The Shadow Brokers released what appears to be a series of windows rootkit components in a farewell message. The files are signed with the same key used previously for Equation Group malware. Talos has convicted these files and will continue to monitor the situation for additional action. The malware released included many Windows malware files that supposedly all trigger as either equationdrug.generic or equationDrug.k by the Kaspersky security product. The threat actor is believed to be from the same threat actor.”]
Source: https://blog.talosintelligence.com/2017/01/shadow-brokers-malware-coverage.html