info@amlcrypto.io
  • website icon
    •  
  • website icon
    •  
  • website icon
    •  
  • website icon
    •  
  • website icon
    •  
  • website icon
 
  • website icon
    •  
  • website icon
    •  
  • website icon
ru
Educational materials
Crypto fraud
Investigations
News
FAQ

Case #6
The victim personally sends the funds to the fraudster. Fake trader.

The victim turned to traders (the so-called “signal traders”) to promote the account balance on Binance. The appeal was directed to a channel with a catchy name. The head of the channel got in touch by himself.
ORDER AN INCIDENT REPORT
Description of the situation
Investigation
Result
Description of the situation

The channel representative offers to create a sub-account on Binance for his new client under the pretext that he won’t have direct access to account, but will only be able to properly invest funds. The goal is to increase the client's funds.


After that, the attacker provided the address TPtaQ... for replenishment, lying that this is the same Binance subaccount. The client funded this address with a large amount in USDT tokens. After that, the scammer disappeared and stopped responding to messages.

Investigation

Having collected all the necessary information, our compliance officer started the investigation.


The first step was to check the address indicated by the scammer as a Binance subaccount - it was a regular user address that had nothing similar with the exchange.


After a small analysis of the funds flow through several addresses, a wallet was identified from which the attacker withdrew funds. The withdrawal of funds took place on a small exchanger. Moreover, this exchanger showed information on the transaction of interest to us up to the Qiwi wallet. Thus, we got to the phone number that was linked to the Qiwi wallet. Qiwi wallet, in turn, was under the control of the user, who also fell for the tricks of the same scammer. Having collected the information together, we found points of coincidence. Another part of the funds through several transit addresses was withdrawn to the OKX centralized exchange.

The revealed data was enough to draw up a report, on the basis of which law enforcement agencies initiated a criminal case. The fact of opening a criminal case was enough to apply OKX services. At the moment, the personal data of the attacker has been obtained and a pre-trial investigation is underway.

Positive
Result
  • The revealed data is enough to initiate a criminal case on behalf of law enforcement agencies.
  • Blockchain analysis revealed addresses affiliated and/or owned by a fraudster leading to CEX OKX. Service provided the necessary information for the investigation.
  • Identified fraudster.

Chance to recover stolen funds

High

THE COST OF PREPARING A REPORT DEPENDS ON THE COMPLEXITY OF THE PARTICULAR CASE AND THE WORKLOAD OF OUR COMPLIANCE OFFICER.

Leave an application and we'll do a quick scoping of the situation and give you estimate cost.
Calculate the cost
Explore other cases →
We also recommend