7QCMTdFRBaj
  • Q6WkJ5PNVla3IpGEt0ozHFm

Motivation

  • JF53j0ukrqdbxAz
  • w3aytohE

Contact our team about
IOCs for this adversary

?

During a cybersecurity incident, indicators of compromise (IoC) are clues and evidence of a data breach.

Unlock the adversary universe

First Name
Last Name
Job Level
Country
Phone Number
By clicking submit, I consent to the processing of my contact information by CrowdStrike and its partners, including to CrowdStrike contacting me and sharing my contact information with its partners. I acknowledge that CrowdStrike will use and keep my contact information for as long as necessary for these purposes in accordance with its Privacy Notice.

Thank you for your request!

A member of our team will be in touch shortly.

CrowdStrike logo