Analysis of funds stolen from Nobitex, Iran's largest exchange

Analysis of funds stolen from Nobitex, Iran's largest exchange
TechFlow
TechFlow
BTC+0.75%
ETH+1.20%
DOGE+2.64%
XRP+1.93%
SOL+0.96%
TRX+1.28%
TON+1.90%
UNI+3.21%
AXS+0.59%
PEPE+2.94%
MASK+3.33%
MEME+2.85%
AAVE-1.03%
RENDER+1.30%

Written by: Beosin

On June 18, Nobitex, Iran's largest crypto exchange, announced that it had been hacked and lost about $100 million, involving a variety of cryptocurrencies such as BTC, ETH, Doge, XRP, SOL, TRX, and Ton. A pro-Israel group called "Gonjeshke Darande" has claimed responsibility for the attack, characterizing it as a strike against Iran's crypto infrastructure. The Beosin security team immediately analyzed and tracked the funds, and shared the results as follows:

The

stolen funds flowed to

this attack involving multiple blockchain networks, and through Beosin Trace analysis, the attacker's address has been confirmed as follows:

TRON network: TKFuckiRGCTerroristsNoBiTEXy2r7mNX

Ethereum Network: 0xffFFfFFffFFffFfFffFFfFfFfFFFFfFfFFFFDead

BTC Network: 1FuckiRGCTerroristsNoBiTEXXXaAovLX

Solana Network: FuckiRGCTerroristsNoBiTEXXXXXXXXXXXXXXXXXXXXXX

Ripple Network: rFuckiRGCTerroristsNoBiTEXypBrmUM

TON Network: UQABFuckIRGCTerroristsNOBITEX1111111111111111_jT

Harmony Network: one19fuckterr0rfuckterr0rfuckterr0rxn7kj7u

Dogecoin Network: DFuckiRGCTerroristsNoBiTEXXXWLW65t

Among them, 23,531 TRX and 49,439,310 USDT were stolen from the TRON network, with a total loss of about $49.45 million, and its fund flow chart is as follows:

Beosin Trace Fund Flow Chart

939,556 USDT, 262.87 ETH, and a variety of Ethereum ecosystem project tokens (UNI, AXS, PEPE, MASK, MEME, AAVE, etc.) were stolen from the Ethereum network, with a total loss of about $8.2 million. The following are the main stolen asset flows of the Ethereum network:

Beosin Trace Funds Flow Chart

The

Bitcoin network stole 18.47 BTC with a loss of about $1.93 million, and the following is the flow of stolen funds from the BTC network:

Beosin Trace Funds Flow Chart

373,852 XRP stolen from the RIpple network, with a total loss of about $800,000

:

Beosin Trace Money Flow Graph

173 SOL, 336,067 WIFs and 31,954 RENDER were stolen from the Solana network, with a total loss of about $400,000

:

Beosin KYT Funds Flow Chart

The Dogecoin network stole 39,409,954 Doge, with a loss of about $6.7 million, while the Harmony and TON networks together lost about $400,000. At present, more addresses of the attacker are still being investigated and confirmed, and Beosin Trace and KYT have added the above-confirmed addresses related to the attacker to the black address database, and will continue to track them in the future.

Immediately

after the Nobitex Response attack, Nobitex issued a public statement indicating that the majority of the exchange's crypto assets are still stored in secure cold wallets and are unaffected. In addition, Nobitex has taken steps to isolate the attacked systems and enhance their security posture to reduce the risk of similar attacks in the future.

Show original
The content on this page is provided by third parties. Unless otherwise stated, OKX is not the author of the cited article(s) and does not claim any copyright in the materials. The content is provided for informational purposes only and does not represent the views of OKX. It is not intended to be an endorsement of any kind and should not be considered investment advice or a solicitation to buy or sell digital assets. To the extent generative AI is utilized to provide summaries or other information, such AI generated content may be inaccurate or inconsistent. Please read the linked article for more details and information. OKX is not responsible for content hosted on third party sites. Digital asset holdings, including stablecoins and NFTs, involve a high degree of risk and can fluctuate greatly. You should carefully consider whether trading or holding digital assets is suitable for you in light of your financial condition.