New analysis suggests Guccifer 2.0 files copied locally, not hacked by Russia

RT | July 12, 2017

Files stolen from the Democratic National Committee (DNC) were likely downloaded to a USB drive by someone with physical access to a computer connected to the DNC network, not hacked remotely by Russia, according to a new analysis.

In an interview with Motherboard in June 2016, the hacker who claimed to be Guccifer 2.0 said he used a zero-day exploit to breach the DNC server and steal files he later published under the title “NGP-VAN.”

The leak was quickly attributed to the Russian government. However, a document published Sunday by an individual known as the Forensicator shows how the 7-zip file published by Guccifer 2.0 was transferred at a speed of 23 MB/s, making it “unlikely that this initial data transfer could have been done remotely over the Internet.”

“The initial copying activity was likely done from a computer system that had direct access to the data,” the report from the Forensicator stated. “By ‘direct access’ we mean that the individual who was collecting the data either had physical access to the computer where the data was stored, or the data was copied over a local high speed network (LAN).”

For his analysis, the Forensicator looked at the data from the 7-zip file which showed the .rar files were built on September 1, 2016, while the other files were last modified on July 5, 2016. When the .rar files are unpacked using a program called WinRAR, their timestamps were preserved from the date they were transferred.

The timestamps of those .rar files were relative times, while the times recorded in the 7-zip files are absolute times, recorded in Coordinated Universal Time (UTC). The Forensicator found that if the .rar files were adjusted to Eastern Time, they “fall into the same range as the last modified times for the directories archived in the .rar files.”

Therefore, the Forensicator concludes that the files were built on a computer system where the Eastern Daylight Savings Time (EDT) timezone setting was in force, meaning that the system was most likely located on the East Coast of the US.

The Forensicator then generated a list of the files sorted by the date they were last modified and imported the list into an Excel spreadsheet. Analyzing the files by date last modified, he observed that the last modified times were clustered together in a 14-minute time period on July 5, 2016.

The analysis of the metadata also found a majority of the time it took for the files to be copies, 12 minutes and 48 seconds of the 14 minutes and 15 seconds, was allocated to “time gaps” that appear between several top-level files and directories. The Forensicator concluded that this indicated that the files were chosen from a much larger collection of files.

Estimating the transfer speed of the files published by Guccifer, the Forensicator concluded that if the 1.98 GB 7-zip archive published by Guccifer was copied at a rate of 22.6 MB/s, and all the time gaps were attributed to additional file copying, the initial file copy would be 10 times larger, or 19.3 GB.

July 11, 2017 - Posted by aletho | Fake News, Mainstream Media, Warmongering, Russophobia, Timeless or most popular | United States

No comments yet.

Seyed M. Marandi: Negotiations Collapsed – Return to War

Aletho News Videos

or go to

Aletho News Archives – Video-Images

From the Archives

Wartime internment camps in Australia

National Archives of Australia

World War I

During World War I, for security reasons the Australian Government pursued a comprehensive internment policy against enemy aliens living in Australia.

Initially only those born in countries at war with Australia were classed as enemy aliens, but later this was expanded to include people of enemy nations who were naturalised British subjects, Australian-born descendants of migrants born in enemy nations and others who were thought to pose a threat to Australia’s security.

Australia interned almost 7,000 people during World War I, of whom about 4,500 were enemy aliens and British nationals of German ancestry already resident in Australia.

Records of World War I internment camps

World War II

During World War II, Australian authorities established internment camps for three reasons – to prevent residents from assisting Australia’s enemies, to appease public opinion and to house overseas internees sent to Australia for the duration of the war.

Unlike World War I, the initial aim of internment during the later conflict was to identify and intern those who posed a particular threat to the safety or defence of the country. As the war progressed, however, this policy changed and Japanese residents were interned en masse. In the later years of the war, Germans and Italians were also interned on the basis of nationality, particularly those living in the north of Australia. In all, just over 20 per cent of all Italians resident in Australia were interned. … continue

Blog Roll

Subscribe to Aletho News

Enter your email address to receive new posts by email.

Email Address:

Join 2,459 other subscribers
Visits Since December 2009
- 7,448,624 hits
Looking for something?

Search for:
Archives
Archives
Calendar

July 2017

M T W T F S S

1 2

3 4 5 6 7 8 9

10 11 12 13 14 15 16

17 18 19 20 21 22 23

24 25 26 27 28 29 30

31

« Jun Aug »
Categories

Aletho News Civil Liberties Corruption Deception Economics Environmentalism Ethnic Cleansing, Racism, Zionism Fake News False Flag Terrorism Full Spectrum Dominance Illegal Occupation Mainstream Media, Warmongering Malthusian Ideology, Phony Scarcity Militarism Progressive Hypocrite Russophobia Science and Pseudo-Science Solidarity and Activism Subjugation - Torture Supremacism, Social Darwinism Timeless or most popular Video War Crimes Wars for Israel
Tags
9/11 Afghanistan Africa al-Qaeda Australia BBC Benjamin Netanyahu Brazil Canada CDC Central Intelligence Agency China CIA CNN Covid-19 COVID-19 Vaccine Donald Trump Egypt European Union Facebook FBI FDA France Gaza Germany Google Hamas Hebron Hezbollah Hillary Clinton Human rights Hungary India Iran Iraq ISIS Israel Israeli settlement Japan Jerusalem Joe Biden Korea Latin America Lebanon Libya Middle East National Security Agency NATO New York Times North Korea NSA Obama Pakistan Palestine Poland Qatar Russia Sanctions against Iran Saudi Arabia Syria The Guardian Turkey Twitter UAE UK Ukraine United Nations United States USA Venezuela Washington Post West Bank WHO Yemen Zionism

July 2017
M	T	W	T	F	S	S
	1	2
3	4	5	6	7	8	9
10	11	12	13	14	15	16
17	18	19	20	21	22	23
24	25	26	27	28	29	30
31

Aletho News
If Americans Knew
No Tricks Zone
Contact:

atheonews (at) gmail.com
Disclaimer

This site is provided as a research and reference tool. Although we make every reasonable effort to ensure that the information and data provided at this site are useful, accurate, and current, we cannot guarantee that the information and data provided here will be error-free. By using this site, you assume all responsibility for and risk arising from your use of and reliance upon the contents of this site.

This site and the information available through it do not, and are not intended to constitute legal advice. Should you require legal advice, you should consult your own attorney.

Nothing within this site or linked to by this site constitutes investment advice or medical advice.

Materials accessible from or added to this site by third parties, such as comments posted, are strictly the responsibility of the third party who added such materials or made them accessible and we neither endorse nor undertake to control, monitor, edit or assume responsibility for any such third-party material.

The posting of stories, commentaries, reports, documents and links (embedded or otherwise) on this site does not in any way, shape or form, implied or otherwise, necessarily express or suggest endorsement or support of any of such posted material or parts therein.

The word “alleged” is deemed to occur before the word “fraud.” Since the rule of law still applies. To peasants, at least.

Fair Use

This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such material available in our efforts to advance understanding of environmental, political, human rights, economic, democracy, scientific, and social justice issues, etc. We believe this constitutes a ‘fair use’ of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed a prior interest in receiving the included information for research and educational purposes. For more info go to: http://www.law.cornell.edu/uscode/17/107.shtml. If you wish to use copyrighted material from this site for purposes of your own that go beyond ‘fair use’, you must obtain permission from the copyright owner.

DMCA Contact

This is information for anyone that wishes to challenge our “fair use” of copyrighted material.

If you are a legal copyright holder or a designated agent for such and you believe that content residing on or accessible through our website infringes a copyright and falls outside the boundaries of “Fair Use”, please send a notice of infringement by contacting atheonews@gmail.com.

We will respond and take necessary action immediately.

If notice is given of an alleged copyright violation we will act expeditiously to remove or disable access to the material(s) in question.

All 3rd party material posted on this website is copyright the respective owners / authors. Aletho News makes no claim of copyright on such material.

Aletho News

ΑΛΗΘΩΣ