Trusted Design

RedEcho

アクターID: G1042

· MITRE Pageへのリンク

脅威アクターの詳細

RedEcho is a People’s Republic of China-related threat actor associated with long-running intrusions in Indian critical infrastructure entities. RedEcho overlaps with various other PRC-linked threat groups, such as APT41, and is linked to ShadowPad malware use through shared infrastructure.(Citation: RecordedFuture RedEcho 2021)(Citation: RecordedFuture RedEcho 2022)

脅威アクターの別名・別称

RedEcho

利用した攻撃手法

• T1098.007 - Additional Local or Domain Groups
• T1036.002 - Right-to-Left Override
• T1562.001 - Disable or Modify Tools
• T1128 - Netsh Helper DLL
• T1556.005 - Reversible Encryption

関連するCVE (攻撃手法に関連)

• CVE-2025-66478 (T1098.007)
• CVE-2026-0723 (T1098.007)
• CVE-2025-13335 (T1562.001)
• CVE-2014-8361 (T1556.005)

Actor – Pulse グラフ

---

← 脅威アクター一覧に戻る