S0514Windows

S0514WellMess

Platforms
1
ATT&CK
14.1
References
4

Description

[WellMess](https://attack.mitre.org/software/S0514) is lightweight malware family with variants written in .NET and Golang that has been in use since at least 2018 by [APT29](https://attack.mitre.org/groups/G0016).(Citation: CISA WellMess July 2020)(Citation: PWC WellMess July 2020)(Citation: NCSC APT29 July 2020)

Platforms· 1

Windows

Attributed to1

TypeTargetConfidenceTier
GroupAPT29g0016100%live

References

  1. https://attack.mitre.org/software/S0514
  2. https://us-cert.cisa.gov/ncas/analysis-reports/ar20-198b
  3. https://www.pwc.co.uk/issues/cyber-security-services/insights/cleaning-up-after-wellmess.html
  4. https://www.ncsc.gov.uk/files/Advisory-APT29-targets-COVID-19-vaccine-development-V1-1.pdf

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Software
WellMail
Software
BS2005
Software
VERMIN
Software
SombRAT
Software
Anchor
Software
Waterbear
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.