Attack transaction

0xbad9df96dd8d203a63ecce95bbb343cf24fdbfa5a04bab7c31ab2c293707561d

cyUSDT Incident

Exploit transaction in initcode

Detected exploit transaction in contract deployment initcode

Transaction Details

Network	mainnet
Attacker Address	0x2d32f31a058602c96e6120c6f037cc8be4f356b2
Exploit Address	0xed43b1851b4de6870a8b4c1e76447e4e8dba3b34
Victim Address	0x16f75aa4bcab8a8fda2bcab023ca1ae581453ac5
Funding Source	tornado
Funds Lost	$31,947.71
Block	21088818
Timestamp	31 Oct 2024 23:09:59 +00:00 (10 months ago)

Attack Steps

Funding
16 Jan 2025 5:24:11 +00:00 +0.1 ETH
3 months
Exploit Contract Deployment
31 Oct 2024 23:09:59 +00:00
a few seconds
Attack Transaction
31 Oct 2024 23:09:59 +00:00 +$31,947.71

Exploit Analysis

Flashloans	No events	No tx history	console.log	SELFDESTRUCT	CREATE2

Functions
setOwner(address)
setExecutor(address)
getExecutor()
call(address,uint256,bytes)
getOwner()
USDC()
USDT()
DAI()
receiveFlashLoan(address[],uint256[],uint256[],bytes)

Events
No events found

Address	Found In
0xba12222222228d8ba445958a75a0704d566bf2c8 (Vault)	bytecode
0x2d32f31a058602c96e6120c6f037cc8be4f356b2	storage
0xa0b86991c6218b36c1d19d4a2e9eb0ce3606eb48	storage
0x48759f220ed983db51fa7a8c0d2aab8f3ce4166a	storage
0x8e595470ed749b85c6f7669de83eae304c2ec68f	storage
0x6b175474e89094c44da98b954eedeac495271d0f	storage
0xdac17f958d2ee523a2206206994597c13d831ec7	storage

External Call	To
No external calls found