Blockchain.info Transforms – Maltego

Blockchain.info Transforms – Maltego

How to use Blockchain.info Transforms

Step 1:

Installing The Transforms

Open Maltego and search for Bitcoin.info Transforms and Install.

Click install & agree to the install.

If successful, this screen will pop up. Click finish to conclude the installation.

Step 2:

Make a New Graph

Click New Graph in the upper left corner to make a new graph or use the hotkeys, (Ctrl + T).

Step 3:

Run Transforms

Select Bitcoin Address under Entity Palette and drag it onto the graph, You can zoom in and out using the mouse wheel or (Ctrl + +) to zoom in, (Ctrl + -) to zoom out.

Now we get to run some transforms on the entity. We can either run All Transforms indicated by the double arrow or we can click the + Icon to see a selection of separate transforms we can run on different Entities. The specific transforms you can run will vary from Entity to Entity.

You can return to the previous menu by clicking the arrow in the upper left corner.

Let’s run all Transforms on this Bitcoin Address. You can see there are lots of inputs and outputs, It looks like It returned some Transaction ID’s and Wallet Addresses. We can expand the graph by pressing (Alt + Enter).

We can highlight a specific Address or Transaction ID and see more detail under View.

This will open your browser to www.blockchain.com and show you lots of useful information like Transactions, Inputs and Outputs, other useful details like Timestamps and Total Amount Transacted.

Step 4:

Assess and Run Further Transforms if Needed

We can copy selected entities and copy them to a new graph by right clicking and clicking the copy button in the lower left hand side of the menu.

We can check the Transactions type Entity (shown in the box beneath the Address) for Blockchain Height.

Keep running Transforms until the necessary information is graphed.

The graph can get as simple or complicated as needed but remember another analyst may need to look at the graph so it is with best practices to keep your data organized and in a readable format.

The Structure of the graph can be changed by clicking the View tab and Block, Hierarchical, Circular or Organic Selection. It can also be Aligned or Centered to our preference.

Under the Manage View tab we can augment the graph by Entities Properties like Rank, Weight or by Incoming and Outgoing, this will change the size of the entity based on its relevance.

Step 5:

Analyze the graph

See if there are anything that stands out in the graph, check if there are any trends:

Is the currency being funneled into one address?

Is the currency being spread out?

Does the currency trace back to a KYC exchange?

Check the Blockchain Heights.

Check incoming and outgoing transactions.

Go to blockchain.com and check timestamps.

Finally we can try to pivot off of some of the information we gathered and make a report if required.