User blog comment:DaNASCAT/Technical Update: April 22, 2015/@comment-26009167-20150423114658/@comment-126761-20150423133133

As it was a security issue, it's not generally the kind of thing we'd get very specific about. Having said that, we have openly viewable source code, and RansomTime has indeed spotted at least part of it.