Go Pro — Full Airdrop Report$3/mo+ List Telegram
How to Claim an Airdrop From a Hacked Wallet (2026)
Your wallet was compromised but you're still eligible for an airdrop — and the tokens haven't arrived yet. Here's how to safely claim them to a new wallet before the attacker's sweeper bot can steal them.
Important:This guide is for claiming future airdrop tokens from a compromised wallet. If your wallet was already drained of existing funds, those are likely unrecoverable. This method works when tokens haven't arrived yet and you need to claim them safely.
The Problem: Sweeper Bots
Once a wallet's private key is exposed, attackers don't just steal what's there — they set up sweeper botsthat monitor the address around the clock. The moment any token arrives, the bot instantly broadcasts a transaction to sweep it to the attacker's wallet.
These bots react in milliseconds. Even if you try to manually claim an airdrop and immediately transfer the tokens, the bot almost always wins. This has cost airdrop farmers thousands of dollars in lost tokens.
How a sweeper bot attack works
The Solution: Rescue Wallet
Rescue Wallet is a browser extension built specifically for this problem. It lets you import your compromised wallet's private key, set a separate destination address, and claim airdrops so the tokens go directly to your safe wallet — never touching the compromised address where the bot is waiting.
Your private key is encrypted locally on your device. It is never transmitted to any server. The tool signs the claim transaction with your compromised key (proving eligibility) while routing the output to your safe address.
Official: x.com/Rescue_Wallet
Step-by-Step Guide
Install the Rescue Wallet Extension
Download only from the official source — verify at x.com/Rescue_Wallet. Never install wallet tools from Google search ads or unofficial sites. Once installed, open the extension to begin setup.
Read and Accept the Disclaimer
On first launch, you'll see an important disclaimer page. Read it fully. It explains what the tool can and cannot do — specifically that it's designed for claiming incoming airdrop tokens, not recovering funds already swept by a bot.
Create a Secure Password
Set a strong password for the extension. This encrypts your imported private key locally on your device. It never leaves your computer. Use a unique password — not one reused from email or other wallets.
Import Your Compromised Wallet
Enter the private key of the hacked wallet (the one eligible for the airdrop). Rescue Wallet stores it encrypted locally. This is the signing key — not your safe wallet. Do not import your safe wallet here.
⚠️ Only enter the private key of the already-compromised wallet. Never enter the key of a safe wallet into any tool.
Set Your Safe Destination Address
Enter the public address of your safe, clean wallet where claimed tokens should land. This is the most important step — all claimed tokens will route here instead of the hacked wallet, bypassing the sweeper bot.
Claim the Airdrop
Go to the project's official claim page and initiate the claim while using Rescue Wallet. The extension signs the transaction with the compromised wallet's key (proving eligibility) but routes tokens directly to your safe address.
After Rescuing — What to Do Next
Claiming the airdrop is only the first step. Protect yourself going forward:
Never use the compromised wallet again. Even after rescuing your airdrop, the attacker still has your key. Treat that address as permanently lost.
Move all rescued tokens to a hardware wallet. Ledger or Trezor are the gold standard. Software wallets can be compromised — hardware wallets cannot be remotely attacked.
Create a completely new wallet with a fresh seed phrase. Generate it offline if possible. Never store your seed phrase digitally — write it on paper and keep it offline.
Revoke all approvals the compromised wallet granted. Use revoke.cash to see and revoke every token approval. Approvals can be used to drain tokens even after you stop using a wallet.
Find out how you were compromised. Common causes: clicking a phishing link, approving a malicious contract, installing a fake wallet extension, or leaking your seed phrase in a Discord DM.
🔒 Buy crypto on a trusted exchange first
Keep your crypto on a CEX until your new wallet is set up safely
Frequently Asked Questions
Can I claim an airdrop if my wallet was hacked?
Yes, if the tokens haven't arrived yet. Rescue Wallet lets you set a destination address so claimed tokens go directly to your safe wallet, bypassing the sweeper bot on the compromised address.
What is Rescue Wallet?
A browser extension that lets you import a compromised wallet, set a safe destination address, and claim airdrops so tokens never touch the hacked wallet. Private keys are encrypted locally — never transmitted.
Is entering my private key into Rescue Wallet safe?
Rescue Wallet encrypts your key locally with your password. Always verify you're using the official extension from x.com/Rescue_Wallet. Since the wallet is already compromised, the risk is lower than using this on a clean wallet.
Why do attackers steal airdrops so fast?
Sweeper bots monitor compromised addresses 24/7 via blockchain RPC. The moment tokens arrive, the bot broadcasts a sweep transaction in milliseconds — faster than any human can react. You need to claim with the tokens routed away from the compromised address from the start.
What should I do after rescuing my tokens?
Stop using the compromised wallet forever. Move rescued tokens to a hardware wallet. Create a new wallet with a fresh offline seed phrase. Revoke all approvals at revoke.cash. Find out how you were compromised to avoid it happening again.
Can Rescue Wallet recover ETH already in a hacked wallet?
It's primarily for claiming future airdrops, not recovering funds already sitting in the wallet (those are usually swept instantly). If ETH is there for gas, it may also be at risk. This tool works best for upcoming claims where tokens haven't arrived yet.