This morning , it was reported on the BNB chain that the private key of the deployer of the Web3 pledge agreement ANKR contract leaked out. The attacker minted a large number of BNB derivatives aBNBc tokens to the power of 10 to the 43rd power, and then washed them out through the Tornado coin mixer. $250,000 in assets.
But the first time ANKR was attacked, before other DeFi liquidity pools supporting the corresponding tokens were smashed, a wallet address was found on the chain that quickly took advantage of the time difference within 2 minutes to quickly arbitrage about 15 million with 10 BNB BUSD, making the community question that he is the original culprit hacker himself.
4 Steps to Out of $15.5 Million
According to the DeBank wallet tracking service, the wallet 0x8894 started to make money when ANKR was attacked at around 10:00 this morning and issued a large amount of aBNBc:
- First exchange 10 BNB for 1INCH aBNBc at 1inch
- Exchange 183,884 aBNBc for 191,130 hBNB on the Helio protocol, BNB collateral on Helio.
- Lend 191,130 hBNB on the Helio protocol to lend 16,444,740 HAY, an algorithmic stable currency issued by Helio.
- Back to 1INCH , exchange 16,444,740 HAY for 15,504,986 BUSD.
Transfer to Binance after arbitrage
This extremely fast wallet address completed the above arbitrage in about 2 minutes, and transferred the funds to another wallet 0x4c7f , and finally transferred the funds to the Binance exchange wallet.
Since the community checked the address of the arbitrage wallet, it is believed that he repeatedly exchanged small amounts of aBNBc, hBNB, and HAY three tokens before the actual arbitrage, which is suspected to be a test, and it may be the hacker who attacked the ANKR protocol.
Previously, because the liquidity of hBNB and HAY in the Helio protocol was heavily absorbed by arbitrageurs, the stablecoin HAY began to be seriously decoupled this morning, and the current price is still below $0.5.
