Funds stolen during the July 18 hack on the Indian crypto exchange WazirX are being converted into Ether (ETH). Data from the on-chain tracker SpotOnChain indicates that the attacker has converted over $200 million worth of assets to ETH. At the time of publication, the blacklisted wallet held 59,097 ETH.
In the hack, 15,298 ETH was stolen directly from WazirXβs multisig wallet, alongside 200 different crypto assets, including $102 million worth of SHIB, $11.25 million worth of MATIC, $7.6 million worth of PEPE, $7.79 million worth of USDT, and $3.5 million worth of GALA.
Most of these assets have been swapped for ETH, with the wallet currently holding just over $11 million worth of altcoins such as Chromia (CHR), Celer Network (CELR), Frontier (FRONT), and Ooki (OOKI) tokens.
Meanwhile, blockchain analytics firm Lookonchain noted that the hacker deposited 7.7 million DENT tokens to a Binance address, adding that the wallet βhas not been used before.β
Lakov Levin, co-founder of Rivo, mentioned that the hacker likely swapped the ERC-20 tokens to Ether due to its high liquidity. He also emphasized that it is βnot possible to block ETH like stablecoins.β
ERC-20 tokens have a contract function that allows contract owners to maintain a list of addresses that are prohibited from participating in token transactions. This is typically implemented using a mapping structure in the smart contract, which checks the blacklist before executing transfers, thus preventing any interaction with the blacklisted addresses.
In contrast, ETH lacks this feature since it operates on the core Ethereum protocol, which does not allow for the modification of address permissions.
Akhsay Nassa, co-founder of Chimp DEX, also shared a similar opinion, explaining that the attacker wants to prevent the funds from being frozen by authorities.
βWith a large, active market, ETH allows for quick and fair trades. Moreover, its numerous cross-chain bridges and exchanges enable easy movement between blockchains, further obscuring the trail,β he added.
The attack was the result of the exchangeβs wallet management system being exploited. There were discrepancies in data displayed for Liminal, the digital asset custody and wallet infrastructure provider for the exchange.
βWe suspect the payload was replaced to transfer wallet control to an attacker,β the WazirX team said in its post-mortem of the incident.
Meanwhile, crypto sleuth ZachXBT speculated that North Koreaβs Lazarus group may have been involved. Blockchain analytics firm Elliptic also reached a similar conclusion.
WazirX halted withdrawals for both crypto and fiat and has vowed to recover the funds.
Stay updated with the latest crypto news on Global Crypto News.