Sony Pictures Entertainment data leak quick analysis

One very interesting fact regarding the readme.txt file. It is a standard Win32 file (CRLF linebreaks) and you may have noticed some broken chars when posted online:

Anyone who needs the data, send an email titled ��To the Guardians of Peace�� to the following email addresses.

Reading readme.txt in EUCCN or EUCKR encoding (standard encoding for China and Korea, respectively) will result in:

Anyone who needs the data, send an email titled 《To the Guardians of Peace》 to the following email addresses.

The broken characters are fixed and actually makes sense.

This seems to point toward Chinese (oh surprise) or Korean hackers.