SUNBURST (6b04e98e-c541-4958-a8a5-d433e575ce78)
SUNBURST is a trojanized DLL designed to fit within the SolarWinds Orion software update framework. It was used by APT29 since at least February 2020.[SolarWinds Sunburst Sunspot Update January 2021][Microsoft Deep Dive Solorigate January 2021]
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| APT29 (4c3e48b9-4426-4271-a7af-c3dfad79f447) | Tidal Groups | SUNBURST (6b04e98e-c541-4958-a8a5-d433e575ce78) | Tidal Software | 1 |