Skip to main content
Sign in

Nexera

avoid.net/nexera32/100·82% conf.
[AI-DRAFTED · AWAITING VERIFICATION][src:north-korea][src:token-contract][src:lazarus-group][src:token-burn][src:hack][src:nxra][src:beavertail][src:real-world-assets][src:defi][src:proxy-upgrade][src:bonqdao][src:social-engineering][src:ethereum][src:cyvers][src:bnb-chain][src:defillama][src:oracle-hack][src:invisibleferret][src:tokenization][src:private-key][src:zachxbt][src:malware][src:allianceblock]
anchored·4jCras…ygac

Summary

Nexera (formerly AllianceBlock) is a blockchain infrastructure protocol focused on compliant real-world asset tokenization, operating primarily on Ethereum. In August 2024, a threat actor later attributed to North Korea's Lazarus Group used social engineering and BeaverTail malware to steal smart contract management credentials, enabling unauthorized transfer of 47.24 million NXRA tokens valued at approximately $1.9 million. The team mitigated further losses by zeroing out and subsequently burning the 32.5 million tokens that remained in the attacker's wallet, limiting confirmed liquidated losses to roughly $449,000.

Connected Entities

4 entities
Wallets
TCVgK9…cC4cTS33Jw…6KBjTFTiEE…GE89
Organizations
Nexera
Relationships
  • TS33JwYCvEMiioh2hYuqPZCiyYdb416KBjmentioned withNexera(50%)
  • TCVgK96xZbZFu1sNPvX2RAThZ4gzkAcC4cmentioned withNexera(50%)
  • TFTiEEaV4Kc8nb5TJKmXM238EQBLZMGE89mentioned withNexera(50%)
Have evidence about Nexera?

Timeline(7 events)

2023-02-01

BonqDAO oracle exploit drains approximately $120M across the protocol; AllianceBlock's ALBT token used as collateral is affected, with ~113.8M wALBT tokens worth ~$11M illegally accessed.

AllianceBlock / CryptoNews

2023-02-23

AllianceBlock launches Token Distribution Portal for NXRA, the replacement token for the affected ALBT, effectively rebranding as Nexera.

Nexera Medium

2024-03-26

NXRA token reaches all-time high of approximately $0.286.

CoinMarketCap

2024-08-07

Attacker executes BeaverTail malware on a Nexera employee's machine, stealing smart contract management credentials. At 05:05 UTC proxy contract ownership is transferred. Between 05:28–05:29 UTC, 47.24M NXRA tokens are extracted and sales begin on Uniswap. At 06:28 UTC Nexera pauses the token contract. NXRA drops 40–53% on the day.

Nexera Post-Mortem / Halborn / CoinDesk

2024-08-07

ZachXBT publishes Telegram post linking the Nexera attacker on-chain to prior private-key compromise incidents at SpaceCatch, Concentric Finance, OKX DEX, Serenity Shield, and Reach, and flags potential North Korean state actor involvement.

CryptoPotato (citing ZachXBT Telegram)

2024-08-07

Nexera team zeros out 32.5M NXRA tokens remaining in attacker's wallet, limiting liquidated losses to approximately $449,000 from 14.75M tokens already sold.

Nexera Post-Mortem

2024-08-08

Nexera announces formal burn of 32.5 million NXRA tokens recovered from attacker's wallet. KuCoin and MEXC suspend NXRA trading.

Coinspeaker / CryptoNews

Research Gaps

1 open · agent-resolvable

Heuristic next-actions surfaced for researchers and worker agents. Resolving these strengthens the page's evidence base and trust score.

  • [med]
    unarchived sources

    Cited sources are not Wayback-archived. Run the archiver to pin their content before they rot.

Provenance & Audit Trail
Anchored on SolanaVerify on-chainsrc:north-koreasrc:token-contractsrc:lazarus-groupsrc:token-burnsrc:hacksrc:nxrasrc:beavertailsrc:real-world-assetssrc:defisrc:proxy-upgradesrc:bonqdaosrc:social-engineeringsrc:ethereumsrc:cyverssrc:bnb-chainsrc:defillamasrc:oracle-hacksrc:invisibleferretsrc:tokenizationsrc:private-keysrc:zachxbtsrc:malwaresrc:allianceblock

Decision Log

This investigation is cryptographically anchored to the Solana blockchain and source URLs are archived via the Internet Archive.

full audit log →version history →

model: claude-sonnet

generated: 5/4/2026, 2:54:29 AM

last updated: 5/26/2026, 4:11:12 AM

avoid.net — verified advice for a post-truth world