Share this page!

Maybe Scrolly?
0xScope (🪬 . 🪬) Profile picture
Twitter logo
Jan 4 6 tweets 4 min read
🚨Massive NFTs have been hacked including multiple #BAYC & #CryptoPunks & #Meetbits of @CryptoNovo311, the total hacked value is $6M+.

We identify the whole process and hacker address, and those funds ended up in @ChangeNOW_io. Image
Before his NFT got transferred, it seems he approved the hacked collection to
0x8e25ab3382ad5bde35a09e72d3b9a851a7cc8d00 (0x8e)
and then 0x8e transfer all NFT to:
0x43ca3957a188ee03da87d6bed138bcc8d5c3d7a0(0x43) ImageImage
0x43 takes all the offers and swapped the $ETH he gets to $ETH and goes to #changenow.

(hacker tries to confuse others but with money flow, you can clearly see where the $ETH goes) Image
For now, the hacker has cleared all the ETH positions to #changenow.

Recently, #changenow and #fixfloat has become the major money laundry hub for the crypto exploiters, this should be worth some attention.
Furthermore:

Hacker's initial gas from:
0x67472bef5eef545ea05c919589f7b287c7a42588
and this address can trace back to:
0x62d480a2771796493eebb03965da676c97f398c9
Which performed another exploit. Image
See the money flow for an overview:

watchers.pro/#/moneyFlow/0x… Image

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with 0xScope (🪬 . 🪬)

0xScope (🪬 . 🪬) Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ScopeProtocol

0xScope (🪬 . 🪬) Profile picture
Jan 6
Huobi had a net outflow of 11.7M in the past hour and 57.9M in the past 24 hours, the net outflow velocity appears to be increasing.
The largest token outflow in the last 24 hours is $USDC (-9.45%). Image
Huobi is currently the exchange with the largest asset outflow in the past 24 hours, and the token that #Huobi currently holds the biggest position is $HT, while other exchanges are stable coins and $ETH. Image
The chains with the most asset outflows are #Ethereum and #Tron, but #Huobi's Eco chain (Heco) balance has increased.

Currently, 44.74% of Huobi's Ethereum assets are $HT.
The drop in $HT price may have a greater impact on the total balance. Image
Read 4 tweets
0xScope (🪬 . 🪬) Profile picture
Jan 6
🚨 The @justinsuntron is super active on #Tron today.

Here's what he did:

1. Withdraw 62M USDT on #Justlend
2. Buy 2M USDD using 2M USDT on #Sun
3. Withdraw 6M USDC on #JustLend and transferred out
4. Transfer 60M USDT to @binance

tronscan.org/#/address/TPyj… Image
Based on the record, Justin usually:

1. Transfer $USDT on #Tron to binance
2. Transfer $USDC/ $BUSD out from binance on Ethereum
3. Cashed out them on #Paxos and #Circle.

Let's see if Justin will do this again.

Since the last time we posted about this, Justin cashed out $88.5M $BUSD on the last day of 2022. Image
Read 5 tweets
0xScope (🪬 . 🪬) Profile picture
Jan 6
🚨.@GenesisTrading laid off 30% of its employees and is "considering" filing for bankruptcy according to @WSJ.

wsj.com/amp/articles/c…

1. How did genesis end up here?
2. How does this gonna affect the market and why should you care?

A explain thread.
👇
Now, Who is #Genesis?

Genesis "was" a leading CeFi platform that provides mainly lending services for institutions.

A lending platform usually borrows money from one side and lends the borrowed money to the other side to profit from the interest gap.

That's what CeFi does.
But #Genesis is not independent, it is under the control of @DCGco and @BarrySilbert.

#GrayScale is also part of the group.

That's why you see @cameron battling Barry on CT with an open letter. Image
Read 21 tweets
0xScope (🪬 . 🪬) Profile picture
Nov 22, 2022
We find a smart money (or dark money?) address that always borrows >$10M USDC/ETH and deposits it to exchange every time before FTX-drainer dumps ETH.
Chances are he knows the activity of FTX-drainer and benefits from it:
🧵
🎯Target: 0xd275e5cb559d6dc236a5f8002a5f0b4c8e610701

⏳Time: 2022-11-21 UTC
14:11 0xd275 transferred 15,000 $ETH to the exchange
16:11 the FTX hacker began to transfer 15,000 $ETH to multiple addresses

Both happened to transfer the same amount.
⌛️2022-11-21
8:00 0xd275 began to transfer $USDC to the exchange. #Binance
9:16 Hacker began to sell $ETH to get $RenBTC.
Read 7 tweets
0xScope (🪬 . 🪬) Profile picture
Nov 21, 2022
🕵️According to our #JumpCrypto entity, for now, they have over $2.5B worth of assets on Ethereum, and 90%+ of them are $ETH (2.07M/$2.28B).
This makes Jump the single largest EOA holder.
Every move Jump makes matters to ETH holders.
Of all 56 addresses within Jump Entity, one address holds 2M ETH, let's see what does this address recently do:
0x0716a17fbaee714f1e6ab0f9d59edbc5f09815c0
This address total was sent out 60K $ETH after October, where did it go?
Time to use our money flow tool.
Well, the finding is surprising and no-surprising at the same time, the ETH got out and was immediately moved to another address and seems deposited around $39M to exchanges like #Gemini.
Read 5 tweets
0xScope (🪬 . 🪬) Profile picture
Nov 10, 2022
😬Rumor has it that @SBF_FTX has been moving users' funds around. We dived in for a hell lot of time and here's what we found:

🚨We found that @SBF_FTX and @AlamedaResearch have been SHARING the same funding and lots of exchange accounts for a long time 🫡.

Proofs👇:
First of all, we applied address clustering to all the @SBF addresses we can find, and one of them is highly connected with a tagged #Alameda's address.
SBF's: 0xD57581D9e42E9032e6f60422fA619b4A4574Ba79 (0xD5)
Alameda's:
0xf108a465a5dafb51bb48615b1a4f5e00401ff90d (0xf1)
Why do we say address 0xD5 is @SBF_FTX?
Okay, first of all, he admits himself.

And we also find this is one of the multi-signer of @sushiswap, which SBF is.

panewslab.com/en/articledeta…
Read 11 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(