The dumped information was featured in a document titled “trickortreat” and featured configuration data on a toolkit allegedly used by Equation Group to break into the systems of U.S. adversaries.
UK penetration testing firm Hacker House analyzed the information which includes 352 IP addresses and 306 domain names in 49 countries. China, Japan, and Korea are the countries with the most infected hosts, but other countries on the list included Spain, Germany, India, and Taiwan, according to a blog post by Hacker House.
This is the second time in three months that the group has released data allegedly tied to the NSA.
In October, ex-NSA contractor Harold Thomas Martin III of Glen Burnie, Maryland was charged with allegedly stealing classified documents and hacking tools, materials similar to those featured in the Shadow Brokers data dump.