I have been investigating a phishing scam and I have noticed a pattern when stolen Bitcoins are moved.
Bitcoins are stolen from a victim to a malicious address, then funds are moved twice, and then funds are sent to an address alongside an OP Return output. This happens every time funds are stolen and each OP Return output holds different data.
I understand that OP Return is used to store data on the Blockchain and in some cases can be decoded using a hex decoder to reveal a message. In this case, the data (once decoded to UTF8 or ASCII) is not readable and I suspect the data is not a text message.
Can anyone suggest what this data could represent?
An example transaction can be found here:
https://www.blockchain.com/btc/tx/dacfa8ac047ae95bc7644674d1ebed03bd4f6c5285bc37ab1ad934d55e532d1b
You can get bonuses upto $100 FREE BONUS when you:
π° Install these recommended apps:
π² SocialGood - 100% Crypto Back on Everyday Shopping
π² xPortal - The DeFi For The Next Billion
π² CryptoTab Browser - Lightweight, fast, and ready to mine!
π° Register on these recommended exchanges:
π‘ Binanceπ‘ Bitfinexπ‘ Bitmartπ‘ Bittrexπ‘ Bitget
π‘ CoinExπ‘ Crypto.comπ‘ Gate.ioπ‘ Huobiπ‘ Kucoin.
Comments