After a little over a year of hiding out at PROSPERO OOO/AS200593 Gootloader has set its sails for another shady Russian hosting provider Proton66 OOO /Proton66 LLC/AS198953. Initially it looks like just the C2 that proxied endpoints communicate to. The new IP address Command and Control (C2) is Name: setting.ccIP Address: 45.135.232.53 This information was […]
