TLDR
- The Radiant Capital hacker laundered $10.8 million worth of stolen Ethereum through Tornado Cash.
- The funds were initially taken from multiple bridge addresses before being moved to intermediary wallets.
- The stolen ETH was swapped for DAI stablecoins and later converted back into Ethereum.
- The hacker deposited 2,834 ETH into Tornado Cash, making it nearly impossible to trace the funds.
- Radiant Capital has been working with the FBI and other security firms to recover the stolen funds.
The hacker behind the Radiant Capital breach has moved $10.8 million worth of Ethereum into Tornado Cash. This move occurred one year after the project’s lending pool was exploited, resulting in a $53 million loss. The funds were laundered through the crypto mixer Tornado Cash, making it difficult for authorities to track the stolen money.
Tornado Cash Facilitates Fund Laundering
The hacker used Tornado Cash to obscure the origin of the stolen funds. On-chain monitoring platform CertiK reported that $10.8 million worth of Ethereum was laundered through the mixer. The stolen Ethereum was transferred in smaller increments, making it more difficult to track the flow of funds. The use of Tornado Cash complicates the investigation, primarily since the mixer is known for its anonymity features.
Radiant Capital exploiter has deposited 2834.6 ETH (~$10.8M) into Tornado Cash. EOA 0x4afb received 2213.8 ETH bridged from Arbitrum in Oct 2024, and the extra ETH came from swapping to DAI then back.
On 16 October 2024, Radiant Lending Pool was drained on… pic.twitter.com/4k76FLhGiV
— CertiK Alert (@CertiKAlert) October 23, 2025
The laundered Ethereum originated from multiple bridge addresses, including the Stargate Bridge and Synapse Bridge. The attacker first transferred the funds to an intermediary address, 0x4afb, and then dispersed them further. According to CertiK’s findings, one of the larger transfers involved moving 2,236 ETH to address 0x3fe4, which later shifted to three additional wallets.
In August 2025, the hacker swapped 3,091 ETH for 13.26 million USD-backed DAI stablecoins. The DAI was then moved through a series of wallets before the hacker converted it back into ETH. These actions were designed to obscure the origin of the funds further and complicate any recovery efforts. Afterward, 2,834 ETH was deposited into Tornado Cash, rendering the funds nearly untraceable.
Radiant Capital Hack and Recovery Efforts
The Radiant Capital hack occurred on October 16, 2024, resulting in a significant loss of $53 million. The attacker gained control of three out of the 11 signer permissions in Radiant Capital’s multi-signature wallet. This breach allowed them to replace the implementation contract of the lending pool, stealing the funds.
Following the theft, the hacker converted the stolen funds into 21,957 ETH, which was valued at $53 million at the time. They were able to multiply the funds, bringing their total holdings to $94 million. Despite these gains, the hacker chose to hold on to the stolen ETH for nearly ten months before laundering it.
Radiant Capital has been working with the FBI, Chainalysis, and other security firms to recover the stolen funds. However, the involvement of Tornado Cash makes it more challenging for authorities to track and recover the funds. As the stolen funds continue to be laundered, the chances of successful recovery remain slim.
