S0148Windows

S0148RTM

Platforms
1
ATT&CK
14.1
References
3

Description

[RTM](https://attack.mitre.org/software/S0148) is custom malware written in Delphi. It is used by the group of the same name ([RTM](https://attack.mitre.org/groups/G0048)). Newer versions of the malware have been reported publicly as Redaman.(Citation: ESET RTM Feb 2017)(Citation: Unit42 Redaman January 2019)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupRTMg0048100%live

References

  1. https://attack.mitre.org/software/S0148
  2. https://unit42.paloaltonetworks.com/russian-language-malspam-pushing-redaman-banking-malware/
  3. https://www.welivesecurity.com/wp-content/uploads/2017/02/Read-The-Manual.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
Truvasys
Software
RedRoman
Software
Octopus
Software
Zebrocy
Software
yty
Software
Ramsay
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.