Cryptocurrency investigations – like Bitcoin forensics – usually involve blockchain transaction analysis. You can use blockchain.com Explorer to look up Bitcoin, Etherium, and other blockchain transactions or addresses. However, the site is not very useful when attempting to analyze many transactions. Instead, visualizing the blockchain is much more helpful.
Thank you to all of our Patrons for sponsoring DFIR Science.
Especially The Ranting Geek. Thank you so much!
Blockchain analysis usually ends by finding a cryptocurrency exchange the suspect uses or when the suspect purchases services using illicit cryptocurrency. Active monitoring may be necessary to watch addresses of interest over time. Additionally, intelligence gathering is helpful when associating cryptocurrency addresses with service providers.
00:00 What we covered so far
00:19 Bitcoin blockchain transactions
00:31 Blockchain.com Explorer
01:07 Free Blockchain analysis with Maltego Community Edition
01:30 Start a new investigation
01:49 Analyze a Bitcoin address
02:13 Investigate victims paying a suspect
03:32 Suspect wallet investigation
04:51 High-level overview of transaction graph
05:32 Overview of Maltego and similar Blockchain analysis tools
05:56 Overview of Bitcoin transaction forensics
We use Maltego Community Edition with the blockchain.com transform to analyze WannaCry Ransomware Bitcoin transactions on the Bitcoin blockchain. Maltego will create a graph where nodes are Bitcoin addresses, and edges are the direction of transactions. Maltego can automatically generate node graphs based on either address relationships or blockchain transactions.
Getting started with Bitcoin forensics Maltego and the blockchain transform is an easy and free way to begin. Maltego can also include intelligence from many other sources, not just the Bitcoin blockchain. You can use investigation intelligence to enrich your graphs and find suspects’ true identities behind the addresses.
– 👍 Subscribe for weekly videos
❤️ Get early access and bonus content –
== Recommended Books ==
Investigating Cryptocurrencies: Understanding, Extracting, and Analyzing Blockchain Evidence (
Blockchain Bubble or Revolution: The Future of Bitcoin, Blockchains, and Cryptocurrencies (
#Bitcoin #Maltego #DFIR #cryptocurrency #forensics
Help make DFIR tutorials
👍 Subscribe →
🛒 Shop →
❤️ Patreon →
🕸️ Blog →
🤖 Code →
🐦 Follow →
📰 DFIR Newsletter →
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License. Please link back to the original video. If you want to use this video for commercial purposes, please contact us first. We would love to see what you are doing and probably allow its use.