REDSHAWL (Malware Family)
By Fraunhofer FKIE
Archived: 2026-04-05 16:15:27 UTC
REDSHAWL is a session hijacking utility that starts a new process as another user currently logged on to the same
system via command-line.
[TLP:WHITE] win_redshawl_auto (20251219 | Detects win.redshawl.)
Source: https://malpedia.caad.fkie.fraunhofer.de/details/win.redshawl
https://malpedia.caad.fkie.fraunhofer.de/details/win.redshawl
Page 1 of 1