BlueLeaks on Bitcoin

  • There is a bug with the post editor. Images pasted from other websites from your clipboard will automatically use the [img] tag instead of uploading a copy as an attachment. Please manually save the image, upload it to the site, and then insert it as a thumbnail instead if you experience this.

    Ongoing DDoS attack. may work better for now.

Kosher Dill

Potato Chips
True & Honest Fan
Feb 3, 2013
I came across some Bitcoin-related material in the BlueLeaks files, and I thought I'd write up a little something on it for anyone interested.
(Our A&N thread on it here: )

If you go into the Alabama Fusion Center subdirectory (alabamafusioncenter\files\DDF) you'll find some information on Bitcoin investigations.

"Seizure Warrant - Bitcoin-1"
This is a 2014 case from West Texas where the IRS requests and receives permission to "seize" a Bitcoin wallet alleged to belong to a 24-year-old marijuana dealer, containing 164.5 BTC.
The outline of the case is roughly like this: the government was going after one Joshua Gatewood, who was alleged to be dealing large quantities of marijuana.
They started by charging two accomplices and getting them to flip, did the usual sort of detective work, and raided Gatewood's house, seizing marijuana, cash, and a USB thumb drive.
Examining the thumb drive, they found bitcoin wallets on there and got the transaction history. They also apparently imaged his phone at some point and got messages relating to
From there, they just established that Gatewood had no other plausible source of income, meaning the BTC must have been bought with drug money, and used the US' notorious civil asset forfeiture laws to obtain this seizure warrant.

"Voluntary Surrender and Waiver of Rights - Bitcoins"
A bit of legal boilerplate from a different case in 2014 where the accused agrees to transfer 29 BTC to a government account.
You can view the transaction here
If anyone wants to try tracing down just where confiscated crypto goes.

"Identifying Cryptocurrencies - An Investigator's Guide"
A little pamphlet giving the very basics on Bitcoin and how to recognize wallet IDs. Don't let any of that Dogecoin slip through the cracks!

"A Guide For Bitcoin Investigators"
A 114-page document from Europol which contains a pretty thorough introduction to the Bitcoin network and forensic techniques for tracing transactions and seizing wallets.

Anyway, I learned a thing or two, hopefully some of you will find it interesting as well.


  • (U-LES) A Guide for Bitcoin Investigators - 26 Jan 2017.pdf
    4.7 MB · Views: 242
  • (U) Identifying Cryptocurrencies - An Investigator's Guide.pdf
    635.3 KB · Views: 126
  • (U) Seizure Warrant - Bitcoin-1.pdf
    239.1 KB · Views: 124
  • (U) Voluntary Surrender and Waiver of Rights - Bitcoins.pdf
    149.3 KB · Views: 115

Kosher Dill

Potato Chips
True & Honest Fan
Feb 3, 2013