Attacker wallet pre-strike probe (low-gas failing txs)

Centrifuge's assessment for RD-F-159 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Gray — requires mempool + CTI cluster feed integration not publicly available. Permissioned pool access (KYC) makes traditional mempool probing less useful for an attacker — they cannot call investment functions without KYC approval. No probe activity evidence in public data.

Sources #

URL
https://docs.centrifuge.io/user/concepts/multi-chain/retrieved 2026-04-27

Methodology #

Detect whether a wallet in a threat-actor cluster is sending low-gas or intentionally-failing transactions to this protocol (pre-strike reconnaissance pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol centrifuge factor RD-F-159 score gray collected_at 2026-04-30 21:19:10