The attack on Archetyp, which has been going on for months, is achieving its goal: the platform is experiencing technical, financial and reputational problems at the same time.
And it is not getting any easier for them or their users.
Archetyp has been down for more than two days in a row, sellers are having problems with money withdrawals, its admin has been AWOL and have not logged into Dread for 4 days, and many considered his explanations dubious.
It is clear that the situation is no joke: Archetyp's rhetoric has changed, they no longer respond with humor. It seems that the blow on critical infrastructure (in addition to the DDoS attack itself) was successfully delivered.
Even tech consultations from Dread admins did not help them.
Disclosing the details of our attack will help other platforms build their defense. After all, apparently, Dread consulted almost all notable players, and the defense systems of many different darknet markets (DNMs) are pretty much the same. That's why we will give no details on this matter.
Of course, spectators themselves take notice of some things. For example, a DDoS of such strength could (partially) de-anonymize Archetyp servers, forcing them to change part of the infrastructure. As the Dread admin HugBunter said,
"A migration is usually required after any large scale DoS attack, which this attack was, one of the biggest in a short time. The traffic spike from it was quite clearly visible in the Tor metrics graphs and showed a spike 4x above the usual levels for the entire network".
And the behavior of the Archetyp admin makes users think about foul play on his part (or his account has come under the control of law enforcement).
In any case, even a relatively honest DNM owner can go for an exit scam, believing that he has no other choice. Under a DDoS attack, with almost zero revenue and huge costs for protection, not the richest (and not the most tech-savvy) sites very quickly start spending their users' money, and hide this fact, hoping to get it back later, when the marketplace starts working again.
Archetyp probably cannnot afford to continue working for a long time as it has for the last couple of months, at a loss. If it can even do it at all.
In any case, Dread admin himself honestly voices his concerns that something is wrong with the Archetyp admin. We recommend that you read his post in full.
For example, Archetyp has a mechanism for automatically withdrawing funds from users' wallets. Such payments, judging by the content of the /d/Archetyp subdread, are often not made any more.
Archetyp also increased the XMR amount at which auto-payouts are made:
posted on June 13, 09:51 in the comments to .onion/post/12d5df0fce0bb7f6eb92
The situation with payouts is discussed in this thread.
Finally, Archetyp moved its DNS server to Amazon Web Services around the same time its' admin was missing:
archetyp. cc : 2025-06-11 T 21:50
archetyp. love : 2025-06-12 T 16:05:42
whowasteam. love : 2025-06-12 T 16:05:42
Why did Archetyp need to use Amazon, a corporation under US jurisdiction, to operate an international darknet platform?
Probably because their servers were captured and migrated to the US. Because, as we warned, the Archetyp team is incompetent, we made a hole in their defense, and law enforcement took advantage of it.
Users, albeit with a big delay, are moving to other platforms. For example, to Abacus. Which, however, has already been declared as Bazaar's next target. And which will also inevitably cease its operations. As all our "competitors", who are not equal to us in either security or service.
UPD:
UPD:
Busting #ArchetypMarket (+video)
And it is not getting any easier for them or their users.
Archetyp has been down for more than two days in a row, sellers are having problems with money withdrawals, its admin has been AWOL and have not logged into Dread for 4 days, and many considered his explanations dubious.
It is clear that the situation is no joke: Archetyp's rhetoric has changed, they no longer respond with humor. It seems that the blow on critical infrastructure (in addition to the DDoS attack itself) was successfully delivered.
Even tech consultations from Dread admins did not help them.
Disclosing the details of our attack will help other platforms build their defense. After all, apparently, Dread consulted almost all notable players, and the defense systems of many different darknet markets (DNMs) are pretty much the same. That's why we will give no details on this matter.
Of course, spectators themselves take notice of some things. For example, a DDoS of such strength could (partially) de-anonymize Archetyp servers, forcing them to change part of the infrastructure. As the Dread admin HugBunter said,
"A migration is usually required after any large scale DoS attack, which this attack was, one of the biggest in a short time. The traffic spike from it was quite clearly visible in the Tor metrics graphs and showed a spike 4x above the usual levels for the entire network".
And the behavior of the Archetyp admin makes users think about foul play on his part (or his account has come under the control of law enforcement).
In any case, even a relatively honest DNM owner can go for an exit scam, believing that he has no other choice. Under a DDoS attack, with almost zero revenue and huge costs for protection, not the richest (and not the most tech-savvy) sites very quickly start spending their users' money, and hide this fact, hoping to get it back later, when the marketplace starts working again.
Archetyp probably cannnot afford to continue working for a long time as it has for the last couple of months, at a loss. If it can even do it at all.
In any case, Dread admin himself honestly voices his concerns that something is wrong with the Archetyp admin. We recommend that you read his post in full.
For example, Archetyp has a mechanism for automatically withdrawing funds from users' wallets. Such payments, judging by the content of the /d/Archetyp subdread, are often not made any more.
Archetyp also increased the XMR amount at which auto-payouts are made:
posted on June 13, 09:51 in the comments to .onion/post/12d5df0fce0bb7f6eb92
The situation with payouts is discussed in this thread.
Finally, Archetyp moved its DNS server to Amazon Web Services around the same time its' admin was missing:
archetyp. cc : 2025-06-11 T 21:50
archetyp. love : 2025-06-12 T 16:05:42
whowasteam. love : 2025-06-12 T 16:05:42
Why did Archetyp need to use Amazon, a corporation under US jurisdiction, to operate an international darknet platform?
Probably because their servers were captured and migrated to the US. Because, as we warned, the Archetyp team is incompetent, we made a hole in their defense, and law enforcement took advantage of it.
Users, albeit with a big delay, are moving to other platforms. For example, to Abacus. Which, however, has already been declared as Bazaar's next target. And which will also inevitably cease its operations. As all our "competitors", who are not equal to us in either security or service.
UPD:
Busting #ArchetypMarket (+video)
Last edited by a moderator:
