In the EU I get an EU cell plan because it's orders of magnitude cheaper than roaming from North America when travelling for a month.
So to log into my bank I have to load the website on my device, enter my username / password, have it send the SMS 2FA, switch to my home SIM card, wait to receive the text message, switch back to my EU SIM card, ensure internet works, then submit the 2FA code to finally log in.
That assumes I haven't forgotten something to poke the SIM card out with. I couldn't find eSIM last time I went to Portugal.
Did you use a brainwallet (ie, the hash of the password as the private key)?
It looks like the funds were drained within an hour of you loading the bounty. People have made giant lookup tables of brainwallet passwords and monitor the corresponding addresses for transactions. Reddit user u/btcrobinhood is known for doing this and returning the funds.
Even down to injecting an ad into the response as a joke.