DAO hack timeline

2 min readJun 21, 2016

time of hack
= 6/17/2016 3:34:48 UTC

ether transferred
= 3,641,694 ether (31.6%)
= USD 77,203,912 at start of hack
= USD 61,617,462 at end of hack

proposal involved
= 59

hacker’s main account
0x969837498944ae1dc0dcac2d0c65634c88729b2d

account of hacked ether
0x304a554a310c7e546dfe434669c62820b7d83490

creator of proposal 59
0xb656b2a9c3b2416437a811e07466ca712f5a5b5a
has ether funded by
0x48229752de3f97d6b5081619564acefa0375049b
here we assume that 0xb65… and 0x482… are both owned by one party

kraken’s dao wallet
0x0a869d79a7052c7f1b55a8ebabbea3420f0d1e13

poloniex’s dao wallet
0xdf21fa922215b1a56f5a6d6294e6e36c85a0acfb

1. proposal 59 created
0x5798fbc45e3b63832abc4984b0f3574a13545f415dd672cd8540cd71f735db56
6/8/2016 5:38:01 UTC

2. Christian Reitwiessner, creator of solidity, warns of possible re-entrancy attacks
https://blog.ethereum.org/2016/06/10/smart-contract-security/
6/10/2016 16:15:46 UTC
It seems that this warning was given to some developers a few days ago before released publicly
http://vessenes.com/more-ethereum-attacks-race-to-empty-is-the-real-deal/

3. first smart contract revealed publicly to be vulnerable to re-entrancy attacks
https://www.reddit.com/r/MakerDAO/comments/4niu10/critical_ether_token_wrapper_vulnerability_eth/
6/10/2016 22:34:19 UTC

4. unknown forum poster correctly identified the vulnerable function in the DAO but made the wrong conclusion that it was not exploitable
https://forum.daohub.org/t/bug-discovered-in-mkr-token-contract-also-affects-thedao-would-allow-users-to-steal-rewards-from-thedao-by-calling-recursively/4947
6/12/2016 00:00:01 UTC

5. 305,000 dao deposit to kraken from creator of proposal 59
0x0b5dfbbce4c4dad6eb92c0790fa9903cd7f27e70d9cadcd6aa30a63c0c11f7d6
6/14/2016 2:52:44 UTC

6. all remaining dao (306,914 dao) deposit to poloniex from creator of proposal 59
0xf0daeb80b0635bc78eb724660d8788c6758ffe7f5ce705c943121c43b388d7f0
6/14/2016 3:43:07 UTC

7. first dao transfer into hacker’s main account
0xc017561624884dff6916f1e4e6f450cd1ccefc0c922727eccb8ed791e224c0e2
6/14/2016 11:42:35 UTC

8. hacker vote yes for proposal 59
0xb5ff2d7a165baba4ca8d7bf8223af9dcf956ec6a4f4f85dbdd3ebea0111251ed
0x1de9b7db4d55af395518b83a49dafe0c37cb746e840ce9d4bc367cb050dbe6ac
6/15/2016 04:26:02 UTC

9. first successful hack
0x0ec3f2488a93839524add10ea229e773f6bc891b4eb4794c3337d4495263790b
6/17/2016 3:34:48 UTC

10. one of the first reddit post regarding the hack
https://www.reddit.com/r/ethereum/comments/4oi2ta/i_think_thedao_is_getting_drained_right_now/
6/17/2016 7:10:25 UTC

11. one of the first message on poloniex trollbox regarding the hack
http://www.polonibox.com/?messageId=7738533
6/17/2016 7:29:40 UTC

12. hacker stopped draining funds
0xa348da60799bff3ca804b3e49c96edebea44c5728a97f64bec3e21056d42f6e3
6/17/2016 11:00:23 UTC

13. Vitalik outlines recovery plan, mentioning a soft and hard fork
https://www.reddit.com/r/ethereum/comments/4oiqj7/critical_update_re_dao_vulnerability/
6/17/2016 11:13:41 UTC

More information:
1. Interactive charts
https://slacknation.github.io/medium/010/

Ethereum

Blockchain

Dao

Written by slacknation

224 Followers

Blockchain, make me rich and I care not what you can be used for.

Recommended from Medium

Manuel Medel
in
IDEX

The All-New IDEX — A Quick Recap

GM fam! Time for a quick recap of the all-new IDEX.

3 min readJul 6

ChainLight
in
ChainLight Blog & Research

Patch Thursday — Security risks due to exchange rate manipulation of ibToken

This article introduces the concept and principles of ibToken and sheds light on the security risks of ibToken exchange rate manipulation.

9 min readJun 29

Lists

My Kind Of Medium (All-Time Faves)

50 stories125 saves

Modern Marketing

46 stories272 saves

What is meant by proof of work (PoW) and proof of stake (PoS) in blockchain?

Aurangzaib Khalid

What is meant by proof of work (PoW) and proof of stake (PoS) in blockchain?

Proof of work (PoW) and proof of stake (PoS) are two consensus mechanisms used in blockchain technology. Consensus mechanisms are…

3 min readSep 25

How to Design a Lending Protocol on Ethereum

Alberto Cuesta Cañada

How to Design a Lending Protocol on Ethereum

Comparing the Architecture of MakerDAO, Yield, Compound, Aave and Euler

12 min readNov 7

Jon Crabb
in
Coinmonks

How to learn DeFi in 2023

The ultimate guide to your first steps

4 min readJul 7, 2022

0xbilly
in
0xIntuition

Navigating a Data-Driven World: The Evolution of Intuition

intuition /ˌin-tü-ˈi-shən/ (noun): the ability to understand something immediately, without the need for conscious reasoning

8 min readJun 8

See more recommendations

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams

DAO hack timeline

Written by slacknation

More from slacknation

DAO holders at 1,919,999

total accounts = 22,092

Vitalik’s ether holdings timeline

Vitalik’s initial ether holdings ≈ 553,118 + 143,889 ether = early contributors distribution + dev purchase program = 697,007 ether

The DAO funding timeline

Total ether collected = main contract + extra balance = 11,727,766.78 + 344,907.73 = 12,072,674.52 = USD 136,326,395.30 (estimated)

250% users online growth for Poloniex YTD

Poloniex growth YTD (year to date): users online ≈ 250% total accounts ≈ 45% 24hr btc volume ≈ 3,000%