skip to Main Content
bitcoin
Bitcoin (BTC) $ 98,568.41 0.12%
ethereum
Ethereum (ETH) $ 3,353.64 0.76%
tether
Tether (USDT) $ 1.00 0.08%
solana
Solana (SOL) $ 257.29 0.10%
bnb
BNB (BNB) $ 664.00 6.28%
xrp
XRP (XRP) $ 1.53 8.98%
dogecoin
Dogecoin (DOGE) $ 0.473238 22.19%
usd-coin
USDC (USDC) $ 1.00 0.04%
cardano
Cardano (ADA) $ 1.08 24.80%
staked-ether
Lido Staked Ether (STETH) $ 3,352.25 0.93%

Airdrop Hunter Reportedly Fakes On-Chain Activity with Over 21,000 Sybil Wallets

An unidentified individual has been discovered to have generated an entire ecosystem, including 21,877 Sybil wallets, its own token, and even a decentralized exchange (DEX), to falsify on-chain activity.

DeFi Analyst Exposes Fake On-Chain Activity Scheme

According to DeFi analyst @lingland09, the individual funded each of his wallets with small amounts of ether (ETH), then deployed a smart contract for a non-open sourced token referred to as gemstone (GEM).

After the token was launched, the schemer developed a personal DEX, slowly carrying out transactions between his wallets to create the illusion of actual activity. The transactions were cleverly spread out over different months, weeks, and days to mimic the behavior of other L2 projects.

Once operational, the DEX was used to add liquidity to the GEM tokens with a fund of 80 ETH, artificially inflating the token’s value.

“Then he swapped $gem tokens that he claimed from 21877 wallets at gem/eth pair and gained 0.6- 0.7 eth value of profit.” @lingland09 revealed.

This person also used the same liquidity repeatedly, avoiding any negative effects from price slippage. As a result, they managed to execute transactions on the zkSync Era network with minimal expenses.

The individual also created a trading bot to automate the process, generating ten transactions with a total volume of $10,000 on the zkSync Era network. Notably, the analyst could only trace some of the fake wallets.

“Zkscan Explorer only supports 1k pages of history for each contract. Thus, I’ve only been able to trace 10k wallets tied to this individual’s operation,” @lingland09 stated.

However, @the_matter_labs was able to identify all 21,877 fake Sybil wallets linked to the $gem token contract.

Suspicious Activity Linked to Alleged Fake Airdrop

The motive behind the actions remains unclear. However, the analyst speculates that the individual is a “professional airdrop hunter,” possibly preparing for a fake airdrop by creating activity on the zkSync Era network.

Airdrops, a common marketing tactic in the cryptocurrency world, are exploited by Sybil attackers to defraud users. Airdrops involve distributing free tokens or coins to create interest. In a Sybil attack, the attacker creates multiple fake accounts posing as real users with the aim of taking advantage of other users.

A recent such example is the March ARB governance token airdrop by Arbitrum, which encountered issues due to an increase in Sybil activity caused by ineffective detection rules. According to crypto security researcher X-explore, over 279,328 same-person and 148,595 Sybil addresses exploited these flaws.

The post Airdrop Hunter Reportedly Fakes On-Chain Activity with Over 21,000 Sybil Wallets appeared first on CryptoPotato.

Loading data ...
Comparison
View chart compare
View table compare
Back To Top