elf.wellmess (Malware Family) By Fraunhofer FKIE Archived: 2026-04-05 21:06:38 UTC There is no description at this point. 2021-10-19 ⋅ NTT ⋅ Threat Detection Team Security division of NTT The layered infrastructure operated by APT29 elf.wellmess 2021-07-30 ⋅ RiskIQ ⋅ Team Atlas Bear Tracks: Infrastructure Patterns Lead to More Than 30 Active APT29 C2 Servers elf.wellmess WellMess 2021-07-27 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team Old Dogs New Tricks: Attackers Adopt Exotic Programming Languages elf.wellmess ElectroRAT BazarNimrod Buer Cobalt Strike Remcos Snake TeleBot WellMess Zebrocy 2021-04-26 ⋅ CISA ⋅ CISA, Department of Homeland Security, FBI Russian Foreign Intelligence Service (SVR)Cyber Operations: Trends and Best Practices for Network Defenders elf.wellmess WellMess 2021-03-21 ⋅ Blackberry ⋅ Blackberry Research 2021 Threat Report Bashlite FritzFrog IPStorm Mirai Tsunami elf.wellmess AppleJeus Dacls EvilQuest Manuscrypt Astaroth BazarBackdoor Cerber Cobalt Strike Emotet FinFisher RAT Kwampirs MimiKatz NjRAT Ryuk SmokeLoader TrickBot 2021-02-28 ⋅ PWC UK ⋅ PWC UK Cyber Threats 2020: A Year in Retrospect elf.wellmess FlowerPower PowGoop 8.t Dropper Agent.BTZ Agent Tesla Appleseed Ave Maria Bankshot BazarBackdoor BLINDINGCAN Chinoxy Conti Cotx RAT Crimson RAT DUSTMAN Emotet FriedEx FunnyDream Hakbit Mailto Maze METALJACK Nefilim Oblique RAT Pay2Key PlugX QakBot REvil Ryuk StoneDrill StrongPity SUNBURST SUPERNOVA TrickBot TurlaRPC Turla SilentMoon WastedLocker WellMess Winnti ZeroCleare APT10 APT23 APT27 APT31 APT41 BlackTech BRONZE EDGEWOOD Inception Framework MUSTANG PANDA Red Charon Red Nue Sea Turtle Tonto Team 2021-02-25 ⋅ Intezer ⋅ Intezer Year of the Gopher A 2020 Go Malware Round-Up NiuB WellMail elf.wellmess ArdaMax AsyncRAT CyberGate DarkComet Glupteba Nanocore RAT Nefilim NjRAT Quasar RAT WellMess Zebrocy 2020-12-21 ⋅ IronNet ⋅ Adam Hlavek, Kimberly Ortiz Russian cyber attack campaigns and actors WellMail elf.wellmess Agent.BTZ BlackEnergy EternalPetya Havex RAT Industroyer Ryuk Triton WellMess 2020-12-21 ⋅ Intezer ⋅ Intezer Top Linux Cloud Threats of 2020 AgeLocker AnchorDNS Blackrota Cloud Snooper Dacls Doki FritzFrog IPStorm Kaiji Kinsing NOTROBIN Penquin Turla PLEAD Prometei RansomEXX Stantinko TeamTNT TSCookie WellMail elf.wellmess TeamTNT 2020-09-10 ⋅ Kaspersky Labs ⋅ GReAT An overview of targeted attacks and APTs on Linux Cloud Snooper Dacls DoubleFantasy MESSAGETAP Penquin Turla Tsunami elf.wellmess X-Agent 2020-08-17 ⋅ PWC ⋅ PWC UK https://malpedia.caad.fkie.fraunhofer.de/details/elf.wellmess Page 1 of 2 WellMess malware: analysis of its Command and Control (C2) server elf.wellmess 2020-08-13 ⋅ Talos Intelligence ⋅ Martin Lee, Paul Rascagnères, Vitor Ventura Attribution: A Puzzle WellMail elf.wellmess AcidBox WellMess 2020-07-29 ⋅ Kaspersky Labs ⋅ GReAT APT trends report Q2 2020 PhantomLance Dacls Penquin Turla elf.wellmess AppleJeus Dacls AcidBox Cobalt Strike Dacls EternalPetya Godlike12 Olympic Destroyer PlugX shadowhammer ShadowPad Sinowal VHD Ransomware Volgmer WellMess X-Agent XTunnel 2020-07-16 ⋅ NCSC UK ⋅ NCSC UK Advisory: APT29 targets COVID-19 vaccine development WellMail elf.wellmess SoreFang WellMess 2020-07-16 ⋅ PWC UK ⋅ PWC UK How WellMess malware has been used to target Covid-19 vaccines elf.wellmess WellMess 2020-05-26 ⋅ CISA ⋅ US-CERT Alert (AA21-116A): Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders elf.wellmess WellMess 2018-12-01 ⋅ Botconf ⋅ Shinichi Nagano, Yoshihiro Ishikawa Let's go with a Go RAT! elf.wellmess WellMess 2018-07-06 ⋅ JPCERT/CC ⋅ Shusei Tomonaga Malware “WellMess” Targeting Linux and Windows elf.wellmess WellMess There is no Yara-Signature yet. Source: https://malpedia.caad.fkie.fraunhofer.de/details/elf.wellmess https://malpedia.caad.fkie.fraunhofer.de/details/elf.wellmess Page 2 of 2