APT
ATLAS
Atlas
Actors
Sectors
Requirements
⌘K
▸
sign in
Atlas
Actors
Sectors
Requirements
LOADING
APT45 (aka Andariel, LABYRINTH CHOLLIMA) · APT Atlas
Actors
/
Nation-state / APT
/
Asia
APT45
APT
KP · North Korea
AKA
Andariel · LABYRINTH CHOLLIMA · Onyx Sleet · Operation Troy · DarkSeoul · Stonefly
CrowdStrike
:
SILENT CHOLLIMA
Microsoft
:
PLUTONIUM
Targets
25
Sectors
18
Threat types
2
GIRs covered
0/480
Active since
2009
Pin to atlas
Watch
Share
Export
Victimology
Geographic footprint · 25 countries
Region filter
Export
origin · North Korea
targeted countries · 25
AMERICAS ·
4
Argentina
·
Brazil
·
Canada
·
United States
OCEANIA ·
1
Australia
EUROPE ·
12
Belgium
·
Switzerland
·
Germany
·
Denmark
·
Estonia
·
Hungary
·
Norway
·
Poland
·
Romania
·
Russia
·
Sweden
·
Slovenia
ASIA ·
8
China
·
Israel
·
India
·
Japan
·
South Korea
·
Philippines
·
Türkiye
·
Vietnam
Sectors targeted
18 of 40
Government
83 actors
Defense
60 actors
Aerospace
49 actors
Financial Services
61 actors
Healthcare
38 actors
Pharmaceutical
24 actors
Telecom
57 actors
Retail & Hospitality
25 actors
Energy / Utilities
49 actors
Education & Research
50 actors
Manufacturing (man)
40 actors
Media & Journalism
41 actors
Hospitality
26 actors
Consulting / Professional Services
26 actors
Chemicals
15 actors
Consumer Goods / Electronics
16 actors
Agriculture & Food
15 actors
Maritime
21 actors
Tactics, techniques, procedures
Threat types + MITRE ATT&CK mapping
THREAT TYPES
ESP · Espionage
RAN · Ransomware
MITRE ATT&CK · 9 techniques
Reconnaissance
· 1
T1592.002
Software
Initial Access
· 2
T1189
Drive-by Compromise
Execution
· 1
T1203
Exploitation for Client Execution
Discovery
· 2
T1049
System Network Connections Discovery
Collection
· 1
T1005
Data from Local System
Command And Control
· 1
T1105
Ingress Tool Transfer
Stealth
· 1
T1027.003
Steganography
GIR coverage
0 / 480 requirements satisfied
Open matrix
No GIRs mapped yet for this actor.
Related actors
By origin and actor type
APT2
nation-state
China · 6 targets · since 2010
APT5
nation-state
China · 15 targets · since 2007
APT8
nation-state
China · 5 targets · since —
APT14
nation-state
China · 15 targets · since —
APT17
nation-state
China · 10 targets · since 2009
APT20
nation-state
China · 14 targets · since 2011
T1566.001
Spearphishing Attachment
T1057
Process Discovery