Warning: Infected files for research purposes only...
Behold the SolarWinds SunBurst Samples for easy RE access.
Thanks to FireEye for the Hashes. See here for details on what the files below are:
You make it easy for RE folks to find the loot.
SolarWinds.Orion.Core.BusinessLayer.dll
- b91ce2fa41029f6955bff20079468448 retrieved from https://www.joesandbox.com/analysis/330444/0/html
- (Unable to Download) d5aad0d248c237360cf39c054b654d69 https://www.joesandbox.com/analysis/334202/0/html
- 2c4a910a1299cdae2a4e55988a2f102e https://www.joesandbox.com/analysis/330529/0/html
- 846e27a652a5e1bfbd0ddd38a16dc865 https://www.joesandbox.com/analysis/330356/0/html
- e18a6a21eb44e77ca8d739a72209c370 https://www.joesandbox.com/analysis/330941/0/html
- 3e329a4c9030b26ba152fb602a1d5893 https://www.joesandbox.com/analysis/330534/0/html
app_web_logoimagehandler.ashx.b6031896.dll
- 56ceb6d0011d87b6e4d7023d7ef85676 https://www.joesandbox.com/analysis/322289/0/html
Pass: infected