Cloned Boy
Professional
- Messages
- 1,014
- Reaction score
- 784
- Points
- 113
An informational and introductory article for beginners. Let's figure out what a BA is and how to use it.
BA is a bank account, one or more accounts with common details (simply put, several accounts issued to one person).
Each account has its own purpose. Accounts are divided into core and non-core.
They are divided as follows: either the account is suitable for our work, or not (i.e. they are merged or not ).
The main core accounts of each BA are:
• checking
• saving
Checking - if compared with RU (we are more used to it) - this is a current account. For example, the holder's salary is deposited into it, from where he makes payments: for utilities, gas, food, telephone.
Movement on this type of account is frequent, but the volume of transactions, as a rule, is very small.
Saving is a savings account. It contains money that is not often spent, like our savings book in Sberbank for pensioners.
On checking - small amounts in the expense column, the holder checks more often, but for the bank, transactions on such an account are a common thing.
Saving - larger amounts - the holder rarely checks, but the bank treats transactions from such an account much more suspiciously.
We need to decide for ourselves which account to work with and which not. We need to (try to) work with all types of accounts. It makes no difference, checking or saving, the main thing is that it allows you to drain the cash.
Both are specialized, so they are suitable for our work.
Separately about pension savings (since I remembered about the money in Sberbank), if we consider the USA - there is a completely separate topic. There are retirement accounts, there are IRS of various types with their own subtypes and ecosystem, where each account has different conditions, for example, when the employer automatically transfers money there to the holder for old age or the employer transfers money and it is immediately invested by the holder in company shares, again for old age.
All the money that you steal from accounts in the US is compensated by the Federal Reserve, any normal financial organization has an FDIC or NCUA badge at the bottom, which guarantee the return of stolen funds.
Our choice of an account for draining is influenced by many factors, for example: the activity of the holder, the bank, transaction notifications (write-offs/credits/entries) and others.
Saving needs to be monitored more carefully. The fact is that in the USA there is a federal law, according to which formally there cannot be more than 6 transactions per month on saving accounts (including incoming and outgoing).. And minis are also considered (2 positive and one negative = already 3 transactions). We will touch on minis later, for understanding now - these are small transactions, up to 1 dollar, which allow you to verify an account attached to something.
What will happen on the 7th transaction? - Someone will take a larger commission (fee), or the bank will close the account, or call the holder and ask about further actions (we do not need this, right?).
The first rule of working with BA - always read the FAQ and / or documents from banks. Write down. Print. Circle with a marker! Red, or any bright color, so that it is always noticeable.
Terms and conditions are what they are called (rules) at banks.
There are more than 6,000 financial institutions in the USA, each with different rules.
There are no restrictions on the number of transactions for checking. However, there are individual cases (business checking, this is an account for business), again, everything is individual.
Now I will tell you about other types of accounts.
There are 4 of them in most cases (which are worth highlighting): Mortgage, Deposit, Loan, Invest (Brokerage).
Mortgage is a mortgage. It shows a normal amount, with a plus, but you can't withdraw money, since the amount shows the repaid debt.
Deposit - if there is a deposit, it is logical that there is money there. But for their transfer or withdrawal, event X must occur. Like - death, default, birth. Or it lies for a while (deposit until 2028, for example). You need to find out the conditions for withdrawing a deposit. All the same, a problematic account, although there is usually a large amount there.
Loan is a credit account, like a loan for study. Usually - a target account - a car, a house, money for business development. You can drain from it, but it is problematic, we do not consider draining from it in the course, since there are too many pitfalls and totally little information.
And invest. This is a brokerage account, from which the holder can buy shares, in the US stock brokers are more common than here.
Some investment firms in the US allow you to link (attach) non-core accounts to them. In this way, you transfer money from the bank (if it is impossible to drain such an account from within the bank, you link to the firm where it is possible to transfer funds to other, external accounts).
Do not confuse all sorts of Forex, which are common in the CIS, with investment firms in the US, different things, we will talk about investments later (in another part of the article).
The holder can have many accounts. From one to 100, for example.
The holder can assign a nickname or give a name to each account. In addition to accounts from another bank, usually card accounts are attached to the BA in the US - it is written there next to them (linked card). If you have already worked with CC and did an enroll, then you know what a card account is.
100% everyone has heard of QIWI or Yandex.Money.
QIWI also has an account, and you can attach a card to it (both a virtual QIWI and a physical one), QIWI can be imagined as a BA with attached cards. QIWI has data that can be used to make a full bank transfer.
And there is also the opposite situation, when there is Internet access to the card, where you can see transactions, but nothing in the standard sense can be done with it. This is not a BA, this is a card account, a roll, but not a full one. It does not reach the enrollment, since there is no full data about it (details), there is no color and exp, it is important to understand this difference.
A little higher I wrote about some "full". Let's figure it out.
Full info - complete information about a person, containing: full name, address, phone number, email, DOB - date of birth, SSN - social security number, less often MMN - mother's maiden name.
Full info example: WILLIAM CHAMP / 11000 GULE BLVD / TREASURE ISLAND / FL / 33706 / 407-44-9880 / 09.20.1936.
Where: WILLIAM CHAMP - first name, last name.
11000 GULE BLVD - address.
TREASURE ISLAND - city.
FL / 33706 - state / zip code.
407-44-9880 - ssn (social security number).
09.20.1936 - dob (date of birth), in the USA the date of birth is in the format month.day.year! It is clearly visible here.
Let's look at the details.
Details are information that can be used to transfer money to an account, i.e. account data for replenishment or withdrawal, and you can also issue an invoice for payment. In general, this is information about an account that allows you to perform transactions with it.
The most important detail for a BA is its owner.
If we talk about RU/EU, yes, the details can also include a correspondent account, BIC, etc.
All sorts of left-handed crap with a bunch of numbers that only bank employees can decipher.
In the US, there are 7 main details.
1. Holder's name.
2. Address from a real email (not a cell phone).
3. Phone.
4. Cell phone.
5. Card number (if any).
6. Routing Number.
7. Accounting number.
I think points 1 - 5 are clear.
We'll consider points 6 and 7.
Routing (aka routing, aka rn/rn, if abbreviated) is a unique branch number (bank branch), issued to a bank branch.
In our manner, if - Sberbank offices. They are everywhere! Each of them has its own unique code (as an example).
The same is in the USA.
But there is a difference from RU - in the USA, each branch receives its own license for each type of operation. For direct deposits there may be one routing number, for electronic ones - another.
A few words about licenses for branches. What does this mean - you may have heard about checks (PAPER) in the USA, so, checks are sent to one address, to one routing number, and when you want to link your BA somewhere (for example - to a stick) or to something (this was also possible, yes-yes) - the routing is different.
Accounting is an account number, as you might guess.
A separate AN is issued for each account. It usually consists of 9-12 digits.
Accounting (acc) number is assigned by the bank when opening an account.
Each license (each routing) in the US costs 120k - 170k.
And opening a license for Wire transfers in some distant city with a population of ~ 1000 people - does not make sense.
(We will consider Wire in the future)
Assigning a separate routing for a small branch in Zalupinsk, spending money - is irrational. Like, you know, in our country they are consolidating (sorry, "optimizing") hospitals, and in the US, by analogy, they are consolidating banks, when one large branch can accept wires sent to 100 nearby, smaller ones.
In the US, they simply use the license of a neighboring large settlement. And the commission for this service will go to the profit of the neighboring city.
Now about how to find out these basic details (ANRN).
It all depends on what type of material we are initially working with.
There is brute, and there are logs.
Brute = bruteforce. That is, enumeration of login-password combinations.
In fact, we cannot view the BA details unless we go there (inside the bank account) OR link the BA to some office from the outside.
When I say office, I mean firms for viewing transactions.
Some of them also allow you to punch through the ARN.
When buying a log-pass combination, we will not always be able to go inside the brute BA.
There are companies that allow you to view transactions on accounts without formally going inside.
The same personal capital (https://www.personalcapital.com).
I'll tell you how to see the anrn in an account with access.
We need a statement on the account. It's called Statement.
anrn = account and routing number, by the way, if anyone doesn't understand what I'm talking about.
It (this statement) is sent to the holder monthly by mail, and is also available from the personal account online at any time.
Contains all transactions for the reporting period.
Open this tab and download the state. I usually download it. I advise you to do the same, it is useful in work and at home. An example - you will be asked for a rendering, you can do it yourself in a couple of clicks.
Modern holders usually do not receive states by mail (physical), but they arrive monthly from the bank on a soap (electronic)reminder with a link to these statements.
By the way, I will tell you my point of view on Americans.
There are 2 types of holders.
1. Modern.
2. Old-fashioned.
The first one uses 2FA, push notifications (I will tell you), alerts (I will also tell you), monitors the account, makes regular transactions.
The second one does not even know about the possibility of online access to his account, often does not even log into the account and rarely makes transactions. You
will understand what type of holder you have run into yourself, but do not be disappointed if you get the first one, and there are most of them.
You need to be able and willing to work with all types of holders.
Some holders don’t give a damn about letters. Imagine that you constantly receive spam from a bank (all sorts of offers, like a loan for 30% per annum and notifications, and even states), it is tiring, you become indifferent after some time. I can say from my own experience that I give up in most cases when Tinkoff sends states.
This means that it is easy to steal money from me and I will not wake up anytime soon.
You can also look at the date of the last statement and build your work based on it.
It is much more attractive to wait a day until the holder has a state in the mail with the absence of your carder transactions.
This increases the chances of success.
Holders also receive states in paper form, by mail (USPS).
Can I re-route? YES.
If, of course, you know a person who re-routes USPS.
There the state goes for several days and there is room for maneuver.
Can I turn off states altogether so that they are not sent anywhere? No.
You can only choose between online or paper states.
Ok, in addition to states in BA there are also so-called ALERTS (notifications about operations), which I mentioned above.
These are notifications that come to the holder by email or SMS in case of certain events (triggers).
Example - write-off from the account of >1k$.
Crediting funds.
Logging into the account.
Everything is trivially simple.
You are a PayPal insect.
Took BA.
Linked.
Deposited.
The holder's alert went off.
"YOUR MONEY IS BEING STEALTHEN."
And you are a stick insect.
You don't know.
You don't give a damn about these alerts, because there is an Add money button.
Now let's play again.
You turned off the alerts and deposited.
The holder doesn't know.
The account is alive.
Took and deposited more money into the stick.
And more...
And more.
And
more...
Ok, in our work, alerts are also not a very pleasant phenomenon, but we can influence them to some extent.
There is a special tab in the bank with these alerts, opposite each line there are 3 checkboxes with a choice of where to send the alert.
SMS / email / nowhere.
If we choose nowhere - an alert may come about disabling the alert. "Nowhere" is fraud, I will say right away.
Close to ideal - changing email and flooding the old mail. But changing mail is still fraud for the bank.
If we consider options with changing alerts, then here the only correct solution is to set them by SMS.
When adding a phone number, in many banks the notification does not go anywhere, if everything is done correctly.
This is not a bug, but a "feature".
Do not delete the holder's phone number. This is also fraud.
In many banks, you can add a second (secondary) number.
You can add a second phone number (yours) and forward alerts to it.
Many banks have the system set up like this: change your email = alert drops. You add a mobile phone (yes, you add it, not CHANGE it) = the alert doesn't drop.
Ok, a couple of lines about mobile numbers. You can use Google Voice, Textnow. Not in all banks, though.
Textnow = https://textnow.com
Google Voice = https://voice.google.com
These are the numbers that you can get for free. Without buying a physical SIM card. And receive SMS/calls directly from the browser.
If the bank doesn't eat numbers from these companies, then there are other options:
• You can take brute force/logs from some operators and receive SMS directly from the browser.
• You can buy a service for receiving SMS to a real number on boards, it costs from 2 to 5 bucks on average.
• You can buy a bag of USA SIM cards and insert them into your phone in RU (but there are some nuances, not all SIM cards will work without a "base station" that "thinks it's in the USA").
Numbers in the US are divided as follows:
• Toll-Free (like our 8-800...);
• VOIP (textnow, many banks don't eat them or complain);
• Landline (homework, landline, not all banks eat them, but better than VOIP);
• Mobile (the least fraudulent option).
The most fraudulent is VOIP.
https://en.wikipedia.org/wiki/Voice_over_IP
You can read about it here.
How to find out the type of number - in Google, type something like "phone validator" or "phone type".
Banks have been adjusting fraud by linking VOIP numbers for a long time now.
After you set up a second number, let the account rest (a day or more).
You don't need to immediately set your second number as the main one or throw alerts there.
When I say a day - always understand this as 1 business day.
Not Saturday or Sunday (weekends), but as a working day (Monday - Friday).
By priorities, if you can't add a number:
1. Try adding a phone.
Didn't work?
2. Try adding an email.
Didn't work?
3. Nowhere.
Let it lie for a day or two - set our number as primary. If you have access to mail - run to the mail, see what's going on there. It is quite possible that the bank will send an email. That the number has been changed / added.
I also want to tell you that some banks have an internal message system.
And it says about changing the number.
I remember a case, Wells Fargo bank.
They had never received an email about adding a number before.
And I knew for sure that the holder would not burn the alert by email.
But I forgot about this internal system.
As a result, the holder really did not burn the alert by email (since the email did not arrive, logically), but saw it in this message system.
You need to take all these points into account, read them, delete them.
The chances of failure increase if you ignore them. Like, you're doing it slapdash, "it'll do."
What do everyone usually want? To think and do less and make more money. This is not the case.
You changed your number - I recommend waiting a little longer.
1-2 business days.
Why wait? The thing is that you are shown that the number has been changed.
In fact, this is not the case on the bank's side.
Banks need time to consolidate the information.
You can call the CH with a substituted number and ask on behalf of the bank - how often do you log into online banking? Like, we are conducting a survey on the quality of services.
Returning to the internal messaging system. It usually looks nondescript, you can often overlook it.
How do you find out what it affects? View previous messages.
Or register your self-registration with the bank and perform the same action that will be performed with the log/brute.
A little off topic - the real (physical) address of the holder is changed by the bank in 5-7 WORKING days.
At the same time, you see the new address IMMEDIATELY after its change.
Applicable to roll-ups as well.
There you change the billing.
Here - the same thing.
Since the roll-up is part of the BA.
Roll-ups without BA are impossible, but BA without roll-ups - quite possible.
When you immediately see your "new" address in the BA - you do not even suspect that it has not yet been changed by the bank.
When I say address in this context - I mean the holder's residential address, not the soap.
To the point. I gave an example above that the holder lit up the internal message system in the bank, then you could object, like, what's the difference, since the holder entered the bank's personal account, he would have seen our expense cases anyway.
But there is also a nice thing for work.
You can hide accounts in some banks.
I hide them.
And the holder does not see his account if he enters the personal account.
Transactions on it too.
And maybe someone has a question in their head - why do we need to change the address in BA?
It is rare in which shop in the USA you can find payment using BA.
After all, BA is not a card.
We do not really need billing here.
There are some interesting nuances.
For example, you can issue a card for checking, which the holder does not know about, and send it to the drop. Since it is linked to the account, the card balance = account balance. And the holder is not in the know and you are happy.
There is also a trick with a card and accounts. Sometimes a new account within the BA is created together with the card issue. That is, without a card, an account cannot be created in some banks.
What for us? We take the BA. From logs or brute force. We go inside. We create a new account, order a card. We go to the settings.
We hide it (the new account) immediately.
Then we transfer money from the holder's account instantly there.
Because funds between the holder's accounts within one bank (account) often go instantly.
We'll cash out with a card.
Also instantly.
It also depends on the situation whether you will be able to pull off such a trick. If your holder is active and is currently in the USA, then the actions are somewhat limited (for example, you should not reissue a card that the account holder actively uses). But you can change his residential address and send a new card there (not reissued).
Here we had a screenshot here in the lecture earlier, there are more than 20 accounts within one BA, in fact, a lot can be done. And it is difficult to keep track of them all.
It all comes down to the card withdrawal limits.
Then dig towards POS transactions, they have wider limits.
In order not to make 3 accounts. Because it will be fraudulent.
There was 1 account, and then suddenly there are 3 new ones.
In a day.
There are some nuances when cashing out, it is the holder account that you do not need to immediately pour into the CIS, hello to the bottle, but this is a separate topic.
Now I will tell you about socks, what to work with, and other software and hardware components ...
To work with self-registered BA: a well-configured copy of Portable FireFox (separate for each holder), whoer 100%, IP - under zip.
And with blacks you can IP.
At the moment, I can recommend everyone to find their own socks service for working on BA, in view of their abundance and instability of the situation. The list of proxy services is from me in the articles section.
I have a separate working US machine with
English Windows and Double OpenVPN + socks5 forwarding. In the sphere - I use a paid sphere or multilogin
to work with logs. It is preferable to take a sock "permanently", but such are rare ... You can use toons, but there are a lot of holders, and buying a toon for each one for a buck, even if - luxury. A sock under a zip is usually suitable. If the sock is dead = we take under a zip or the nearest one, what can we do, after all, you need to go inside. On the other hand, each bank has its own AF, if in a particular bank AF pays strong attention to this attribute, it can affect further blocking of access to the account or individual actions.
Do not cut off WebRTC, but replace it with the one that is at the sock.
How to do it - depends on the browser, it is better to figure it out before starting work. How to set up this and that, the fifth tenth - will come with experience, go to Portable Firefox in advanced settings (about:config), then open Google in another tab, and start googling every parameter that is there to fully understand the process. You should not expect ready-made manuals, settings for Anydesk or some other easy things from this direction (BA). Install Windows on a separate computer and forward the American Internet there, for a start this will be quite enough for setting up. Well, and everything as I described (ff copies). In general, it will take you a day or two to set up, to understand, study, read, in the same Firefox with webrtc you will seriously bother.
Sphere / multilogin - for logs. Portable FF - for self-registers.
The speed and convenience of working in LS and ML leaves much to be desired. And when you have a task to register 20 banks per day, and at hand is a lagging sphere, slow as a snail, then you will burn yourself out from the inside. A lot of time and effort is spent on studying banks, feeling AF, reading docs. The first time you read docs is hell and difficult and thoughts like - "why the hell do I need it?". Using the example of investors in the future, we will study the docs. Do not be afraid to make mistakes. A mistake is a valuable experience. Much better absorbed than getting an answer to your question.
Regarding PUSH notifications and SMS alerts, by the way, I also wanted to tell you about the first one. Push notifications are pop-up messages on the holder's phone.
They are not tied to a phone number. They are tied to a bank account and a specific device. Often triggered when the holder has a bank application on the phone.
SMS notifications - well, that's clear. PUSH notifications are more dangerous for us, because we can intercept SMS (there are such services), and there is no way to disable push, only if you go to the USA and jam the wifi holder so that it does not receive the Internet.
People who specialize in this can help us intercept SMS, they are usually located on closed sites (exploit, verified).
The price varies for everyone from various parameters, ranging from the availability of data to personal preferences or dislike (it happens that someone may not like you in the text, you put a period in the wrong place, for this they add +2000$ to your price, this happened in practice).
Also, do not forget that when carrying out any transactions, you are not protected by any laws, usually all work is at your own peril and risk. Therefore, act consciously, without buying a service or service with your last money.
There are areas of work where you cannot do without intercepting SMS (crypto exchanges).
And more. If you suddenly decide to be a sadist, flood the holder's pipe with SMS, for example.
People have psychology, take this parameter into account. Think logically. If you start flooding the soap at night, then the holder will most likely cut off the Internet on his phone and go on sleeping.
If you start flooding SMS, this attracts additional attention. Pay attention to how SMS and mail come to modern phones, how they (phones) react to this.
If you do all the operations during the day on USA, then often the holder can be busy with his own affairs.
In USA there is not such sloppiness with work as in the CIS.
And sometimes there are quite strict requirements regarding mobile phones at work.
They simply have no time to deal with personal problems during the work week.
Also, the holder's phone may always be with him, and mail is only on the computer.
Flooding by SMS is a non-standard action, an atypical tool, it can help, but maybe harm in some cases.
Banking days.
Weekends and holidays in the USA are not considered banking days.
We avoid them when working on draining accounts.
On "these days" you can do whatever you want - look for offices, register accounts for yourself, deal with hanging ones. But do not work with holders' accounts.
The reason is simple - you can "hang" a transaction in activity (the holder will see it), but it will be executed only on the next working day.
Banks work according to UTC -5 (winter time - then -6).
Local banks work according to their local time (they can be identified by name or routing numbers).
Transfer crediting: 4-30 am, account status update - 12-00 pm, additional accrual - 4-00 pm.
New working day - 00-00.
It also depends on the bank, but the above is approximate data that is similar for most.
How to operate with this information about time? Let's figure it out. You hung up the transaction on Monday until 12:00.
At 12:00 the account was updated.
And the transaction was written off.
They started it, initiated it.
They updated the account, and there was a statement saying that they wanted to write off their money in favor of another person.
At 12:00 the transaction had already started.
Profit is possible the next day.
Another example.
You posted a transaction at 12:01.
It hung there for 24 hours.
The next day it was sent at 12:00.
The holder caught it the next day and cancelled it.
No profit.
The difference is clear, I think.
And yes, still, closing the topic of alerts. You understand that we need to catch fraud at a minimum. Any changes in number/mail/addresses are undesirable. Ideally - when the holder has alerts turned off by default.
You have access to the holder's mail and alerts are there = do not touch anything in the bank, just carefully set the filter within the mail to send letters to the trash and that's it.
A few words about brute force and logs, we will consider this further, but now - for understanding.
BA for draining are taken from brute force and logs.
There are other options where to get material (not brute force, not logs), but learn at least this way first.
Brute force - enumeration of log-pass combinations. Logs - the holder downloads the file to the PC and launches malware, at this moment it collects all his logins and passwords and sends them to you.
In BA logs, it is often enough to take a sock under ZIP, you fly in, give a request for an ASN transfer (I will also tell you what this ASN is in the future) from 700, in 2-3 days the money is on the balance.
By the way. If you want better throughput when working with self-registrations - take a dedicated server from Google (or any other US one), attach socks to the staff there. And replace portable ff with portable chrome.
You can also work with logs from portable versions of browsers (instead of cartoon), there are huge advantages (but also disadvantages, where would we be without them) in comparison with cartoon and sphere, but this is all - to your taste and need + if you have the knowledge of how to properly configure and use this or that tool.
Remember, when the lights go out (ss) and the candles go out (pp) - the BA topic will live forever.
Because the material here can be done literally with your own hands.
You need better throughput in offices that check more parameters than banks, an example of such an office is Western Union.
The mechanics of working with card entries and with BA are different.
Regarding the main direction in BA - there is no such thing, like the main thing is logs or brute force. The main work is what's in your head. Whatever thoughts come to mind, that's what we dance from.
If the "thinking machine" is focused on logs, you can work with them, bypassing brute force.
But in general, there are not only logs and brute force, you will understand this with experience.
Minic punching offices (those that I have left from the time of my work with BA. Check the relevance in 2025 or ask more experienced colleagues).
zoho.com
netsuite.com
dave.com
Quicken.com
buxfer.com
mint.com
moneydance.com
mvelopes.com
personalcapital.com
concur.com
youneedabudget.com
And so on.
You need to constantly look for them for yourself, if you need them. Why look? They tend to kill themselves, this is when you knit BA by log-pass there, and you are asked to accept an SMS or answer a question, the answer to which you do not know.
P.S. The direction of BA is not the author's profile, some of the information could be out of date. Chat on the topic, and I am sure that experienced colleagues will suggest answers to your questions.
BA is a bank account, one or more accounts with common details (simply put, several accounts issued to one person).
Each account has its own purpose. Accounts are divided into core and non-core.
They are divided as follows: either the account is suitable for our work, or not (i.e. they are merged or not ).
The main core accounts of each BA are:
• checking
• saving
Checking - if compared with RU (we are more used to it) - this is a current account. For example, the holder's salary is deposited into it, from where he makes payments: for utilities, gas, food, telephone.
Movement on this type of account is frequent, but the volume of transactions, as a rule, is very small.
Saving is a savings account. It contains money that is not often spent, like our savings book in Sberbank for pensioners.
On checking - small amounts in the expense column, the holder checks more often, but for the bank, transactions on such an account are a common thing.
Saving - larger amounts - the holder rarely checks, but the bank treats transactions from such an account much more suspiciously.
We need to decide for ourselves which account to work with and which not. We need to (try to) work with all types of accounts. It makes no difference, checking or saving, the main thing is that it allows you to drain the cash.
Both are specialized, so they are suitable for our work.
Separately about pension savings (since I remembered about the money in Sberbank), if we consider the USA - there is a completely separate topic. There are retirement accounts, there are IRS of various types with their own subtypes and ecosystem, where each account has different conditions, for example, when the employer automatically transfers money there to the holder for old age or the employer transfers money and it is immediately invested by the holder in company shares, again for old age.
All the money that you steal from accounts in the US is compensated by the Federal Reserve, any normal financial organization has an FDIC or NCUA badge at the bottom, which guarantee the return of stolen funds.
Our choice of an account for draining is influenced by many factors, for example: the activity of the holder, the bank, transaction notifications (write-offs/credits/entries) and others.
Saving needs to be monitored more carefully. The fact is that in the USA there is a federal law, according to which formally there cannot be more than 6 transactions per month on saving accounts (including incoming and outgoing).. And minis are also considered (2 positive and one negative = already 3 transactions). We will touch on minis later, for understanding now - these are small transactions, up to 1 dollar, which allow you to verify an account attached to something.
What will happen on the 7th transaction? - Someone will take a larger commission (fee), or the bank will close the account, or call the holder and ask about further actions (we do not need this, right?).
The first rule of working with BA - always read the FAQ and / or documents from banks. Write down. Print. Circle with a marker! Red, or any bright color, so that it is always noticeable.
Terms and conditions are what they are called (rules) at banks.
There are more than 6,000 financial institutions in the USA, each with different rules.
There are no restrictions on the number of transactions for checking. However, there are individual cases (business checking, this is an account for business), again, everything is individual.
Now I will tell you about other types of accounts.
There are 4 of them in most cases (which are worth highlighting): Mortgage, Deposit, Loan, Invest (Brokerage).
Mortgage is a mortgage. It shows a normal amount, with a plus, but you can't withdraw money, since the amount shows the repaid debt.
Deposit - if there is a deposit, it is logical that there is money there. But for their transfer or withdrawal, event X must occur. Like - death, default, birth. Or it lies for a while (deposit until 2028, for example). You need to find out the conditions for withdrawing a deposit. All the same, a problematic account, although there is usually a large amount there.
Loan is a credit account, like a loan for study. Usually - a target account - a car, a house, money for business development. You can drain from it, but it is problematic, we do not consider draining from it in the course, since there are too many pitfalls and totally little information.
And invest. This is a brokerage account, from which the holder can buy shares, in the US stock brokers are more common than here.
Some investment firms in the US allow you to link (attach) non-core accounts to them. In this way, you transfer money from the bank (if it is impossible to drain such an account from within the bank, you link to the firm where it is possible to transfer funds to other, external accounts).
Do not confuse all sorts of Forex, which are common in the CIS, with investment firms in the US, different things, we will talk about investments later (in another part of the article).
The holder can have many accounts. From one to 100, for example.
The holder can assign a nickname or give a name to each account. In addition to accounts from another bank, usually card accounts are attached to the BA in the US - it is written there next to them (linked card). If you have already worked with CC and did an enroll, then you know what a card account is.
100% everyone has heard of QIWI or Yandex.Money.
QIWI also has an account, and you can attach a card to it (both a virtual QIWI and a physical one), QIWI can be imagined as a BA with attached cards. QIWI has data that can be used to make a full bank transfer.
And there is also the opposite situation, when there is Internet access to the card, where you can see transactions, but nothing in the standard sense can be done with it. This is not a BA, this is a card account, a roll, but not a full one. It does not reach the enrollment, since there is no full data about it (details), there is no color and exp, it is important to understand this difference.
A little higher I wrote about some "full". Let's figure it out.
Full info - complete information about a person, containing: full name, address, phone number, email, DOB - date of birth, SSN - social security number, less often MMN - mother's maiden name.
Full info example: WILLIAM CHAMP / 11000 GULE BLVD / TREASURE ISLAND / FL / 33706 / 407-44-9880 / 09.20.1936.
Where: WILLIAM CHAMP - first name, last name.
11000 GULE BLVD - address.
TREASURE ISLAND - city.
FL / 33706 - state / zip code.
407-44-9880 - ssn (social security number).
09.20.1936 - dob (date of birth), in the USA the date of birth is in the format month.day.year! It is clearly visible here.
Let's look at the details.
Details are information that can be used to transfer money to an account, i.e. account data for replenishment or withdrawal, and you can also issue an invoice for payment. In general, this is information about an account that allows you to perform transactions with it.
The most important detail for a BA is its owner.
If we talk about RU/EU, yes, the details can also include a correspondent account, BIC, etc.
All sorts of left-handed crap with a bunch of numbers that only bank employees can decipher.
In the US, there are 7 main details.
1. Holder's name.
2. Address from a real email (not a cell phone).
3. Phone.
4. Cell phone.
5. Card number (if any).
6. Routing Number.
7. Accounting number.
I think points 1 - 5 are clear.
We'll consider points 6 and 7.
Routing (aka routing, aka rn/rn, if abbreviated) is a unique branch number (bank branch), issued to a bank branch.
In our manner, if - Sberbank offices. They are everywhere! Each of them has its own unique code (as an example).
The same is in the USA.
But there is a difference from RU - in the USA, each branch receives its own license for each type of operation. For direct deposits there may be one routing number, for electronic ones - another.
A few words about licenses for branches. What does this mean - you may have heard about checks (PAPER) in the USA, so, checks are sent to one address, to one routing number, and when you want to link your BA somewhere (for example - to a stick) or to something (this was also possible, yes-yes) - the routing is different.
Accounting is an account number, as you might guess.
A separate AN is issued for each account. It usually consists of 9-12 digits.
Accounting (acc) number is assigned by the bank when opening an account.
Each license (each routing) in the US costs 120k - 170k.
And opening a license for Wire transfers in some distant city with a population of ~ 1000 people - does not make sense.
(We will consider Wire in the future)
Assigning a separate routing for a small branch in Zalupinsk, spending money - is irrational. Like, you know, in our country they are consolidating (sorry, "optimizing") hospitals, and in the US, by analogy, they are consolidating banks, when one large branch can accept wires sent to 100 nearby, smaller ones.
In the US, they simply use the license of a neighboring large settlement. And the commission for this service will go to the profit of the neighboring city.
Now about how to find out these basic details (ANRN).
It all depends on what type of material we are initially working with.
There is brute, and there are logs.
Brute = bruteforce. That is, enumeration of login-password combinations.
In fact, we cannot view the BA details unless we go there (inside the bank account) OR link the BA to some office from the outside.
When I say office, I mean firms for viewing transactions.
Some of them also allow you to punch through the ARN.
When buying a log-pass combination, we will not always be able to go inside the brute BA.
There are companies that allow you to view transactions on accounts without formally going inside.
The same personal capital (https://www.personalcapital.com).
I'll tell you how to see the anrn in an account with access.
We need a statement on the account. It's called Statement.
anrn = account and routing number, by the way, if anyone doesn't understand what I'm talking about.
It (this statement) is sent to the holder monthly by mail, and is also available from the personal account online at any time.
Contains all transactions for the reporting period.
Open this tab and download the state. I usually download it. I advise you to do the same, it is useful in work and at home. An example - you will be asked for a rendering, you can do it yourself in a couple of clicks.
Modern holders usually do not receive states by mail (physical), but they arrive monthly from the bank on a soap (electronic)reminder with a link to these statements.
By the way, I will tell you my point of view on Americans.
There are 2 types of holders.
1. Modern.
2. Old-fashioned.
The first one uses 2FA, push notifications (I will tell you), alerts (I will also tell you), monitors the account, makes regular transactions.
The second one does not even know about the possibility of online access to his account, often does not even log into the account and rarely makes transactions. You
will understand what type of holder you have run into yourself, but do not be disappointed if you get the first one, and there are most of them.
You need to be able and willing to work with all types of holders.
Some holders don’t give a damn about letters. Imagine that you constantly receive spam from a bank (all sorts of offers, like a loan for 30% per annum and notifications, and even states), it is tiring, you become indifferent after some time. I can say from my own experience that I give up in most cases when Tinkoff sends states.
This means that it is easy to steal money from me and I will not wake up anytime soon.
You can also look at the date of the last statement and build your work based on it.
It is much more attractive to wait a day until the holder has a state in the mail with the absence of your carder transactions.
This increases the chances of success.
Holders also receive states in paper form, by mail (USPS).
Can I re-route? YES.
If, of course, you know a person who re-routes USPS.
There the state goes for several days and there is room for maneuver.
Can I turn off states altogether so that they are not sent anywhere? No.
You can only choose between online or paper states.
Ok, in addition to states in BA there are also so-called ALERTS (notifications about operations), which I mentioned above.
These are notifications that come to the holder by email or SMS in case of certain events (triggers).
Example - write-off from the account of >1k$.
Crediting funds.
Logging into the account.
Everything is trivially simple.
You are a PayPal insect.
Took BA.
Linked.
Deposited.
The holder's alert went off.
"YOUR MONEY IS BEING STEALTHEN."
And you are a stick insect.
You don't know.
You don't give a damn about these alerts, because there is an Add money button.
Now let's play again.
You turned off the alerts and deposited.
The holder doesn't know.
The account is alive.
Took and deposited more money into the stick.
And more...
And more.
And
more...
Ok, in our work, alerts are also not a very pleasant phenomenon, but we can influence them to some extent.
There is a special tab in the bank with these alerts, opposite each line there are 3 checkboxes with a choice of where to send the alert.
SMS / email / nowhere.
If we choose nowhere - an alert may come about disabling the alert. "Nowhere" is fraud, I will say right away.
Close to ideal - changing email and flooding the old mail. But changing mail is still fraud for the bank.
If we consider options with changing alerts, then here the only correct solution is to set them by SMS.
When adding a phone number, in many banks the notification does not go anywhere, if everything is done correctly.
This is not a bug, but a "feature".
Do not delete the holder's phone number. This is also fraud.
In many banks, you can add a second (secondary) number.
You can add a second phone number (yours) and forward alerts to it.
Many banks have the system set up like this: change your email = alert drops. You add a mobile phone (yes, you add it, not CHANGE it) = the alert doesn't drop.
Ok, a couple of lines about mobile numbers. You can use Google Voice, Textnow. Not in all banks, though.
Textnow = https://textnow.com
Google Voice = https://voice.google.com
These are the numbers that you can get for free. Without buying a physical SIM card. And receive SMS/calls directly from the browser.
If the bank doesn't eat numbers from these companies, then there are other options:
• You can take brute force/logs from some operators and receive SMS directly from the browser.
• You can buy a service for receiving SMS to a real number on boards, it costs from 2 to 5 bucks on average.
• You can buy a bag of USA SIM cards and insert them into your phone in RU (but there are some nuances, not all SIM cards will work without a "base station" that "thinks it's in the USA").
Numbers in the US are divided as follows:
• Toll-Free (like our 8-800...);
• VOIP (textnow, many banks don't eat them or complain);
• Landline (homework, landline, not all banks eat them, but better than VOIP);
• Mobile (the least fraudulent option).
The most fraudulent is VOIP.
https://en.wikipedia.org/wiki/Voice_over_IP
You can read about it here.
How to find out the type of number - in Google, type something like "phone validator" or "phone type".
Banks have been adjusting fraud by linking VOIP numbers for a long time now.
After you set up a second number, let the account rest (a day or more).
You don't need to immediately set your second number as the main one or throw alerts there.
When I say a day - always understand this as 1 business day.
Not Saturday or Sunday (weekends), but as a working day (Monday - Friday).
By priorities, if you can't add a number:
1. Try adding a phone.
Didn't work?
2. Try adding an email.
Didn't work?
3. Nowhere.
Let it lie for a day or two - set our number as primary. If you have access to mail - run to the mail, see what's going on there. It is quite possible that the bank will send an email. That the number has been changed / added.
I also want to tell you that some banks have an internal message system.
And it says about changing the number.
I remember a case, Wells Fargo bank.
They had never received an email about adding a number before.
And I knew for sure that the holder would not burn the alert by email.
But I forgot about this internal system.
As a result, the holder really did not burn the alert by email (since the email did not arrive, logically), but saw it in this message system.
You need to take all these points into account, read them, delete them.
The chances of failure increase if you ignore them. Like, you're doing it slapdash, "it'll do."
What do everyone usually want? To think and do less and make more money. This is not the case.
You changed your number - I recommend waiting a little longer.
1-2 business days.
Why wait? The thing is that you are shown that the number has been changed.
In fact, this is not the case on the bank's side.
Banks need time to consolidate the information.
You can call the CH with a substituted number and ask on behalf of the bank - how often do you log into online banking? Like, we are conducting a survey on the quality of services.
Returning to the internal messaging system. It usually looks nondescript, you can often overlook it.
How do you find out what it affects? View previous messages.
Or register your self-registration with the bank and perform the same action that will be performed with the log/brute.
A little off topic - the real (physical) address of the holder is changed by the bank in 5-7 WORKING days.
At the same time, you see the new address IMMEDIATELY after its change.
Applicable to roll-ups as well.
There you change the billing.
Here - the same thing.
Since the roll-up is part of the BA.
Roll-ups without BA are impossible, but BA without roll-ups - quite possible.
When you immediately see your "new" address in the BA - you do not even suspect that it has not yet been changed by the bank.
When I say address in this context - I mean the holder's residential address, not the soap.
To the point. I gave an example above that the holder lit up the internal message system in the bank, then you could object, like, what's the difference, since the holder entered the bank's personal account, he would have seen our expense cases anyway.
But there is also a nice thing for work.
You can hide accounts in some banks.
I hide them.
And the holder does not see his account if he enters the personal account.
Transactions on it too.
And maybe someone has a question in their head - why do we need to change the address in BA?
It is rare in which shop in the USA you can find payment using BA.
After all, BA is not a card.
We do not really need billing here.
There are some interesting nuances.
For example, you can issue a card for checking, which the holder does not know about, and send it to the drop. Since it is linked to the account, the card balance = account balance. And the holder is not in the know and you are happy.
There is also a trick with a card and accounts. Sometimes a new account within the BA is created together with the card issue. That is, without a card, an account cannot be created in some banks.
What for us? We take the BA. From logs or brute force. We go inside. We create a new account, order a card. We go to the settings.
We hide it (the new account) immediately.
Then we transfer money from the holder's account instantly there.
Because funds between the holder's accounts within one bank (account) often go instantly.
We'll cash out with a card.
Also instantly.
It also depends on the situation whether you will be able to pull off such a trick. If your holder is active and is currently in the USA, then the actions are somewhat limited (for example, you should not reissue a card that the account holder actively uses). But you can change his residential address and send a new card there (not reissued).
Here we had a screenshot here in the lecture earlier, there are more than 20 accounts within one BA, in fact, a lot can be done. And it is difficult to keep track of them all.
It all comes down to the card withdrawal limits.
Then dig towards POS transactions, they have wider limits.
In order not to make 3 accounts. Because it will be fraudulent.
There was 1 account, and then suddenly there are 3 new ones.
In a day.
There are some nuances when cashing out, it is the holder account that you do not need to immediately pour into the CIS, hello to the bottle, but this is a separate topic.
Now I will tell you about socks, what to work with, and other software and hardware components ...
To work with self-registered BA: a well-configured copy of Portable FireFox (separate for each holder), whoer 100%, IP - under zip.
And with blacks you can IP.
At the moment, I can recommend everyone to find their own socks service for working on BA, in view of their abundance and instability of the situation. The list of proxy services is from me in the articles section.
I have a separate working US machine with
English Windows and Double OpenVPN + socks5 forwarding. In the sphere - I use a paid sphere or multilogin
to work with logs. It is preferable to take a sock "permanently", but such are rare ... You can use toons, but there are a lot of holders, and buying a toon for each one for a buck, even if - luxury. A sock under a zip is usually suitable. If the sock is dead = we take under a zip or the nearest one, what can we do, after all, you need to go inside. On the other hand, each bank has its own AF, if in a particular bank AF pays strong attention to this attribute, it can affect further blocking of access to the account or individual actions.
Do not cut off WebRTC, but replace it with the one that is at the sock.
How to do it - depends on the browser, it is better to figure it out before starting work. How to set up this and that, the fifth tenth - will come with experience, go to Portable Firefox in advanced settings (about:config), then open Google in another tab, and start googling every parameter that is there to fully understand the process. You should not expect ready-made manuals, settings for Anydesk or some other easy things from this direction (BA). Install Windows on a separate computer and forward the American Internet there, for a start this will be quite enough for setting up. Well, and everything as I described (ff copies). In general, it will take you a day or two to set up, to understand, study, read, in the same Firefox with webrtc you will seriously bother.
Sphere / multilogin - for logs. Portable FF - for self-registers.
The speed and convenience of working in LS and ML leaves much to be desired. And when you have a task to register 20 banks per day, and at hand is a lagging sphere, slow as a snail, then you will burn yourself out from the inside. A lot of time and effort is spent on studying banks, feeling AF, reading docs. The first time you read docs is hell and difficult and thoughts like - "why the hell do I need it?". Using the example of investors in the future, we will study the docs. Do not be afraid to make mistakes. A mistake is a valuable experience. Much better absorbed than getting an answer to your question.
Regarding PUSH notifications and SMS alerts, by the way, I also wanted to tell you about the first one. Push notifications are pop-up messages on the holder's phone.
They are not tied to a phone number. They are tied to a bank account and a specific device. Often triggered when the holder has a bank application on the phone.
SMS notifications - well, that's clear. PUSH notifications are more dangerous for us, because we can intercept SMS (there are such services), and there is no way to disable push, only if you go to the USA and jam the wifi holder so that it does not receive the Internet.
People who specialize in this can help us intercept SMS, they are usually located on closed sites (exploit, verified).
The price varies for everyone from various parameters, ranging from the availability of data to personal preferences or dislike (it happens that someone may not like you in the text, you put a period in the wrong place, for this they add +2000$ to your price, this happened in practice).
Also, do not forget that when carrying out any transactions, you are not protected by any laws, usually all work is at your own peril and risk. Therefore, act consciously, without buying a service or service with your last money.
There are areas of work where you cannot do without intercepting SMS (crypto exchanges).
And more. If you suddenly decide to be a sadist, flood the holder's pipe with SMS, for example.
People have psychology, take this parameter into account. Think logically. If you start flooding the soap at night, then the holder will most likely cut off the Internet on his phone and go on sleeping.
If you start flooding SMS, this attracts additional attention. Pay attention to how SMS and mail come to modern phones, how they (phones) react to this.
If you do all the operations during the day on USA, then often the holder can be busy with his own affairs.
In USA there is not such sloppiness with work as in the CIS.
And sometimes there are quite strict requirements regarding mobile phones at work.
They simply have no time to deal with personal problems during the work week.
Also, the holder's phone may always be with him, and mail is only on the computer.
Flooding by SMS is a non-standard action, an atypical tool, it can help, but maybe harm in some cases.
Banking days.
Weekends and holidays in the USA are not considered banking days.
We avoid them when working on draining accounts.
On "these days" you can do whatever you want - look for offices, register accounts for yourself, deal with hanging ones. But do not work with holders' accounts.
The reason is simple - you can "hang" a transaction in activity (the holder will see it), but it will be executed only on the next working day.
Banks work according to UTC -5 (winter time - then -6).
Local banks work according to their local time (they can be identified by name or routing numbers).
Transfer crediting: 4-30 am, account status update - 12-00 pm, additional accrual - 4-00 pm.
New working day - 00-00.
It also depends on the bank, but the above is approximate data that is similar for most.
How to operate with this information about time? Let's figure it out. You hung up the transaction on Monday until 12:00.
At 12:00 the account was updated.
And the transaction was written off.
They started it, initiated it.
They updated the account, and there was a statement saying that they wanted to write off their money in favor of another person.
At 12:00 the transaction had already started.
Profit is possible the next day.
Another example.
You posted a transaction at 12:01.
It hung there for 24 hours.
The next day it was sent at 12:00.
The holder caught it the next day and cancelled it.
No profit.
The difference is clear, I think.
And yes, still, closing the topic of alerts. You understand that we need to catch fraud at a minimum. Any changes in number/mail/addresses are undesirable. Ideally - when the holder has alerts turned off by default.
You have access to the holder's mail and alerts are there = do not touch anything in the bank, just carefully set the filter within the mail to send letters to the trash and that's it.
A few words about brute force and logs, we will consider this further, but now - for understanding.
BA for draining are taken from brute force and logs.
There are other options where to get material (not brute force, not logs), but learn at least this way first.
Brute force - enumeration of log-pass combinations. Logs - the holder downloads the file to the PC and launches malware, at this moment it collects all his logins and passwords and sends them to you.
In BA logs, it is often enough to take a sock under ZIP, you fly in, give a request for an ASN transfer (I will also tell you what this ASN is in the future) from 700, in 2-3 days the money is on the balance.
By the way. If you want better throughput when working with self-registrations - take a dedicated server from Google (or any other US one), attach socks to the staff there. And replace portable ff with portable chrome.
You can also work with logs from portable versions of browsers (instead of cartoon), there are huge advantages (but also disadvantages, where would we be without them) in comparison with cartoon and sphere, but this is all - to your taste and need + if you have the knowledge of how to properly configure and use this or that tool.
Remember, when the lights go out (ss) and the candles go out (pp) - the BA topic will live forever.
Because the material here can be done literally with your own hands.
You need better throughput in offices that check more parameters than banks, an example of such an office is Western Union.
The mechanics of working with card entries and with BA are different.
Regarding the main direction in BA - there is no such thing, like the main thing is logs or brute force. The main work is what's in your head. Whatever thoughts come to mind, that's what we dance from.
If the "thinking machine" is focused on logs, you can work with them, bypassing brute force.
But in general, there are not only logs and brute force, you will understand this with experience.
Minic punching offices (those that I have left from the time of my work with BA. Check the relevance in 2025 or ask more experienced colleagues).
zoho.com
netsuite.com
dave.com
Quicken.com
buxfer.com
mint.com
moneydance.com
mvelopes.com
personalcapital.com
concur.com
youneedabudget.com
And so on.
You need to constantly look for them for yourself, if you need them. Why look? They tend to kill themselves, this is when you knit BA by log-pass there, and you are asked to accept an SMS or answer a question, the answer to which you do not know.
P.S. The direction of BA is not the author's profile, some of the information could be out of date. Chat on the topic, and I am sure that experienced colleagues will suggest answers to your questions.
Last edited by a moderator:
