Blockchain safety agency CertiK believes to it has discovered the real-life identification of at the least one scammer allegedly linked to the “Monkey Drainer” phishing rip-off.
Monkey Drainer is the pseudonym for a phishing scammer who makes use of sensible contracts to steal NFTs by means of a course of often known as “ice phishing.”
The person or people behind the phishing rip-off have stolen hundreds of thousands of {dollars} value of Ether (ETH) through malicious copycat nonfungible token (NFT) minting web sites.
In a Jan. 27 blog, CertiK mentioned it discovered on-chain messages between two scammers concerned in a latest $4.3 million Porsche NFT phishing rip-off and was capable of hyperlink one in every of them to a Telegram account concerned in promoting the Monkey Drainer-style phishing equipment.
Exposing Scammers
CertiK investigators uncovered two scammers, Zentoh and Kai, behind the Monkey Drainer equipment
This equipment is offered to potential scammers who wish to steal person funds utilizing Ice Phishing
Who was concerned and the way? Let’s have a look at
— CertiK (@CertiK) January 28, 2023
One message revealed an individual referring to themself as “Zentoh” and referred to the one that stole the funds as “Kai.”
Zentoh was seemingly upset at Kai for not sending over a slice of the stolen funds. The message from Zentoh directs Kai to deposit the ill-gotten features “at our tackle.”

CertiK deduced the joint pockets was the tackle that obtained the $4.3 million in stolen crypto. The agency added there’s a “direct hyperlink” between the joint pockets and “a few of the most outstanding Monkey Drainer scammer wallets.”

Zentoh revealed in one other message that the pair used Telegram to speak. CertiK discovered a precise match for the pseudonym on the messaging app and recognized it “to be working a Telegram group that sells phishing kits to scammers.”
The corporate discovered quite a few different on-line accounts probably linked to Zentoh, together with one on GitHub that posted repositories for crypto drainer instruments.
If the hyperlinks between the accounts are legit, it reveals the identification of a French nationwide dwelling in Russia.
Cointelegraph reviewed accounts probably associated to the particular person and located public accounts that appeared to be enthusiastic about cryptocurrencies. Cointelegraph contacted the particular person however didn’t instantly obtain a response.
Cointelegraph is just not publishing the identify of the particular person as a result of privateness considerations.
Associated: Hackers take over Azuki’s Twitter account, steal over $750K in lower than half-hour
Crypto wallet-draining phishing scams have sadly been used to nice impact just lately.
The co-founder of the Moonbirds NFT assortment, Kevin Rose, fell sufferer to such a rip-off that led to over $1.1 million value of his private NFTs being stolen.
The influencer recognized on Twitter as “NFT God” suffered the same destiny after they downloaded malicious software program from a Google Advert search consequence, with ETH and high-priced NFTs pilfered from their pockets.