How to Spot Meme Coin Scams: Rug Pulls, Honeypots, and Red Flags
Meme coins can be fun, risky, and occasionally life-changing—but they are also the playground of scammers. Every week, thousands of investors lose money to rug pulls, honeypots, and other traps disguised as the next Dogecoin or Shiba Inu. This tutorial is for absolute beginners. By the end, you’ll know exactly what to look for before you buy any meme coin.
Time to read: ~10 minutes
Target audience: Crypto beginners
Key terms you’ll learn: rug pull mechanics, honeypot detection, contract analysis, liquidity checks
Step 1: Understand the Core Scam Types
Before you can spot a scam, you need to know the two most common ones.
Rug Pull – Developers create a coin, hype it up, then suddenly remove all liquidity (the money in the trading pool). The coin becomes worthless, and you’re left holding a useless token. Example: Squid Game (SQUID) token, which crashed from $2,861 to $0 in minutes.
Honeypot – You can buy the coin, but you cannot sell it. The smart contract is coded to block sell orders for everyone except the developers. Your money is trapped forever.
Both scams rely on meme coin hype and FOMO (fear of missing out). Your job is to look past the memes and examine the technical details.
Step 2: Learn the Red Flag Checklist (Print This)
Use this checklist before investing in any meme coin. If you see two or more red flags, walk away.
🔴 Red Flag Checklist
– [ ] No locked liquidity (developers can drain the pool).
– [ ] Contract is not verified on the block explorer.
– [ ] High buy tax (10%+), but sell tax is hidden or missing.
– [ ] No renounced ownership (developers can change the contract).
– [ ] Honeypot test fails (can’t sell in simulation).
– [ ] Liquidity pool is very small compared to market cap.
– [ ] Team is anonymous with no track record.
– [ ] Whitepaper is copied or filled with buzzwords like “moonshot,” “community-driven,” “next 1000x.”
– [ ] Social media accounts are brand new (less than 2 weeks old).
– [ ] Major holders (whales) own >20% of total supply.
💡 Beginner tip: If a coin’s website has grammar errors or a fake “audit” badge that links nowhere, treat it as a scam until proven otherwise.
Step 3: Perform a Basic Contract Analysis (No Coding Required)
You don’t need to be a programmer to analyze a smart contract. Free tools do the heavy lifting.
Tool needed: BscScan (for Binance Smart Chain) or Etherscan (for Ethereum).
What to check:
1. Contract verification – Is the source code public? If the contract is unverified, it’s a massive red flag. Scammers hide malicious code this way.
2. Holder distribution – Click “Holders” tab. Look for one wallet holding >5% of supply. If a single wallet holds 40%+, that’s a whale who can dump anytime.
3. Ownership renounce – In the “Contract” tab, look for a function called renounceOwnership. If it hasn’t been called, the developer can still modify the contract (e.g., enable a honeypot later).
Example: A coin called “SafeMoon Clone #42” shows 80% of tokens in one wallet. That wallet is the deployer. Red flag.
💡 Tip: Use Dextools.io or Poocoin.app for a quick visual of holder distribution. If the pie chart shows one giant slice, run.
Step 4: Master Honeypot Detection
A honeypot is the cruelest scam because you think you can trade freely. Here’s how to catch one.
Method 1: Use a honeypot checker
– Visit Honeypot.is (for Ethereum/BSC) or Token Sniffer.
– Paste the contract address. The tool will simulate a buy and sell. If the sell fails, it’s a honeypot.
Method 2: Manual sell test (small amount)
– Buy a tiny amount (e.g., $5 worth).
– Immediately try to sell it. If the transaction fails or the slippage is absurdly high (>50%), something is wrong.
Method 3: Check the contract for “transfer” restrictions
– On BscScan, go to “Read Contract”. Look for functions like _transfer, deliver, or takeFee. If you see conditions like if (sender != owner) { require(balance > 0); } that block sells, that’s a honeypot.
Real example: TikTok token “MemeCoin2024” – users bought $2M in 24 hours. But the contract had a hidden function that allowed only the dev to sell. The dev sold, others were stuck.
💡 Warning: Some honeypots allow small sells to trick you into buying more. Always test with a small amount first.
Step 5: Check Liquidity Locks and Pool Health
Liquidity is the lifeblood of a meme coin. Without it, you cannot sell.
What is a liquidity lock?
When developers create a trading pair (e.g., MEME/WBNB), they deposit tokens and BNB into a liquidity pool. A liquidity lock means those funds are sent to a smart contract that prevents withdrawal for a set time (e.g., 6 months, 1 year). If the lock expires or was never set, the dev can pull the rug.
How to check:
1. Go to the liquidity pool address (e.g., PancakeSwap pair).
2. On BscScan, look for the “Liquidity” tab (some tokens show it directly).
3. Use Unicrypt or Team Finance to verify if the LP tokens are locked. These are trusted lockers.
4. Check the lock duration. A lock of 1 month is risky. 12+ months is better.
What to avoid:
– No lock – Developer can withdraw anytime.
– Lock expires soon – Could be a timed rug pull.
– Locked to a personal wallet – Not a real lock; the dev can still move funds.
💡 Tip: Look for “LP lock” in the token’s Telegram or website. If they brag about it, verify on a locker site. Scammers fake lock screenshots.
Step 6: Analyze Real Scam Examples (Learn from Others)
Example 1: The $SQUID Rug Pull
– What happened: Squid Game token rode the Netflix hype. Users bought millions. The contract had a single function that blocked all sells.
– Red flags: No liquidity lock, anonymous team, unverified contract, 99% buy tax.
– Lesson: If a coin has zero sell history within hours of launch, it’s a trap.
Example 2: The “Fake Audit” Trap
– A coin called “MoonRocket” showed a “CertiK audit” badge. But the badge linked to a fake PDF, not the real CertiK website.
– Red flags: No real audit, team photos were stolen from LinkedIn, liquidity was unlocked.
– Lesson: Always click audit links. If they redirect to a generic page or a Google Doc, it’s fake.
Example 3: The “Stealth Launch” Honeypot
– A Twitter influencer promoted a “fair launch” coin. The contract was verified, but it had a maxTxAmount function that limited sells to 0.01% of supply.
– Red flags: Slippage needed was 99%, holders couldn’t sell more than $10 at a time.
– Lesson: Check the contract for maxTxAmount, maxWalletAmount, or sellLimit. These are often used to trap sellers.
Step 7: Use Free Tools for Meme Coin Contract Audit
You don’t need to pay for expensive audits. These free tools catch 90% of scams.
| Tool | Purpose | Link |
|---|---|---|
| Honeypot.is | Tests buy/sell ability | honeypot.is |
| Token Sniffer | Scans contract for known scam patterns | tokensniffer.com |
| Dextools | Shows price, liquidity, holder distribution | dextools.io |
| BscScan/Etherscan | Manual contract reading | bscscan.com / etherscan.io |
| Unicrypt | Verifies liquidity locks | unicrypt.network |
| RugDoc | Community-driven scam database | rugdoc.io |
How to run a quick “meme coin contract audit” in 60 seconds:
1. Copy the contract address.
2. Paste into Honeypot.is → click “Check”.
3. Paste into Token Sniffer → look for “high risk” flags.
4. On Dextools, check liquidity (should be >$50k for a serious coin) and holder count.
5. If all three tools show green, proceed with caution. If any show red, skip.
💡 Important: No tool is 100% perfect. Scammers evolve. Always use multiple tools.
Step 8: Final Due Diligence Before Buying
You’ve checked the contract, liquidity, and honeypot status. Now do these final checks:
- Social media – Is the Twitter account older than 2 weeks? Are there real comments or only bots? Use TweetBeaver to check follower authenticity.
- Telegram/Discord – Is the chat full of “wen moon” spam or actual discussion? Scam groups mute questions about the contract.
- Developer history – Search the contract address on RugDoc or ScamAlert. Has this team launched coins before that rugged?
- Slippage test – Try to simulate a sell with 1% slippage. If it fails, increase to 10%. If it still fails, suspicious.
- Check the “max wallet” – Some coins limit how much any one wallet can hold. If the limit is too low, you can’t sell large amounts.
The Golden Rule: If you feel rushed, anxious, or pressured to buy “before it moons,” step away. Scammers exploit FOMO. Legitimate projects don’t need to scream.
Summary: Your Anti-Scam Action Plan
| Step | Action | Tool |
|---|---|---|
| 1 | Run honeypot test | Honeypot.is |
| 2 | Check contract verification | BscScan/Etherscan |
| 3 | Verify liquidity lock | Unicrypt / Team Finance |
| 4 | Analyze holder distribution | Dextools / BscScan |
| 5 | Test small sell | Real wallet (small amount) |
| 6 | Check social media age | Twitter / Telegram |
Remember: Most meme coins fail or scam. Treat every coin as guilty until proven innocent. The checklist in Step 2 is your best friend.
💡 Final tip: Never invest more than you can afford to lose. Even “safe” meme coins can crash. Use a dedicated wallet (e.g., MetaMask) for meme coin trading—never your main savings wallet.
Stay safe, stay skeptical, and may your next trade be a real gem, not a rug.
Frequently Asked Questions
Q: What is a rug pull in crypto?
A: A rug pull is a scam where developers create a cryptocurrency token, hype it up to attract investors, and then suddenly remove all liquidity from the trading pool. This makes the token worthless, and investors are left holding a coin they cannot sell, as seen with the Squid Game token crash.
Q: How can I check if a meme coin is a honeypot?
A: Use free tools like Honeypot.is or Token Sniffer by pasting the contract address to simulate a buy and sell. If the sell fails in the simulation, it’s likely a honeypot. You can also buy a tiny amount (e.g., $5) and attempt to sell it immediately—if the transaction fails or requires extremely high slippage, avoid the coin.
Q: What does locked liquidity mean for meme coins?
A: Locked liquidity means the developer has deposited funds into a trading pool and used a smart contract to prevent withdrawal for a set period (e.g., 6–12 months). This protects investors because the developer cannot suddenly drain the pool and cause a rug pull. Always verify locks on sites like Unicrypt or Team Finance.
Q: How do I find the contract address for a meme coin?
A: The contract address is usually posted on the coin’s official website, Twitter, or Telegram group. You can also find it on decentralized exchange listings like PancakeSwap or Uniswap by searching for the token name. Always copy the address from a trusted source to avoid phishing scams.
Q: What is a honeypot scam in simple terms?
A: A honeypot is a scam token that lets you buy it but prevents you from selling it. The smart contract