How Russian hosting provided services to cybercriminals: on-chain analysis
The service assisted in spreading malware to extort and steal confidential data
02.07.2025
605
2 min
0
In May 2025, the US Office of Foreign Assets Control (OFAC) imposed sanctions against Russian hosting company Aeza Group LLC. GetBlock AML Research explains why the company came to the attention of the US authorities.
In plain sight
The restrictive measures against Aeza Group LLC were imposed on two important criteria at once: to increase sanctions pressure on Russian Internet infrastructure and to strike a blow against services that provide services to cybercriminals.

Server rental on Aeza’s website
According to OFAC, Aeza Group LLC is linked to developers of malware used to extort and steal sensitive data.
On-chain data
Aeza Group LLC used a wallet on the TRON network (TU4tDFRvcKhAZ1jdihojmBWZqvJhQCnJ4F) for operational activities. For additional anonymization of customers, the hosting used various payment services that acted as an intermediary for making payments. The funds received were sent to centralized exchanges.

Aeza Group LLC wallet links
In addition to links to cybercriminals, the Aeza Group LLC wallet also interacted with Garantex (Grinex) and other sanctions platforms.
Useful material?
Research
One and the same cryptocurrency address received two completely opposite assessments from different analytics systems: from an ordinary gambling service to an extremely severe criminal offense. This story has become the starting point for a broader conversation about what the scientific standards of blockchain analysis should look like — and why errors in systems like these can shape the fates of real people.
Jul 1, 2026
Research
The blockchain has helped uncover the ties between cryptocurrency fundraising campaigns, exchangers in Syria, and intermediaries in several countries around the world. A telltale pattern has emerged in which the same addresses were used across multiple donation drives at once
Jun 24, 2026
Research
Four Iranian cryptocurrency exchanges accounted for roughly 78% of all digital asset volume tied to the country in 2025. They have now become the focal point of the largest U.S. sanctions campaign against Iran's cryptocurrency infrastructure.
Jun 5, 2026
Research
A financial system is already up and running on public blockchains, with loans, analogues of U.S. Treasuries, and automated capital markets. More than $551 billion has flowed through DeFi protocols — but most of that activity has nothing to do with the real economy and everything to do with the speculative build-up of risk.
May 29, 2026
Research
Around 97% of Chinese suppliers of chemicals used to make fentanyl accept payment in cryptocurrency. The volume of such transactions continues to grow alongside the global market for synthetic drugs
May 22, 2026
Research
For the first time, the new law makes blockchain analytics an officially mandatory tool of financial oversight in the United States. Authorities will also gain the power to restrict transactions with foreign crypto services tied to money-laundering risks.
May 20, 2026
Telegram
Twitter