Funds stolen via the July 18 hack on Indian crypto exchange WazirX are being swapped for Ether (ETH). Data from the on-chain tracker SpotOnChain indicates the attacker has converted over $200 million worth of the siphoned assets to ETH.
15,298 ETH was stolen directly from WazirX’s multisig wallet, alongside 200 different crypto assets. These include $102 million worth of SHIB, $11.25 million worth of MATIC, $7.6 million worth of PEPE, $7.79 million worth of USDT, and $3.5 million worth of GALA.
Most of these assets have been swapped for ETH, with the wallet currently holding just over $11 million worth of altcoins such as Chromia (CHR), Celer Network (CELR), Frontier (FRONT), and Ooki (OOKI) tokens. Blockchain analytics firm Lookonchain highlighted that the hacker made a deposit of 7.7 million DENT tokens to a Binance address, noting the wallet "has not been used before."
ERC-20 tokens have a contract function allowing contract owners to maintain a list of addresses prohibited from participating in token transactions. This is implemented using a mapping structure in the smart contract, which checks the blacklist before executing transfers.
In contrast, ETH lacks this feature since it operates on the core Ethereum protocol, which does not allow modification of address permissions. Akhsay Nassa, co-founder of Chimp DEX, explained that the attacker aims to prevent the funds from being frozen by authorities.
“With a large, active market, ETH allows for quick and fair trades. Its numerous cross-chain bridges and exchanges enable easy blockchain movement, further obscuring the trail,” Nassa added.
The attack resulted from the exchange’s wallet management system being exploited. There were discrepancies in data displayed for Liminal, the digital asset custody and wallet infrastructure provider for WazirX. “We suspect the payload was replaced to transfer wallet control to an attacker,” the WazirX team said in its post-mortem of the incident.
Crypto sleuth ZachXBT speculated that North Korea’s Lazarus group may have been involved. Blockchain analytics firm Elliptic also came to a similar conclusion. WazirX halted withdrawals for both crypto and fiat and has vowed to recover the funds.