Skip to content
MalwareWiki

Malware

Raindrop

Raindrop is a loader for Cobalt Strike that was observed in the SolarWinds attack.

Raindrop is a Windows malware family operated by UNC2452.

Background

Raindrop is a Cobalt Strike loader that surfaced during the SolarWinds compromise.

Source: Malpedia (Fraunhofer FKIE).