Comae examined reported code similarities between a February 2017 WannaCry sample and a 2015 Contopee sample that Symantec had previously attributed to Lazarus Group. The excerpt cites Neel Mehta's initial comparison, Kaspersky's shared suspicion, and Symantec's later statement that it also found similarities, while presenting hashes and appendix material for the compared samples. The author frames the finding as potential evidence that WannaCry may have been developed by Lazarus Group, but keeps the conclusion conditional on validation. If confirmed, the linkage would connect global ransomware activity with a threat actor previously associated in the excerpt with financially motivated intrusions and would imply use of leaked offensive capabilities in a disruptive campaign.