Similar to the state-sponsored pieces of malware before it, Gauss is also presenting itself as a real challenge to researchers. For the time being, it’s uncertain how the malicious element spreads and what its mysterious payload hides.
Since they can’t seem to break the encryption that protects the payload present in the Trojan’s Godel
module, Kaspersky is calling out to the community in the hope that someone with a real passion for mathematics or cryptology can help them.
They have made all the information they have on the payload available and they claim that a brute-force attack is out of the question.
“We are providing the first 32 bytes of encrypted data and hashes from known variants of the modules. If you are a world class cryptographer or if you can help us with decrypting them, please contact us by e-mail: firstname.lastname@example.org
,” experts wrote
More details are available here