red 
American cash register side of foreign property control (OFAC)–Together with the Australian Department of Foreign Affairs and Trade, and the share in the UK, a joint and development office–today has sanctioned Zserverers and two administrators. Address of Kryptoturila who use these actors added on a specially marked list of national (SDN).
Zserveri, service hosting provider in Russia based in Russia, is marked for its role in support for the attacks for Rinsbit. Lockbit Ransomware targeted thousands of victims around the world, causing billions of dollars in total losses.
Zservers were also connected On malicious software on the attacks on the Ukrainian goals committed by SAINTBEAR, an actor for a threat that is connected in Russia.
The OFAC has added four Bitcoin addresses associated with Zservers and its administrator Mishin Alexander Igorevich on the SDN list. They received a collectively bitcoin worth $ 1.1 million. Elliptic has identified several other addresses related to these actors independently.
Confirmation of this connection between LOCKBIT and ZSERER, an elliptical investigator can be used to identify several direct and indirect bitcoin transactions between these actors.
Screenshot of the elliptic InvestigatorShowing selected bitcoin flows between Lockbit and Zserver.
Â
How can we help
Elliptic has taken emergency action to ensure that the addresses we have identified with the entities are included in the latest tags available to the screen and trace using our Holistic Blockchane new generation next generation. Users will now be able to ensure that not encouraging funds originating from – or sent to – entity or individuals included in this label.
