The source code of the ransomware Conti has again been published on the Internet. The leaker pretends to take action against the ransomware’s backers because they support Russia in the war with Ukraine, as reported by BleepingComputer.
Since the suspected security researcher is acting out of revenge, it is suspected that he himself is from Ukraine. Conti, on the other hand, is a Russian-language ransomware group that also operates a ransomware-as-a-service (RaaS) business model. While some ransomware payments are in the millions, Coveware estimates the average claim from Conti members is just over $765,000.
At the weekend was under the-Handle “Conti Leaks” published a link to the new package. The source code has been uploaded to VirusTotal and although it is password protected, the information needed to open the file is accessible to cybersecurity teams.
The leaker had previously made an older version of the ransomware public. The group’s alleged internal chat logs also come from another source.