Sybil Attacker Report

[Annu2047]

Related Addresses

10 addresses

0x5ed2028d2905b143fe67844babd12db6edeba2e3
0xa545fba9444b2ff8f05c2f9c8a235be65c784abd
0xe78b2691f296af0bb3688bc6ac5e24348fbf116b
0xfcc4106f974d942f4a1e62e083c1830a7eadc303
0x1f132d3493a605a1da41b2355e7811b64ab6ca4e
0xc2765344776123ef1162f0076414f136fe4e01ad
0x4bc8d10073774494522d7ef745e4961cf2a1a71e
0x1a8eab7ebf9e810a9779689b927ffa9b4a0ae11a
0x1f46ed2beae19bfb74aa53b356b0fa8729df5a24
0x440b4a49248f25a9cf514ad8c1557cbf504ed5c4

Reasoning

All addresses accepted fund from 0xca812530a5a97f2cfb321fbd6f40da292e9f2045 used Disperse.App on Dec-02-2021 04:43:36 AM: https://polygonscan.com/tx/0xc0a0790a8a068e8e228c354590a89ae3bfc3887fc51ee748ace1980fb533d161 https://polygonscan.com/tx/0xfac0a280dbee4776d1c65a2ea21790af2d7ff2074c60fcb3009fdbbbcc0ccff4

All addresses claim Battlefly NFT from 2022-03-02 17:54:13 to 2022-03-03 14:51:36. All address also have a low nonce.

Claim Battlefly NFT tx details:

0x5ed2028d2905b143fe67844babd12db6edeba2e3(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x5ed2028d2905b143fe67844babd12db6edeba2e3) 0xa545fba9444b2ff8f05c2f9c8a235be65c784abd(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0xa545fba9444b2ff8f05c2f9c8a235be65c784abd) 0xe78b2691f296af0bb3688bc6ac5e24348fbf116b(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0xe78b2691f296af0bb3688bc6ac5e24348fbf116b) 0xfcc4106f974d942f4a1e62e083c1830a7eadc303(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0xfcc4106f974d942f4a1e62e083c1830a7eadc303) 0x1f132d3493a605a1da41b2355e7811b64ab6ca4e(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x1f132d3493a605a1da41b2355e7811b64ab6ca4e) 0xc2765344776123ef1162f0076414f136fe4e01ad(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0xc2765344776123ef1162f0076414f136fe4e01ad) 0x4bc8d10073774494522d7ef745e4961cf2a1a71e(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x4bc8d10073774494522d7ef745e4961cf2a1a71e) 0x1a8eab7ebf9e810a9779689b927ffa9b4a0ae11a(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x1a8eab7ebf9e810a9779689b927ffa9b4a0ae11a) 0x1f46ed2beae19bfb74aa53b356b0fa8729df5a24(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x1f46ed2beae19bfb74aa53b356b0fa8729df5a24) 0x440b4a49248f25a9cf514ad8c1557cbf504ed5c4(https://arbiscan.io/token/0x0af85a5624d24e2c6e7af3c0a0b102a28e36cea3?a=0x440b4a49248f25a9cf514ad8c1557cbf504ed5c4)

Methodology

I search all eligible addresses which received funding from a same EOA, then track all these addresses txs on different chain including ERC-20, ERC-721,ERC-1155.

Rewards Address

0x6a1AF72bBcfD0BA492E502F83334d3910Fa025dB

[shanefontaine]

@Annu2047 We have observed cases of apps sending funds through Disperse to help their users pay for gas on L2s. We have also seen altruistic people and faucets do the same. Because of this, we will need additional evidence. Some potential compelling evidence may be:

• Identical transactions on the exact same day/time by most or all of the addresses
• A trace of the ERC20 token between addresses (as opposed to native tokens)
• A similar time/date that all the addresses started transacting on a chain

The Battlefly NFT mint was only live for 48 hours, so the fact that they all minted it close to each other is not super compelling evidence (although it is interesting!).

Please let us know if you can provide this data. Thank you for your work.