search

hop-protocol / hop-airdrop

Hop Airdrop distribution 🐰
177 stars 220 forks source link

Sybil Attacker Report #292

Closed zlgitol closed 2 years ago

zlgitol commented 2 years ago

Related Addresses

25 addresses

0xe47f31e4d284548cfcc91541d8b107a94a8dec60

0x573a78a8ab1f3a2c77a87c0453aceca3df217b87
0x9b8821efe3ba146a44dfd9053e341c9e4ca7d4d5
0x2ab04d5b44384ed7205710a4fcb7c8d8cd9dccf7
0xc593ea41ec2ab22b7861b7eaf74c6e6412cb46c0
0x1a58d9c5118bb457ce492f7310d4a12a32311ad9
0x640927ae3192194c50f11a2f24a36f942e93c874
0x5fff8a65856ecbff96c32129e4887b90bf71c575
0x05a7b63d048364ee3eb98c87a2bb00645e4e66a4
0xd5485c942b8135c7d738aa228868fdfbdbee7e7f
0x902f84d4fed453f1faf135a11e33c9188e8eb6fe
0xf7bfffce353630924121a28b1f0d5b3d26185521
0x7d9207a26090368bf74e809ce7b3bd36893907c0
0xfbd9c9e123e5c10434d199e02223dbdfeecb28c6
0x531728d21f14fee7160dd255328137366e5f2fdb
0x6bbcd1cf7146ae5ef3f4ccdd66a7f78092c9e4da
0xe7cff7e5a3761526c732eec3b02d921cc83c4766
0xbb60ac404924c32305ec9752c47c81252280608d
0x338ae15b7bdfd7b4eb323071a1f93aa04928c7dd
0x41934646490c5dabffaf57a798613a4a90038623
0x5b431654c2527d3514c326cd4ea28957eea849ef
0xcb41d8b4d6060f934013b9370a08d12bea7817ac
0xa05a42691642973e9057e2b3a407c1076d2cc25c
0x93d531491b54b67f4213ed1b9ba19ab12b1e36f8
0x694f63b66442ea30971e00b0c432002433bd432d
0xe168eeb71e533a5b631398179b5da8c7fe73229f

Reasoning

All addresses received exact 0.2 xDAI from the same address 0xe47f31e4d284548cfcc91541d8b107a94a8dec60 during the time from 11/9/2021 2:03:00 PM to 11/9/2021 2:05:17 PM on the Gnosis chain.

Each destination address then employed hop to send USDT from Gnosis to Polygon, and back to Gnosis.

A few examples are here: https://explorer.hop.exchange/?account=0xc593ea41ec2ab22b7861b7eaf74c6e6412cb46c0 https://explorer.hop.exchange/?account=0xf7bfffce353630924121a28b1f0d5b3d26185521 https://explorer.hop.exchange/?account=0x05a7b63d048364ee3eb98c87a2bb00645e4e66a4

Following are the transaction details

<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:x="urn:schemas-microsoft-com:office:excel" xmlns="http://www.w3.org/TR/REC-html40">

address | TxHash | UnixTimestamp | Value -- | -- | -- | -- 0x573a78a8ab1f3a2c77a87c0453aceca3df217b87 | 0xfbaf98c772da27177e10e441851216a071e5eaa4cdd0f73df3f78ef6cfb05f10 | 11/9/2021 14:03 | 0.2 xDAI 0x9b8821efe3ba146a44dfd9053e341c9e4ca7d4d5 | 0x98e33b2373dcfafb2f2c1baee80fe76dc49526fada5bd7a3e82aced11b0c5868 | 11/9/2021 14:03 | 0.2 xDAI 0x2ab04d5b44384ed7205710a4fcb7c8d8cd9dccf7 | 0xcf566829e8c60b3606cb6371c117ad767c2756db69f4279b0fa6fdff30e205d8 | 11/9/2021 14:03 | 0.2 xDAI 0xc593ea41ec2ab22b7861b7eaf74c6e6412cb46c0 | 0x884d1f4c89872b25b2d2f453ca8825e2413ad479b676fecca1328d8e4b12c01a | 11/9/2021 14:03 | 0.2 xDAI 0x1a58d9c5118bb457ce492f7310d4a12a32311ad9 | 0x606218e1092e0cda154c67daf2958ebd7deede70007c4626585215fa2846d0ad | 11/9/2021 14:03 | 0.2 xDAI 0x640927ae3192194c50f11a2f24a36f942e93c874 | 0x9c6b7f77202d5066f921dd13e14a1e3b533cd69b86a46daddb91d931f14bf9a8 | 11/9/2021 14:03 | 0.2 xDAI 0x5fff8a65856ecbff96c32129e4887b90bf71c575 | 0x8d1102bcfca03e8fb7b83afb2ccb01510060ef3068d5d9521d11b2091fe8c9b0 | 11/9/2021 14:03 | 0.2 xDAI 0x05a7b63d048364ee3eb98c87a2bb00645e4e66a4 | 0x3d6cf5076ff5089cf8fee52bf04fe4530d98e64f2fa45919be2615eeb1434d7d | 11/9/2021 14:03 | 0.2 xDAI 0xd5485c942b8135c7d738aa228868fdfbdbee7e7f | 0x101ce4f5aa19ce1cb3bfb8cb972588265eaa95c2b7510812ca60111ae2ae220d | 11/9/2021 14:03 | 0.2 xDAI 0x902f84d4fed453f1faf135a11e33c9188e8eb6fe | 0x1760188b9f9227faf9cef0e0e9c048868d27ca35a880a6602a3acd55b01a2f86 | 11/9/2021 14:03 | 0.2 xDAI 0xf7bfffce353630924121a28b1f0d5b3d26185521 | 0x51088c8b3d8a8bee15e0ac9f8e0dea535ebb77984c19b2c172a6e5d693ba3467 | 11/9/2021 14:03 | 0.2 xDAI 0x7d9207a26090368bf74e809ce7b3bd36893907c0 | 0xb80eeaf4de989604545fe173ba18e74cc808885d114220a2a8505749e49b2f12 | 11/9/2021 14:04 | 0.2 xDAI 0xfbd9c9e123e5c10434d199e02223dbdfeecb28c6 | 0x483109dd734b16c22f5e8f1b4993a4c64b0f8f1a1e8812560e00bf2a8299cb35 | 11/9/2021 14:04 | 0.2 xDAI 0x531728d21f14fee7160dd255328137366e5f2fdb | 0x3d88b8b56c53641a3d9eec99f47dfcac8d2ecc9f97e9a850044759c26765ed69 | 11/9/2021 14:04 | 0.2 xDAI 0x6bbcd1cf7146ae5ef3f4ccdd66a7f78092c9e4da | 0xabd1d5064edda4252f2d12236a3374b6bf817f1d631d488aa646ecdfa3376655 | 11/9/2021 14:04 | 0.2 xDAI 0xe7cff7e5a3761526c732eec3b02d921cc83c4766 | 0x11ed834a6be690a71ffc247799d8e2e7897222c5ac198103198f81ccd158047c | 11/9/2021 14:04 | 0.2 xDAI 0xbb60ac404924c32305ec9752c47c81252280608d | 0xce0033fa230bd32913f79d9b616502e6cddb7d8d843a5aa3ea166c81e9964748 | 11/9/2021 14:04 | 0.2 xDAI 0x338ae15b7bdfd7b4eb323071a1f93aa04928c7dd | 0xf222b356828e4547dab1ca1f672410995553dd3ce99a1e3d80329b6f369a9439 | 11/9/2021 14:04 | 0.2 xDAI 0x41934646490c5dabffaf57a798613a4a90038623 | 0x5520e690f83a91fc230305b4dfbdcbe75e602a5d01761d7baa177132e8c88826 | 11/9/2021 14:04 | 0.2 xDAI 0x5b431654c2527d3514c326cd4ea28957eea849ef | 0x5148014e09bbbc8480e844bd34a928d3dc62c0c6adcd3c164423a0bdfcf5a5f6 | 11/9/2021 14:04 | 0.2 xDAI 0xcb41d8b4d6060f934013b9370a08d12bea7817ac | 0x43d0750c77ba6b819867c19a0ddefc1bf5e6d77f83425ac57783f4ce04ca1802 | 11/9/2021 14:04 | 0.2 xDAI 0xa05a42691642973e9057e2b3a407c1076d2cc25c | 0x00f3c6b997eb9f86dea922b801c6a7eff2b7ca3d76bebbbc743c2ab65342593c | 11/9/2021 14:05 | 0.2 xDAI 0x93d531491b54b67f4213ed1b9ba19ab12b1e36f8 | 0xbd4379879ab1782f700c0ff6e25b35bcf377e8b9a7ef643fc29ef665ab87b289 | 11/9/2021 14:05 | 0.2 xDAI 0x694f63b66442ea30971e00b0c432002433bd432d | 0x3e8bc53dcff8b9808cf95ca7a27b1701b8ce86b9b8d8341581647c8f9256cf95 | 11/9/2021 14:05 | 0.2 xDAI 0xe168eeb71e533a5b631398179b5da8c7fe73229f | 0x768233bee16978143159ef24cd9363e6ceebdc54dcf26e767b299e5ceeea2891 | 11/9/2021 14:05 | 0.2 xDAI

Methodology

This can be verified by inspecting the transaction details with TxHash on blockscout.com.

Rewards Address

0x61bC799fD0EB6C791E1cF22E1e9908635444d5A6

shanefontaine commented 2 years ago

Thank you for your report.

Unfortunately, only 5 of these addresses are eligible. All eligible addresses are here.

It looks like these addresses were reported in #192 .

Please note that, per the rules, only the Hop Bridge User token allocations are taken into consideration for the Sybil attacker submissions and not Hop LPs. Additionally, the submitted addresses may have existed on the list in the past, but someone might have submitted these addresses as a Sybil attacker before you did.