Uncovering ALVIVA HOLDING: Links to Russian Shell Companies and Cybercrime
This is an Investigative Report on how the most malicious hosting provider is linked to a Shell Company registered in Seychelles 🇸🇨. This article will not cover Ransomware Analysis, but will focus purely on the incriminating evidence emanating from this case study as we unravel the further Investigation.
1. EXECUTIVE SUMMARY
2. ANCHOR POINT — CLOP RANSOMWARE
3. MALICIOUS INDICATORS OF ALVIVA HOLDINGS
4. ASN ANALYSIS: EXTENDED
4.1 FOP (Luhansk)
4.2 Verdina Ltd (Belize)
5. TRACING THE FOOTPRINTS: ALVIVA HOLDING LTD
6. ALPHA CONSULTING: BRIDGING CONNECTION ALVIVA HOLDING LTD
7. WHO IS DENIS NACHAEV?
8. UK LAWS — A HOTBED FOR MALPRACTICE
9. CONCLUSION
10. KEY-TAKEAWAYS
11. WHAT YOU CAN DO?
12. IOCs
13. EXTRA READING
EXECUTIVE SUMMARY
Beginning the investigation with Clop Ransomware, we navigate to the shady practices of a popular hosting provider “ALVIVA HOLDING”, which is a de-facto choice of cyber criminals to build their malicious business Empire.
But these criminals are less-bothered about the service which they rely on is already and indirectly connected to a banned/black-listed organization (ALPHA CONSULTING) which has a Geo-Political ties with the large sharks in the crime industry that includes money laundering, drug trafficking etc as per Pandora Leaks.
This is a detailed investigation on connecting the dots between a Shell Company which is involved in the running of a cyber crime mafia that wreaks havoc on global organizations in the form of Ransomware, DDoS, Infostealer attacks, Bulletproof Hosting etc.
