Protocol Exploit Report 4
TL;DR
- The exploiter swapped all of the assets for ETH.
- All the funds are now in one wallet(0xd01ae1a708614948b2b5e0b7ab5be6afa01325c7).
Timeline
- Jan-31–2022 09:34:14 PM +UTC, The exploiter moves funds to a new BSC wallet
- From address : 0xE56d461F957bB0e81AB6d1c15926Cd9653Aa6333
- New address : 0xE47044A84047A9540956DB668E97D2336B01D006
- Refer to the Transaction [1] at the end of this report - Jan-31–2022 09:35:58 PM +UTC, The exploiter swaps some funds from the new wallet to USDC via PancakeSwap and Ellipsis and then transfers to the celer network
- Transaction ID[2–8] - Jan-31–2022 09:42:28 PM +UTC, The exploiter transfers more funds to the wallet created in 1), then uses PancakeSwap to convert BNB to ETH, USDT, USDC, and then transfers it to the celer network
- Transaction ID [9–26]
- Failed Transaction ID [16] - Jan-31–2022 10:07:22 PM +UTC, The exploiter moves more funds, swaps them for USDT and ETH, and sends them to the celer network.
- Transaction ID [27–34] - Jan-31–2022 10:13:16 PM +UTC, The exploiter converts all remaining funds into BUSD using PancakeSwap and transfers them to Synapse Bridge Zap.
- Transaction ID [35–52] - Jan-31–2022 10:18:14 PM +UTC, In the Ethereum network, the exploiter converts all USDC and USDT received through the bridge into ETH using Curve SynthSwap and then transfers them to the original wallet.
- Transaction ID [53–69]
- Failed Transaction ID [54,59] - All stolen assets are converted into ETH and stored in the wallet of the Ethereum
- ETH wallet : 0xd01ae1a708614948b2b5e0b7ab5be6afa01325c7
- 29,724 ETH
Transactions
[1] https://bscscan.com/tx/0x31639bbc953b62394222b2cfc5c50f666e6837722ec4ad1503c468962b869816
[2] https://bscscan.com/tx/0x6c5ea382a45786998389095a3829277f5d155733025994cd5b5a545ed74bd377
[3] https://bscscan.com/tx/0xeba019b2657c495e1b6295ea2ac12263b5ed367b9eacd5db0834ad62dad9fb73
[4] https://bscscan.com/tx/0xb00dea7ccdd5463bcf429085f41b779539c81f0c5e1b16fdb56730571e252f1d
[5] https://bscscan.com/tx/0x5db5f5e6e066bfb80b9031a4f630d953b7d906a90595dd82fe6ff0f9f4088cb9
[6] https://bscscan.com/tx/0x730ca2cbae1444e7b4bc6ade8fa18328a91901287339f5387375469ed08ca863
[7] https://bscscan.com/tx/0x6712f2256e180a440621099196a7956ec02042771532efae3f7082174d04afcb
[8] https://bscscan.com/tx/0x8e9cb90eac31b16f1c87a74cca7627048b99c24dc6b5cd5f60a2ac5174f40794
[9] https://bscscan.com/tx/0x65a9063b5837f397f86e1ea18221cd866e8afb149fa3fe9e9791df95d581d755
[10] https://bscscan.com/tx/0x29c7d84f1bdca852eb730bdc4689b02e7d2ab9d99b4239cb8d2bd570c4c04055
[11] https://bscscan.com/tx/0xed9e6921fa7703e402038a54028b8a9c7f146f4320a39fd84323b27b3e764669
[12] https://bscscan.com/tx/0x14058bcf1675925defd889cd81c8ec451d65e4480eb6ef2e1f534d4e7f245347
[13] https://bscscan.com/tx/0xe428ebdf84c194a3d3578a3425f1c0dba5c5dd2411edce8659874a39195bf60a
[14] https://bscscan.com/tx/0x3d1eeef92ef92c47cfd87980875a9a085d1ed47c36d6112efb978f8d476f31a8
[15] https://bscscan.com/tx/0xd5bbba532e69d6fbe39166068381269469aca93baa76972ab101b54b2c049c32
[16] https://bscscan.com/tx/0xab7ef67cfebcf4138571c9d9c6b4b90a812d9ff484cc7a1630a86a01973becf0
[17] https://bscscan.com/tx/0x26e25a33254e2c20ac6c68f2c75cec2e780b5f1e8125a70b93107bd47585ab08
[18] https://bscscan.com/tx/0xe69adcd8c22a81780192ad939443252e00613382f7f48bfaed1efda83f3d7444
[19] https://bscscan.com/tx/0xb3b37205d2e682053f40f765f2b83c8d95e536b1299c763da6ff8a02e99151e2
[20] https://bscscan.com/tx/0x90660ad3c645be57362788cb32f85080d8abfbbdf08ea511efb283568c6f4207
[21] https://bscscan.com/tx/0xd3c2a0442c81bbdea495c2eaab5b938df602f0c7e3529762b6e6042e0c5313e2
[22] https://bscscan.com/tx/0x28a66d131b2985eaabd5378e083f163fdf6cb8765127dbf88201d80dba7d84e6
[23] https://bscscan.com/tx/0xb6a9107540ba9f41e50cbf4134a8c66b71b577cb96c8f5499958d2b260131b9d
[24] https://bscscan.com/tx/0xf98514149c178ea1f6c84aa347e9697f127f4383d6ded98d70de69abff6df60d
[25] https://bscscan.com/tx/0x7196ffcdb2794c0953a8d898dc5fb0e75486c03ed4e1fb2e6220fd212f07e88f
[26] https://bscscan.com/tx/0xbe554da674dca9bb989b5c9e867a801662ae5b28895b7b5672176f809577f0af
[27] https://bscscan.com/tx/0xd9840b38839e3db9dae7437c81dc69727008b1494ce9ec1156c56bc005fcf7f2
[28] https://bscscan.com/tx/0x51dbfd627d1df0171e6fdf9a77a7c698cfe6f41127e0927d33bd7fc34b761ba7
[29] https://bscscan.com/tx/0xa2529fec627468d4570824fcbb169f705c162af93db68b7677d96e3ed0a40c2c
[30] https://bscscan.com/tx/0x2da739509b6bf6a82bf82dd9513ea8b58736f121929b52c7ee7ed07f1f114bc9
[31] https://bscscan.com/tx/0x70e5523ac5ae7d3bd1caaa62f913894a7c7efba712a0b1b47664fff2ef167d19
[32] https://bscscan.com/tx/0x60f9af289a74af5aabde5c12337beaa1083b82187fe94acac0899ba36186dd53
[33] https://bscscan.com/tx/0x50c2bfd95edfcf4fcd49f1457460420919338bad3b7a2da680bf7d60ad90f982
[34] https://bscscan.com/tx/0x89f548b5ff8e8d40e8f834771ce2be67c823d256301636beb268029390857bc4
[35] https://bscscan.com/tx/0x441146542b3b6189567d8df9575c2859cdde062b72a0590938c4c400bd35d789
[36] https://bscscan.com/tx/0x763c848138233e938afa89a3626c09df1c9d3044bc67e877022b2b6d9bf20854
[37] https://bscscan.com/tx/0xd11040b81ba22dd79c784734008b45a1567011a820c80785f2e6ff3d4a7a8015
[38] https://bscscan.com/tx/0x7c775add4e49f617a6a0bde77e8e90ad0cde1077bdacb9cce66f5c1259a248bb
[39] https://bscscan.com/tx/0xa72017ad55bdf7657322a7920f5a3a9f2e909698e7ead11678bfa95d95a985b0
[40] https://bscscan.com/tx/0xbc230348edbd5034537bc1d28d427c795b35b8347d4f6db37dd4192d3713a826
[41] https://bscscan.com/tx/0xaeb35d18c9ad9a8283bed7dba4ac15614cf2aca5e75932988a382ebe5f49ac38
[42] https://bscscan.com/tx/0x6dce11034f9c5120341d8a01ec3f394694830d2e84f0b4dc5dea84b10b5846fd
[43] https://bscscan.com/tx/0x85db54e1f42ca282c34448272fd08e2fe707f9ee999194be11d0667c7a44b80e
[44] https://bscscan.com/tx/0x3c1c46e6e5eba254ea5f0c65b5c4c6beda4770d72f6ba57070baa129e33f4a1e
[45] https://bscscan.com/tx/0x6f2dc3bfca20bc512de3d676abcbc2c64c2788ecb97052536e7606b3dc068748
[46] https://bscscan.com/tx/0x9db89df4daba67124dd6000ac6aa6f9d935c47bb9a14cff343bc6c6512e8c131
[47] https://bscscan.com/tx/0xb23b6648fb79f87e1618392ca0f69fec481e5e3e6dc37134c3079b4c7e92b02d
[48] https://bscscan.com/tx/0x04be84bf584242c0e416ed1aa9b201a6fc544383bbd623aab8e99e598cef0624
[49] https://bscscan.com/tx/0x374185896772e30b029e06cd57b6d02374c4b2facfc9350427faabfd013d967a
[50] https://bscscan.com/tx/0xf4c284bd716b71816c745e9ebaab85238531ddf3f5ba803d74389229bda09e1b
[51] https://bscscan.com/tx/0xa02b940178143374678368f453e20fd8ee6b87b86a8a4a17e87db21536535693
[52] https://bscscan.com/tx/0xdb6b1aa342f31f474ff1fdee942ad3748b136e48ed43c76cdb5496f9d670cf99
[53] https://etherscan.io/tx/0x240286f6a566a58615ab9e9134ad2f84eb3756988c32fc0bf99879ebb2427bae
[54] https://etherscan.io/tx/0xd11b0d9048e29a2a94e05a06f71312793869d2ad6fbc4aeeb49818ffc752684f
[55] https://etherscan.io/tx/0x0c3a1ca345ead5193ac4a89df45af06610a9c71fa4cd064227e693f6e4d4a86b
[56] https://etherscan.io/tx/0x61c64f4c104abe3de577f7cb640d6d423e3d3a4ba51bb7e22774b9605b883406
[57] https://etherscan.io/tx/0x89d29e051a2c3a51acdc43e74b31f9cd32b34866dd838dfc41845382aaf3024a
[58] https://etherscan.io/tx/0xcd533c65441e888222e35183b6dfc7cf721d8db1954c3301fa35cdf43c3ef0a2
[59] https://etherscan.io/tx/0x162b6a205c0d3504f8bc45aab30ac2ae55f6b7ed085d5655d994454370d98da6
[60] https://etherscan.io/tx/0x12239765a23ebe10bd2f339ce2719e32747ee5366a90818ef8497355139faaf2
[61] https://etherscan.io/tx/0xce39911c4953715009c2ae754dcd36d859b97d8cbfbb758f79236b6050b4cde3
[62] https://etherscan.io/tx/0x58f1b50794e331a6343abf90dec75797950a19264c3cc669113ccce03bc22341
[63] https://etherscan.io/tx/0xf7450037e8c42a0df633ceb3aa6de36597fd7d0f4772fb2bb920796a8cd1a400
[64] https://etherscan.io/tx/0xc58af59a05ca09e1513b9d7c0edfc15d0d30a95933d06b4cb3307f566e71df22
[65] https://etherscan.io/tx/0x4f0a9aa8431c632371f0381ae31dfdbd68a859d29e3c8c2ce3d844bdf9bbd94d
[66] https://etherscan.io/tx/0xf7b331dfc7b55603156e6b066c5a53c35f1ee8c4a18a689878a5b81c3ff8f632
[67] https://etherscan.io/tx/0xbbd188b8945ac77f10988332ebf3c7e4c4fc166b4f17398758bc91834fbfeaa2
[68] https://etherscan.io/tx/0x1feabdf7290cdf79effdf542d1ff40e06155d4d7e538a5b99a615319fcb522d1
[69] https://etherscan.io/tx/0x088308a07130d13941e128700e7b95b772538afcd3c517a4af0262dba0d630ce
