Verify a decision

{"actor":"system:backfill","investigation_id":"3dcb72f4-0292-4e27-a1c6-a3df3e0c314f","kind":"publish","page_slug":"blockchain-bandit","published_at":"2026-05-19T16:45:05.327Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Blockchain Bandit","sections":[{"content":"The Blockchain Bandit came to public attention in April 2019 when Independent Security Evaluators (ISE), a Baltimore-based cybersecurity firm, published a case study titled 'Ethercombing: Finding Secrets in Popular Places.' Senior security analyst Adrian Bednarek discovered the threat actor inadvertently while conducting research for a corporate client evaluating wallet key-generation algorithms. By scanning eight 32-bit sub-regions of the 256-bit Ethereum private key space and generating an in-memory hash map of all associated public addresses, ISE's tooling achieved approximately 15,000 key generations and lookups per second per CPU core, scanning roughly 34.3 billion keys in an 8-hour period using approximately 1,024 CPU hours total. The research was simultaneously covered by WIRED journalist Andy Greenberg, bringing widespread attention to the vulnerability class. The ISE report confirmed that as of January 13, 2018, the Blockchain Bandit's primary accumulation address held 37,926 ETH valued at approximately $54.3 million at then-prevailing prices.","heading":"Background and Discovery","severity":"critical","sources":[{"credibility":1,"name":"Ethercombing: Finding Secrets in Popular Places — ISE Case Study","type":"research","url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"credibility":2,"name":"Ether Thief Found Stealing Funds With Weak Private Keys — CoinDesk (April 2019)","type":"news_article","url":"https://www.coindesk.com/markets/2019/04/23/ether-thief-found-stealing-funds-with-weak-private-keys"},{"credibility":2,"name":"Blockchain Bandit: How a Hacker Has Been Stealing Millions Worth of ETH — CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/blockchain-bandit-how-a-hacker-has-been-stealing-millions-worth-of-eth-by-guessing-weak-private-keys"}]},{"content":"The attack technique, dubbed 'Ethercombing' by ISE researchers, exploited a fundamental asymmetry in Ethereum's cryptographic architecture: while private keys are 256-bit values drawn from an astronomically large keyspace, certain software implementations produced keys that were far weaker than intended. Identified root causes included code logic errors causing key truncation on output, type confusion, entropy failures (faulty random number generators), random device errors, exception handling failures that defaulted to predictable seeds, memory corruption, and seed reuse across multiple wallets. Some victims generated private keys from short passphrases—including trivially guessable strings such as '1', '2', '3', or blank inputs—which produced deterministic, discoverable keys. The Blockchain Bandit operated what ISE described as an 'active campaign': a blockchain monitoring node that watched for incoming transactions to addresses derived from known weak keys and immediately swept the funds outbound. In a proof-of-concept test, ISE deposited approximately $1 to an address derived from a known weak key (0x4c636a08fdf3692a9bca111e8a7f4a0e28eb4457); the Bandit's system transferred the funds outbound within moments, demonstrating fully automated, near-real-time theft infrastructure.","heading":"Attack Methodology: Ethercombing","severity":"critical","sources":[{"credibility":1,"name":"Ethercombing: Finding Secrets in Popular Places — ISE Case Study","type":"research","url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"credibility":2,"name":"Research on private key generation reveals theft of ETH funds — Help Net Security","type":"news_article","url":"https://www.helpnetsecurity.com/2019/04/24/ethercombing/"},{"credibility":2,"name":"Key-guessing blockchain banditry is discovered in security research — TechXplore","type":"news_article","url":"https://techxplore.com/news/2019-04-key-guessing-blockchain-banditry.html"}]},{"content":"According to the ISE Ethercombing report, the Blockchain Bandit compromised 732 distinct private keys and executed 49,060 transactions on the Ethereum blockchain. The primary accumulation address identified by ISE is 0x957cd4ff9b3894fc78b5134a8dc72b032ffbc464, which is labeled 'Blockchainbandit' on Etherscan. At peak Ethereum prices in January 2018, the holdings in this address reached 37,926 ETH, valued at approximately $54.3 million. Across all activity attributed to the actor, total accumulated ETH has been estimated at over 45,000 ETH, with some later reporting citing figures above 50,000 ETH as funds from multiple controlled addresses were consolidated. The operation targeted over 10,000 individual Ethereum addresses belonging to real users, spanning activity from approximately 2015 through 2018. ISE also identified 13,319 ETH that had been transferred to invalid destination addresses or wallets derived from weak keys, representing funds lost to the broader vulnerability class at a combined peak value of approximately $18.9 million.","heading":"Scale and On-Chain Footprint","severity":"critical","sources":[{"credibility":1,"name":"Ethercombing: Finding Secrets in Popular Places — ISE Case Study","type":"research","url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"credibility":1,"name":"Blockchainbandit address on Etherscan","type":"on_chain","url":"https://etherscan.io/address/0x957cd4ff9b3894fc78b5134a8dc72b032ffbc464"},{"credibility":2,"name":"Blockchain Bandit Has Stolen 45,000 ETH by Guessing Weak Private Keys — CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/blockchain-bandit-has-stolen-45-000-eth-by-guessing-weak-private-keys-report-claims"},{"credibility":2,"name":"Weak private keys; Blockchain Bandit steals away 45000 ETH — Cryptopolitan","type":"news_article","url":"https://www.cryptopolitan.com/weak-private-keys-blockchain-bandit-steals-away-45000-eth/"}]},{"content":"After approximately five to six years of dormancy, the Blockchain Bandit's wallets showed renewed activity beginning January 16, 2023. Between January 16 and January 21, 2023, the actor moved nearly all accumulated holdings—51,000 ETH and 470 BTC—worth approximately $90 million at prevailing prices, to new addresses. Transfers were reportedly executed in batches of approximately 5,000 ETH, occurring between 8:54 PM and 9:18 PM UTC. On-chain analytics firm Chainalysis published analysis of the movement and attributed the timing to rising cryptocurrency prices, noting that Ether had risen approximately 33% and Bitcoin approximately 39% year-to-date at the time. ZachXBT, an independent on-chain investigator, also flagged this activity across public channels. The movement was described by Chainalysis as the first confirmed activity from the Blockchain Bandit's wallets since the original theft period.","heading":"2023 Fund Movement","severity":"critical","sources":[{"credibility":1,"name":"Blockchain Bandit Moves Crypto Funds for First Time in Years — Chainalysis","type":"research","url":"https://www.chainalysis.com/blog/blockchain-bandit-2023/"},{"credibility":2,"name":"Infamous Blockchain Bandit Begins Moving His Stash 6 Years Later — CryptoNews","type":"news_article","url":"https://cryptonews.net/news/security/19857195/"},{"credibility":2,"name":"The Return of the $90M Blockchain Bandit — CoinMarketCap Academy","type":"news_article","url":"https://coinmarketcap.com/academy/article/the-return-of-the-90m-blockchain-bandit"}]},{"content":"On December 30, 2024, ZachXBT identified the Blockchain Bandit executing the largest single consolidation of stolen funds attributed to the actor to date. Approximately 51,000 ETH, valued at approximately $172 million, were moved from 10 separate wallets—which had been dormant for nearly two years since the January 2023 movement—into a single multisig wallet. Some reporting placed the value as high as $185 million based on ETH prices at the time of transfer. Analysts noted that the use of a multisig wallet structure may signal preparations for laundering operations through mixers or decentralized exchanges, or for liquidation to capitalize on favorable market conditions. At the time of this consolidation, Ethereum had appreciated substantially from its 2023 lows, making the timing consistent with prior behavior of moving funds during price rallies.","heading":"December 2024 Consolidation","severity":"critical","sources":[{"credibility":2,"name":"Blockchain Bandit Moves $172M ETH After 2 Years of Dormancy — CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/blockchain-bandit-moves-172m-eth-after-2-years-of-dormancy"},{"credibility":2,"name":"Notorious Blockchain Bandit Resurfaces, Moves 51,000 ETH in Largest Fund Transfer — CryptoPotato","type":"news_article","url":"https://cryptopotato.com/notorious-blockchain-bandit-resurfaces-moves-51000-eth-in-largest-fund-transfer/"},{"credibility":2,"name":"The Blockchain Bandit is Back After 5 Years, Moves $172 Million in Ethereum — BeInCrypto","type":"news_article","url":"https://beincrypto.com/blockchain-bandit-ethereum-172-million-move/"},{"credibility":2,"name":"Blockchain Bandit Transferred 51,000 ETH to One Wallet — BitDegree","type":"news_article","url":"https://www.bitdegree.org/crypto/news/blockchain-bandit-strikes-again-51000-eth-transferred-to-one-wallet"}]},{"content":"As of the date of this investigation, the identity of the Blockchain Bandit remains unknown. No law enforcement body or regulatory agency has publicly attributed the operation to a named individual, organization, or nation-state. ISE researcher Adrian Bednarek stated in 2019 that he 'would not be surprised if it's a state actor, like North Korea, but that's all just speculation.' Some cybersecurity analysts have noted behavioral and tactical similarities between the Blockchain Bandit's operations and those of North Korea's Lazarus Group, which has been linked by the FBI and other agencies to numerous large-scale cryptocurrency thefts. However, no formal attribution connecting the Blockchain Bandit specifically to the Lazarus Group or any other named actor has been published by a government authority or primary investigative source. Any such attribution should be treated as speculative pending official confirmation.","heading":"Identity and Attribution","severity":"high","sources":[{"credibility":2,"name":"Blockchain Bandit: How a Hacker Has Been Stealing Millions Worth of ETH — CoinTelegraph","type":"news_article","url":"https://cointelegraph.com/news/blockchain-bandit-how-a-hacker-has-been-stealing-millions-worth-of-eth-by-guessing-weak-private-keys"},{"credibility":3,"name":"El Dorado: The Blockchain Bandit Returns — Unpacking the Latest Crypto Heist","type":"news_article","url":"https://eldorado.io/en/blog/blockchain-bandit-crypto-security-threats/"},{"credibility":2,"name":"Lazarus Group — Wikipedia","type":"other","url":"https://en.wikipedia.org/wiki/Lazarus_Group"}]},{"content":"The Ethercombing research highlighted systemic weaknesses in early Ethereum wallet implementations that persisted through the mid-2010s. Vulnerable key generation arose from multiple independent software defects rather than a single flaw, suggesting widespread exposure across different wallet software stacks. The Blockchain Bandit's near-instantaneous automated sweeping of any funds deposited to a compromised address demonstrated that passive holding of a weak-key address carries no safe recovery window—funds can be lost in seconds. Security researchers and wallet developers responded to the 2019 disclosure by auditing key generation code. Affected address classes have since been flagged in public block explorers. The incident remains one of the most significant documented systematic private key exploitation campaigns in Ethereum's history.","heading":"Implications for Wallet Security","severity":"high","sources":[{"credibility":1,"name":"Ethercombing: Finding Secrets in Popular Places — ISE Case Study","type":"research","url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"credibility":2,"name":"Research on private key generation reveals theft of ETH funds — Help Net Security","type":"news_article","url":"https://www.helpnetsecurity.com/2019/04/24/ethercombing/"},{"credibility":2,"name":"Actively Used Private Keys on the Ethereum Blockchain Brute Forced in New Study — Global Security Mag","type":"news_article","url":"https://www.globalsecuritymag.com/Actively-Used-Private-Keys-on-the,20190423,86416.html"}]}],"sources_used":[],"summary":"The Blockchain Bandit is an unidentified threat actor or group that systematically exploited Ethereum wallets holding cryptographically weak private keys between approximately 2015 and 2018, accumulating more than 45,000 ETH (worth over $54 million at peak 2018 valuations) through a technique researchers later termed 'Ethercombing.' The actor compromised 732 private keys across 49,060 transactions, draining wallets in near-real-time using automated blockchain monitoring. Dormant since 2018, the actor re-emerged in January 2023 and again in December 2024, consolidating approximately 51,000 ETH (valued at roughly $172 million) into a single multisig wallet, as tracked by on-chain investigator ZachXBT.","timeline":[{"date":"2015-01-01","event":"Earliest alleged Blockchain Bandit wallet exploitation activity begins, targeting Ethereum addresses generated with weak private keys.","source":"Chainalysis Blog","source_url":"https://www.chainalysis.com/blog/blockchain-bandit-2023/"},{"date":"2016-01-01","event":"Blockchain Bandit activity peaks; actor begins systematically draining Ethereum wallets derived from 732 compromised private keys across 49,060 transactions.","source":"ISE Ethercombing Case Study","source_url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"date":"2018-01-13","event":"Blockchain Bandit's primary accumulation address (0x957cd4ff9b3894fc78b5134a8dc72b032ffbc464) holds 37,926 ETH, valued at approximately $54.3 million at prevailing Ethereum prices.","source":"ISE Ethercombing Case Study","source_url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"date":"2018-12-31","event":"Blockchain Bandit's active exploitation campaign largely ceases; wallets enter dormancy.","source":"CoinTelegraph","source_url":"https://cointelegraph.com/news/blockchain-bandit-moves-172m-eth-after-2-years-of-dormancy"},{"date":"2019-04-23","event":"Independent Security Evaluators (ISE) publishes 'Ethercombing: Finding Secrets in Popular Places,' publicly documenting the Blockchain Bandit's methods, scale, and primary wallet address for the first time. WIRED publishes concurrent coverage by Andy Greenberg.","source":"ISE Ethercombing Case Study","source_url":"https://www.ise.io/casestudies/ethercombing/index.html"},{"date":"2023-01-16","event":"After approximately five years of dormancy, Blockchain Bandit wallets begin moving funds. Between January 16 and January 21, the actor transfers 51,000 ETH and 470 BTC (approximately $90 million combined) to new addresses, flagged by Chainalysis and ZachXBT.","source":"Chainalysis Blog","source_url":"https://www.chainalysis.com/blog/blockchain-bandit-2023/"},{"date":"2024-12-30","event":"ZachXBT identifies the Blockchain Bandit consolidating 51,000 ETH (approximately $172 million) from 10 previously dormant wallets into a single multisig wallet in the largest single fund movement attributed to the actor.","source":"CryptoPotato","source_url":"https://cryptopotato.com/notorious-blockchain-bandit-resurfaces-moves-51000-eth-in-largest-fund-transfer/"}]},"v":1}