On March 17, according to the official WeChat account of the Network Investigation Research Institute, Wuhan Anjun Technology—a Chinese company—was actually a professional cybercrime team posing as a cybersecurity firm. The operation organized and carried out a supply-chain attack against Trust Wallet, stealing approximately $7 million in crypto assets. Duan Jirui stated that his team used Electron application supply-chain vulnerabilities, VShell remote control, OKX plugin reverse engineering, and batch mnemonic phrase scanning tools to accurately target the assets of heavy blockchain users and transfer funds in batches through an automated pipeline.
Internal conflicts arose due to disputes over the distribution of spoils and agreement payments. After preserving technical documents, recordings, and other evidence, Duan Jirui chose to publicly expose the incident and prepared to surrender himself. The case provides a model for investigative authorities to characterize technically sophisticated cybercrime teams.
Leave a Reply