Short answer Yes — in many cases this matches a wallet drainer pattern, but the key detail is: you likely didn’t just “send” tokens — you may have granted permission for them to be moved automatically afterward. That permission is what attackers exploit. What actually happened When you approve something in a crypto wallet, there are usually two different actions: Normal transfer • You send a specific amount once • You explicitly confirm it • It cannot be reused again Token approval (high risk if malicious) • You approve a smart contract • It may gain permission to spend your tokens • It can move funds without asking again • Sometimes it’s set to “unlimited allowance” This second one is what wallet drainers target. Wallets like MetaMask rely on these approvals to interact with DeFi apps — but scammers exploit that system.…