A Ukrainian researcher named ‘Conti Leaks’ has leaked data and source code belonging to the Conti ransomware gang.
The decision to leak the source code is a form of revenge for the gang’s decision to side with Russia on the invasion of Ukraine.
The source code leak is a Visual Studio solution that allows anyone with access to compile the ransomware locker and decryptor.
The leaked source was last modified on January 25th, 2021. This shows that compared to the other source code released, this is much newer.
The source code was uploaded to VirusTotal with links posted on Twitter. While the archive is password-protected, the password can be easily determined from subsequent tweets.
The researcher had previously leaked some vital information. This includes 170,000 internal chat conversations between the Conti ransomware members between January 21st, 2021, and February 27th, 2022.
An old Conti ransomware source code dated September 15th, 2020 was also leaked. The source code allows law enforcement to analyze how the malware works.
There are however fears that the released source code could be used by other ransomware gangs to start their operations.