Hi everyone,
We encountered a very unusual situation in our service and would appreciate any thoughts, similar experiences, or technical insights.
We were swapping USDT between two networks (ERC-20 → BEP-20) using PancakeSwap’s cross-chain swap functionality in manual mode. In simple terms, funds were sent from one MetaMask wallet to another MetaMask wallet. This was a routine operation that had been performed many times before without issues.
Unexpectedly, the swap got stuck. The destination wallet we specified never received the funds.
After investigating the transaction in the blockchain explorers, we discovered that the funds had ultimately been sent to the following BEP-20 address:
0xdAC17F958D2ee523a2206206994597C13D831ec7
What makes this particularly strange is that this address is the well-known USDT (ERC-20) contract address on Ethereum.
We considered two primary possibilities:
A technical issue on the PancakeSwap side or on the side of their bridge provider, Across Protocol.
Human error, where an employee somehow copied and pasted this address as the recipient address, despite having no apparent reason or incentive to do so.
Clipboard malware, address-replacement malware, and similar attack vectors were ruled out. In such cases, funds would normally be redirected to an attacker’s wallet, not to a publicly known token contract address.
We reviewed all communications with PancakeSwap and Across support teams. Following their internal investigations, both stated that they found nothing suspicious on their side and suggested that this address had been specified as the recipient in the order itself.
As part of our internal investigation, the employee involved was also subjected to a polygraph examination and showed no signs of deception throughout the entire scope of questioning.
We are trying to understand what could realistically explain this situation.
We can provide all relevant transaction hashes, logs, and technical details to anyone willing to help analyze the case.
(Scammers, please don’t waste your time.)
If someone can provide useful technical guidance or help identify a path that ultimately leads to the recovery of the funds, we are willing to offer a financial reward based on a percentage of any recovered amount.
Any ideas or similar cases would be greatly appreciated.
txid :
https://etherscan.io/tx/0x7ddd37dae2c5ad1ec97646606ec91fe12130b09525ac815d2ff05c219e9d4500
