Disarmed WellMess malware

Execute a disarmed WellMess malware sample. This WellMess sample is written in Go. WellMess malware was used by APT29 during their attempt to steal COVID-19 vaccine data.
View Command

To view this TTPs command, you must be logged in with a professional or enterprise license.


Test this TTP

Download Operator (1.7.1)
Test this TTP using one of our Operator chains
APT29 COVID-19 Vaccine Data


Emulating APT29's WellMess malware targeting vaccine research.