STARDUST CHOLLIMASTARDUST CHOLLIMA

Also known as: Sapphire Sleet · STARDUST CHOLLIMA

Known aliases
2

Profile

Open-source reporting has claimed that the Hermes ransomware was developed by the North Korean group STARDUST CHOLLIMA (activities of which have been public reported as part of the “Lazarus Group”), because Hermes was executed on a host during the SWIFT compromise of FEIB in October 2017.

Aliases· 2

Sapphire SleetSTARDUST CHOLLIMA

References

  1. https://www.crowdstrike.com/blog/big-game-hunting-with-ryuk-another-lucrative-targeted-ransomware/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
hermes
Actor
Storm-0530
Actor
Pearl Sleet
Actor
Ruby Sleet
Actor
Silent Chollima
Software
Korean
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.