SITE: A group has claimed stealing malware developed by the “Equation Group,” a sophisticated hacking group suspected of being the U.S. National Security Agency (NSA), and put the files up for sale to highest bidder in a bitcoin auction.
On August 13, 2016, an untitled document uploaded to Pastebin.com by the account “THESHADOWBROKERS” detailed the nature of the hack, the files taken, and the terms of their sale by auction. In the document, the group first introduced the “Equation Group,” a moniker dubbed by Kaspersky Lab, as the creators of highly advanced malware such as Stuxnet and Flame. “Equation Group” has been suspected by security experts of having ties to and/or being the NSA.
The group then claimed hacking and obtaining “many many Equation Group cyber weapons,” and provided links to images of file directories and encrypted packages of the malware, including 316 MB worth of “free” samples. Finally, the document listed a bitcoin address and stated that the party with the highest bid would receive decryption instructions for the rest of the files, which they claimed are “better than Stuxnet.”
A copy of the Pastebin.com document follows. A copy of the malware samples and encrypted files are available upon request.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
From:
bitmessage = BM-NBvAHfp5Y6wBykgbirVLndZtEFCYGht8
i2p-bote = o1uHOkOcMoFEa7O7dbEilzfMvWzo7bDu~td3x9gYz4b4t5OriJ7U6GUWr5GZoWxQ9f2TrIY5RzhpIMVP6hTLXZ
Equation Group Cyber Weapons Auction - Invitation
- ------------------------------------------------
!!! Attention government sponsors of cyber warfare and those who profit from it !!!!
How much you pay for enemies cyber weapons? Not malware you find in networks. Both sides, RAT + LP, full state sponsor tool set? We find cyber weapons made by creators of stuxnet, duqu, flame. Kaspersky calls Equation Group. We follow Equation Group traffic. We find Equation Group source range. We hack Equation Group. We find many many Equation Group cyber weapons. You see pictures. We give you some Equation Group files free, you see. This is good proof no? You enjoy!!! You break many things. You find many intrusions. You write many words. But not all, we are auction the best files.
Picture Urls
- ------------
http://imgur.com/a/sYpyn
https://theshadowbrokers.tumblr.com/
https://github.com/theshadowbrokers/EQGRP-AUCTION