According to TechFlow, on July 18, ZachXBT, an on-chain detective, published a post on the X platform. Through on-chain data analysis, the WazirX hacker attack had the attack characteristics of the North Korean hacker organization Lazarus Group.

ZachXBT said he tracked the more than $230 million WazirX hack and found that the hacker conducted test transactions through Tornado Cash on July 10 and transferred funds from multiple addresses, ultimately pointing to the Lazarus Group's modus operandi.

ZachXBT hopes the WazirX team will make the findings public, noting that while the Arkham bounty was resolved, discovering KYC exchange deposits made by the hacker may be of limited help, as KYC accounts can be easily purchased online.