Key Data Feed Details
Understand the fields, evidence, and review data available for each intelligence record in ANTID.
Overview
Each ANTID record is stored as a structured intelligence object. Records are designed to preserve the original payment detail, normalized value, contextual metadata, evidence references, review status, and timestamps that support investigation workflows.
This allows analysts to move from a raw finding to a reviewable record with source context, verification history, and operational metadata.
What a Record Contains
A typical record includes several layers of information:
- the original value as observed in the source
- a normalized version used for matching and correlation
- classification fields such as type and subtype
- operational review fields such as status and score
- contextual metadata such as bank, region, or provider
- evidence references and timestamps
- comments and analyst notes
Record Structure
Unique identifiers and classification fields that define what the record represents and how it should be grouped.
The original observed payment detail, its normalized form, and hashes used for matching, deduplication, and linking.
Status, score, comments, and analyst-facing fields used to track verification and review outcomes.
Supporting attributes such as bank, region, provider, tags, and related metadata that add investigative context.
Core Fields
| Prop | Type | Default |
|---|---|---|
id | string | - |
type | string | - |
subtype? | string | - |
raw_value | string | - |
normalized_value | string | - |
normalized_hash | string | - |
status | "new" | "review" | "verified" | "dismissed" | - |
score? | number | - |
Context and Enrichment Fields
| Prop | Type | Default |
|---|---|---|
tags? | string[] | - |
bank? | string | - |
bank_variants? | string[] | - |
region? | string | - |
account_holder? | string | - |
url? | string | - |
metadata? | Record<string, unknown> | - |
payment_provider_id? | string | null | - |
payment_provider? | string | null | - |
Evidence and Timeline Fields
| Prop | Type | Default |
|---|---|---|
evidence? | string | - |
evidence_sha256? | string | - |
created_at | string | - |
updated_at | string | - |
first_seen? | string | - |
comment? | string | - |
Example Record
{
"id": "ae14c916-8401-4e2a-aea0-9f9a7ff5a6eb",
"type": "account",
"subtype": "upi",
"raw_value": "sig@sbi",
"normalized_value": "sig@sbi",
"normalized_hash": "dcb2170d0c6c1309760a09c9f36af733aa5ed5a47a42eb08236510c1e20f1326",
"status": "review",
"score": 0,
"tags": ["betting", "gaming"],
"bank": "SBI",
"bank_variants": ["SBI"],
"region": "IN",
"account_holder": "Sig Vish",
"url": "https://ingames.com",
"evidence": "2025/12/14/997d9ab7bee14efe97516b9c4ec3afbf.png",
"evidence_sha256": "3b87e83d820906742961c58857db19de5177316bc73385b13eac0ecf8319b691",
"created_at": "2025-12-14T13:07:13.742446+00:00",
"updated_at": "2026-02-14T19:23:18.398749+00:00",
"first_seen": "2025-12-14T13:07:13.742446+00:00",
"comment": "verification done",
"metadata": {
"PSP": "Bpay"
},
"payment_provider_id": null,
"payment_provider": null
}Core Concepts
Learn how ANTID discovers, parses, verifies, and structures suspicious payment infrastructure into actionable intelligence.
How Payment Details Are Exploited for Illegal Activities
Understanding how payment accounts, cards, and digital wallets are abused for money laundering, illegal gambling, and underground financial networks.