Raindrop (80295aeb-59e3-4c5d-ac39-9879158f8d23)

Raindrop is a loader used by APT29 that was discovered on some victim machines during investigations related to the SolarWinds Compromise. It was discovered in January 2021 and was likely used since at least May 2020.^{[Symantec RAINDROP January 2021]}^{[Microsoft Deep Dive Solorigate January 2021]}

Rows: 1
Loading extensions...
Use the filters above each column to filter and limit table data. Advanced searches can be performed by using the following operators:
<, <=, >, >=, =, *, !, {, }, ||,&&, **[empty]**, **[nonempty]**, **rgx:**
Learn more
TableFilter v0.7.2
https://www.tablefilter.com/
©2015-2025 Max Guglielmi
Close
?
Cluster A	Galaxy A	Cluster B	Galaxy B	Level
	Clear Tidal Software		Clear Tidal Groups	Clear 1
Raindrop (80295aeb-59e3-4c5d-ac39-9879158f8d23)	Tidal Software	APT29 (4c3e48b9-4426-4271-a7af-c3dfad79f447)	Tidal Groups	1