Crypto Analysis Risk Assessment (CARA) User Guide

CARA User Guide

Welcome to the Crypto Analysis Risk Assessment (CARA) User Guide. CARA is a tool which analyses cryptocurrency wallet addresses and comes up with the wallet’s risk score. This risk score then determines whether the wallet is suspicious, malicious or normal.

Starting with the CARA tool

Users can access the CARA tool by clicking on the “Risk Analytics” words on top of the Sentinel Portal.
Once users have clicked on the button, they would be brought to the CARA webpage.

The CARA simply requires users to input the cryptocurrency wallet address they wish to analyze and obtain a risk score of, then proceed to click on the ‘submit’ button. However, please take note that as of now, CARA only supports Ethereum wallet addresses.

Once a wallet address has been submitted, the CARA will take a few moments to analyze and compile a report on the wallet address. The time taken to analyze the wallet ranges from a few seconds up to six to seven minutes, depending on the number of transactions the wallet is involved in. Users can track the status of the availability of the report under the ‘Submission List’.

Users will be able to view the report the moment the report availability status is ‘released’.

In cases when users would like to re-analyze a wallet address (especially after some transactions have taken place on the wallet after the first analysis), they are advised to enable the “Force Re-analysis” checkbox next to the submit button before attempting to re-analyze the wallet address.

If users encounter an issue where the status of the report has turn to “Failed”, there are two possible errors which lead to this outcome.

  1. “Please try again later” - This error is seen due to system failure, server issues or internet connection problems and the like. Users are advised to attempt using CARA again at a later time or until the issues are resolved.
  2. “Too many transactions” - If the input wallet address has far too many transactions (such as exchange hot wallets), CARA is unable to analyse it and hence a report cannot be generated.

CARA Report Details

Through the report, users are able to view a variety of things which are explained further below:

Type: The type of cryptocurrency (e.g. Ethereum, Bitcoin, NEO)

Suspicious TX count: The number of suspicious transactions which the wallet address is involved in.

Suspicious TX amount: The value of cryptocurrencies involved in the suspicious transactions (in this case, 90 ETH).

Verdict: The most important aspect of the report. The verdict of CARA determines whether the wallet is safe, suspicious, highly suspicious or malicious. The verdict is based on the TRDB results and analytics summary, but the former takes precedence.

Summary: A summarized description explaining the CARA’s verdict of the wallet address.

Analytics Summary: A summary of the risk score, verdict, a brief explanation of the risk score of the wallet address and an elaboration of the risk scoring system. 0-15 means that the wallet is safe, 16-30 indicates suspicious activity, 31-50 implies highly suspicious behaviour and lastly, 51 and above means that the wallet is malicious.

TRDB Results: The status of the wallet address in the TRDB. It could range from unverified, whitelist or blacklist.

If users wish to download the report, there is an option to export the report as a PDF document. This can be done by clicking on the “Export as PDF” button on the top right of the webpage.

Users of the CARA can also view the wallet address on Etherscan or the Crypto Analysis Transaction Visualization (CATV) by clicking on the respective buttons next to the wallet address in the report.

List of Risk Indicators

Users are able to view the list of risk indicators which affect the risk score of the wallet address by scrolling down in the report.

These risk indicators are elaborated on when users hover their cursor over the blue information circle next to the risk indicators.


  1. The report information is obtained from sources believed to be reliable but is in no way guaranteed.
  2. The report does not discharge any obligation of proper internal risk assessment and decision-making process.
  3. The report should be read in full because any separate analysis of each of its parts can lead to erroneous conclusions.
  4. Uppsala Security does not give any implied warranty to the validity of the Report.
  5. Uppsala Security is not liable for any changes in assumptions and updates to this report in the case of new facts or circumstances occurring after the date of the report or not known to Uppsala Security at the time of generation of this Report.
  6. Uppsala Security reserves the right not to disclose certain information to any recipient used for analysis, due to intellectual property or confidentiality risk (e.g. cybercrime-related).
  7. Any decision taken by the recipient of this report is made solely on their own risk. The liability of Uppsala Security is hereby excluded to the fullest extent permitted by the applicable law, including loss of profits, loss of revenues, loss of opportunity or business interruption incur by the recipient.
  8. To clarify any aspects contained in the report, please contact us at

This disclaimer can be found at the bottom of every report generated by the CARA tool.

This is the end of the CARA User Guide. Please contact us at or at our forum if you have any questions about the CARA.

Twitter Feed

Start connecting with us today!