Tx: 8d6ad8f395a8c629b12bc87a0907695e7c1e9ab7b9931e9dbbd4d81e8a193293
4 inputs to this transaction:
- One of them is the address Coinsecure shared after the hack incident which starts with 1BaE
- Address starting with 3Qm, 3Pe and 3Ks links to Coinsecure’s publicly known addresses
One output takes us to Gemini Exchange:
Other takes us to Huobi following the larger amounts shuffled in different bech32 addresses:
One output above which was yet to be expanded also takes us to Huobi:
One output involved in a transaction looked interesting and I wanted to follow it which also takes us to Huobi. The amount you see in the final transaction is not necessarily the amount sent by one user and most likely an internal transfer from hot wallets of users to cold storage.
Looked at few other transactions following one of the outputs and it had different amounts going to Binance, Bitstamp, Huobi, Luno, Coinbase, Bitmex, Coinpayments etc.
Few interesting transactions were sent to 999dice.com and freebitco.in
All these transaction could have been helpful if they were done recently or I can reach out to some of these exchanges and they help me which is less likely and not even part of my research. I will keep an eye on the unspent transaction output I found during this analysis:
1Gr2rFHqwmaVs4p9e7bGWWLhHYiAgRHjdT
1MHRnCueCA5NS5gPeoRBkUJSoJ1ncrzeyP
17WaNbAyoPRTZJZ1BiTadadShaytpUPWmY
3CZHoCNqCwT5tfMaY6JagmS8Kb5JAp7b6s
I added all the above addresses in Blockonomics address watcher list
Tools used: OXT, KYCP, Blockchair, Blockonomics
