@Rexchangebot — the Telegram bot at the front of the REX · Virtual Visa Card scam
@Rexchangebot is the Telegram bot that hooks victims of the "REX · Virtual Visa Card" scheme.
Searches for the REX card on Google routinely land on rexcardly.com/contact.html, which directs
users straight to this bot for "instant 24/7 support". From there, the bot funnels the conversation to
operator @Rexchanges (Stanislav Reuev) who runs the actual extraction
workflow.
An anonymous-Visa-card sales funnel disguised as customer support
A Telegram bot is, technically, any account whose username ends with bot. The platform allows
legitimate bots — customer-service bots, notification bots, mini-app launchers — and it also allows scam
operators to spin one up in minutes. @Rexchangebot is the public face of the
REX · Virtual Visa Card brand on Telegram. It advertises an "anonymous Visa card" with "no KYC",
"ATM withdrawals in 190+ countries", and a "5-minute activation".
No regulated card issuer markets itself this way. Every Visa-branded virtual card in the regulated world goes through a card-issuing bank, applies KYC under FATF rules, and never asks a customer to scan a QR code or hand over a seed phrase to "activate" anything. The REX bot's pitch is internally inconsistent: it promises a real Visa card while bypassing every regulatory mechanism that makes Visa cards real.
The advertised "features"
- "Anonymous" Visa card with no KYC — flatly impossible at the Visa-network level.
- "ATM withdrawals in 190+ countries" — no banking partner named.
- "300,000 active users" and "30,000 reviews" — no auditable customer base; no reviews on regulated platforms.
- "24/7 support" routed to a private Telegram account, not a regulated customer-service channel.
- "5-minute setup" — implausibly fast for a Visa card; the time pressure is the lure.
What actually happens when you message @Rexchangebot
The exchange documented in the primary-source chat transcript follows a consistent pattern that we have reconstructed below. The bot itself does little — the heavy lifting is done by the human operator at @Rexchanges to whom the bot routes you.
-
Greeting and "card type" question
The bot welcomes you, asks whether you want Visa / Mastercard / UnionPay, and hands you off to the human operator.
-
Deposit instruction
The operator instructs you to deposit USDT (TRC-20) into a "top-up wallet" so the card can be "activated". In the documented case the deposit address was
TQU2MPLR…h2Rwq(the rest of the address is held privately for investigators). -
The wallet-passphrase request
"Just log in to Trust Wallet using your passphrase." A real card issuer would never ask for your wallet seed phrase. This is the bot's first explicit wallet-drainer attempt.
-
The QR-code pivot
If you refuse the passphrase, the operator pivots to a QR code that "only confirms 10 TRX". In documented drainer attacks, that approval is in fact an unlimited token-spending allowance for a malicious smart contract.
-
The withdrawal block
The mini-app's in-app withdrawal silently fails. The operator says the address needs "activating" with 30 TRX. Real exchanges deduct fees from the withdrawal; they never demand a separate top-up.
-
The "Private Access" upsell
You are pushed toward a $10,000 USDT deposit that supposedly unlocks "real-time withdrawals". This is the classic sunk-cost escalation that ties off the scheme.
Related infrastructure that all roads lead to
@Rexchangebot is one node in a wider operation. The same operator and the same workflow surface across these brands and properties:
- Operator: @Rexchanges (Stanislav Reuev / "RexChange Stanislav")
- Channels: @RexChangeOff, @apprexchangeoff
- Support landing page: rexcardly.com
- Web-app domain: rexcompanybusiness.online
- “Official website” domain: rexcompanybusiness.com
- Self-styled umbrella: "RexChange Group", "RexWallet"
The brand layering is itself a red flag: each property points to the next, but none of them point to an issuer bank, a regulator, a registered company, or any external attestation. The "REX" trail leads to Telegram and stops there.
Reporting @Rexchangebot in under five minutes
- Open the bot in Telegram → three-dot menu → Report → Scam. Repeat on every operator account, channel, and mini-app.
- Email abuse@telegram.org with the exported chat history and the bot username. Cite "Telegram Mini App / Bot platform abuse".
- Submit the receiving wallet to Chainabuse with rexscammers.com as the evidence URL.
- Submit the domains
rexcardly.com,rexcompanybusiness.com, andrexcompanybusiness.onlineto PhishTank, URLhaus, and Google Safe Browsing. - File a report with your national cybercrime unit (IC3, Action Fraud, CAFC, ReportCyber, etc.). The six-phase tutorial walks through every channel.
Transparent, correctable, public-interest publishing
This page combines primary-source evidence with the author's honest opinion based on that evidence and on widely documented crypto-fraud playbooks. It is not legal advice. It does not claim to establish criminal liability.
If you are an operator, employee, lawyer, or other authorised representative of the businesses referenced and you believe any factual statement is inaccurate, write to beware@rexscammers.com with a verifiable explanation, supporting documentation, or proof of a successful customer withdrawal. The page will be reviewed and updated or corrected within 7 days. See the full Right of Reply.