WazirX attacker converts $235 million theft into Ethereum, holds nearly 60K ETH

On-chain information shows that the WazirX exploiter has converted astir of the stolen assets from the Indian crypto level into Ethereum.

On July 18, WazirX was exploited for astir $235 million successful respective integer assets, with blockchain investigators suggesting that the North Korea-backed Lazarus Group perpetrated the attack.

While the speech rapidly implemented measures to halt the theft, recovering the funds seems improbable arsenic the attacker actively converts the stolen assets into ETH, the second-largest integer plus by marketplace capitalization.

WazirX exploiter holds astir 60,000 ETH.

Blockchain expert Lookonchain reported that the WazirX exploiter had converted astir of the stolen assets to 43,800 ETH, worthy $149.46 million. This brings the full ETH successful the attacker holding to 59,097 ETH, valued astatine astir $201.67 million.

Market observers suggested that the plus conversion was portion of a blase wealth laundering method that besides involves utilizing crypto mixing services similar Tornado Cash to obfuscate the transaction trails.

Despite this, the exploiter’s code inactive has up to $15 cardinal worthy of different comparatively lesser-known integer assets left. This includes 1.66 cardinal DENT, worthy $1.56 million, and 6.76 cardinal CHR, worthy $1.72 million, among others.

Meanwhile, on-chain information shows the exploiter sent 7.7 cardinal DENT, worthy $7,300, to a caller Binance deposit address. Lookonchain said:

“It is worthy noting that the WazirX exploiter deposited 7.7 cardinal DENT ($7.3K) to a Binance deposit code that has not been utilized before.”

‘Force Majeure’

A post-mortem report from the speech showed that the affected wallet utilized Liminal’s services, a integer plus custody and wallet infrastructure provider.

WazirX explained that the exploit resulted from discrepancies betwixt the information connected Liminal’s interface and the transaction’s content. It wrote:

“During the cyber attack, determination was a mismatch betwixt the accusation displayed connected Liminal’s interface and what was really signed. We fishy the payload was replaced to transportation wallet power to an attacker.”

The speech besides described the onslaught arsenic a “force majeure” lawsuit beyond its power and assured it was actively moving to retrieve the stolen funds.

The station WazirX attacker converts $235 cardinal theft into Ethereum, holds astir 60K ETH appeared archetypal connected CryptoSlate.