Sybil Attacker Report

[rchen8]

Related Addresses

0xf40c583b292ae74d3c352811e9a6aa4536fd36e5
0x19c6469a379202e4e609efef589594aa8817ffe8
0x1fe75249bae5791c78d6f292851a7f38af34a1cd
0x38f8e58554373f1ebc7b5596f4d39ccb74ad060a
0x31d59c28618ae3c5ecdd4ee5eb3810553bf16ba3
0x534966ec6f92dbb9883fd402b107abdc5c2664a7
0x55efe9d55e9c907e4cbc4786597a5171fe2bb5d7
0x58f69318b6aa34c6112981e123b8d125b9697f45
0x75860813cd32de6195384a18dde980c666223f44
0x949442a84efc7c07b22f02e0726b19388ff2fbea

Reasoning

The graph above includes 13 addresses but only consider the 10 addresses in the star graph on the right. All 10 addresses belong to the same connected subgraph component. The root node 0xf40 of the star graph is the Sybil farm, which is funded by the main account 0x38f. 0x38f and 0xf40 clearly belong to the same owner through multiple transactions that have been sent between the two addresses.

The following table shows the number of related addresses that have made similar transactions with Hop's smart contracts on each of the given dates. 8 of them sent ETH between Gnosis Chain and Polygon on the same day (2022-03-29) within a few hours of each other.

Date	# Addresses
2022-03-29	8
2022-04-28	4
2022-05-17	2
2021-10-17	2
2022-01-05	2
2021-12-20	2
2022-03-31	2

1. https://blockscout.com/xdai/mainnet/tx/0x1d980bdd68bae441a44d4a69bde3e69c7b8f77f6f532adda5585a90e1be4247b
2. https://blockscout.com/xdai/mainnet/tx/0xde5d4336c6a967b863c4b2ea6f5c11bad0849feddcabe4f2093c2530288eabcb
3. https://blockscout.com/xdai/mainnet/tx/0xd4f09a0f7ac7ebff6364cefc3c2051ee6ca2ffa8bfee57262d869288a4af6e78
4. https://blockscout.com/xdai/mainnet/tx/0x7c1059323fda5d64378430c0126ccf541e793af47d7102f587cf700a2b9c5f25
5. https://polygonscan.com/tx/0x6af9e558a8786b0a658ed2cd8f710b72d15acc75dd702937b58faf1d32295350
6. https://polygonscan.com/tx/0xcc46eed0aedc9a5e54ca0ec6aad1e0fabf685cedcfaad95d3da74e39520a48a5
7. https://polygonscan.com/tx/0xee6bf24cad967f29346eae4b30fe1d631c022a07ab6a1f0a0ac660723862e8f9
8. https://polygonscan.com/tx/0x5e784ee557eafc9793093ad2028fc51f16536f0e8e0c37523c2c30f08908e958

Methodology

I implemented the Union-Find algorithm, which is a famous graph algorithm that gets all of the connected subgraph components in O(1) time. The nodes in the graph are from the most up-to-date list of eligible airdrop addresses. The edges in the graph are from using Covalent's API to find transactions that connect between these addresses.

Finding the timestamps of Hop transactions per address is done using the Hop Explorer and reverse engineering their API so I can automate it. :)

Rewards Address

0x9bb82fbf10cF4959909BAB9bE07805bd1d28D04A

[shanefontaine]

Thank you for your report @rchen8. We have verified that the addresses in this report are Sybil attackers.

The report included 10 eligible addresses as Sybil attackers which means you are eligible for 2047.291032247580042108 HOP! When Hop DAO is live, we will make a proposal for this reward — subject to a 1 year lockup, as mentioned in the original Mirror post.

The qualified addresses are as follows:

0xf40c583b292ae74d3c352811e9a6aa4536fd36e5
0x19c6469a379202e4e609efef589594aa8817ffe8
0x1fe75249bae5791c78d6f292851a7f38af34a1cd
0x38f8e58554373f1ebc7b5596f4d39ccb74ad060a
0x31d59c28618ae3c5ecdd4ee5eb3810553bf16ba3
0x534966ec6f92dbb9883fd402b107abdc5c2664a7
0x55efe9d55e9c907e4cbc4786597a5171fe2bb5d7
0x58f69318b6aa34c6112981e123b8d125b9697f45
0x75860813cd32de6195384a18dde980c666223f44
0x949442a84efc7c07b22f02e0726b19388ff2fbea