← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
PROSPERO & Proton66: Tracing Uncovering the links between bulletproof networks
WHITE CyberHunter_NL 2025-03-03 Modified: 2025-04-29
144
IOCs
HIGH VOLUME
The Russian autonomous system PROSPERO (AS200593) could be linked with a high level of confidence to Proton66 (AS198953), another Russian AS, that we believe to be connected to the bulletproof services named ‘SecureHost‘ and ‘BEARHOST‘. We notably observed that both network’s configurations are almost identical in terms of peering agreements and their respective share of loads throughout time.
Indicators of Compromise (20 / 144 total)
All CIDR URL domain email hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://5.42.199.0/24' 2025-03-03
URL http://91.202.233.0/24' 2025-03-03
URL http://allphaa-gr.com/assets/myAlpha.apk 2025-03-03
URL http://avastcsw.com/Avastavv.apk'. 2025-03-03
URL http://avastcsw.com/anydesk.dmg' 2025-03-03
URL http://crome-update-gr.com/ready.apk' 2025-03-03
URL http://doggygangers.com/YfMv2QsjpCQl845BWSYNfNOQitweyze_Z6lIlrRr43MRjX_HrM/get_downl 2025-03-03
URL http://itreshenia.ru 2025-03-03
URL http://letmespellmoons.com/bg/js/stat.js/' 2025-03-03
URL http://marvin-occentus.net/statistic/js/stat.js' 2025-03-03
URL http://na1.net/hubfs/5556002/2022%20PDF%20Download%20Assets/ADA%20Compliant%20pdfs/Reports/PUBLIC_Gootloa 2025-03-03
URL http://tter.com/I 2025-03-03
URL http://www-wpx.net/assets/core.js'. 2025-03-03
URL http://www.hostway.ru 2025-03-03
URL https://blog.sekoia.io/pikabot-a-guide-to-its-deep-secrets-and-operations/ 2025-03-03
URL https://fr.li 2025-03-03
URL https://info.spamhaus.com/hubfs/Botnet%20Reports/Jan- 2025-03-03
URL https://info.spamhaus.com/hubfs/Botnet%20Reports/Jan-Jun%202024%20Botnet%20Threat%20Update.pdf 2025-03-03
URL https://www.energy.vic.gov.au/households/help-paying-your-energy-bills/energy-bill-relief-fund 2025-03-03
URL https://www.hyas.com/blog/hyas-insight-uncovers-and-mitigates-a-russian-based-cyberattack 2025-03-03
References (1)
↗ https://www.intrinsec.com/prospero-proton66-tracing-uncovering-the-links-between-bulletproof-networks/