Nickel AlleyNickel Alley

Also known as: Nickel Alley

Known aliases
1

Profile

NICKEL ALLEY is a North Korean threat group that targets technology professionals through fake job opportunities, employing social engineering tactics such as creating fraudulent LinkedIn pages and GitHub repositories for malware delivery. They utilize the ClickFix tactic to deploy the PyLangGhost RAT, which supports file exfiltration and system profiling, particularly focusing on Chrome cryptocurrency wallet data. The group has also leveraged Visual Studio Code tasks to execute commands for malware retrieval based on the victim's operating system. Their operations indicate a dual focus on cryptocurrency theft and potential supply chain compromise or corporate espionage.

Aliases· 1

Nickel Alley

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
WageMole
Actor
Contagious Interview
Actor
UNC2970
Actor
TA444
Actor
APT43
Actor
JINX-0164
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.