TW
Tripwire
Find contracts. Test them. Review real vulns.

Analysis Run

019b3836-4efa-705e-8b1d-95b14a9b16aa

complete
Chain ID
1
Address
0x49fb58aa72a2890d9f1bc473a4cf151be50320ea
Block Number
Created
Fri, Dec 19, 2025 8:04 PM
Review Summary

What survived the funnel

Open this run to answer one question: is this real attacker-relevant behavior with real impact, or just normal contract plumbing?

back to vulns open contract
Confirmed
0
Validated
0
Source
Bytecode only
Review Backing
Not yet
Best current signal
ETH value transfer possible
crit 0 high 0 direct contract
Review Checklist
1. Read the findings table first. Ignore raw jobs until the result looks real.
2. Confirm attacker control, not just the existence of a sink.
3. Confirm money or privilege impact.
4. Keep it if the behavior is real. Kill it if this is normal proxy, admin, or upgrade plumbing.

Processing Jobs

Status & attempts
ID Type Status Attempts Heartbeat
7463 artifact.fetch complete 1 / 3 3 months ago
7464 tool.cast_disasm complete 1 / 3 3 months ago
109346 analysis.bundle complete 1 / 3 1 week ago
109347 capability.graph complete 1 / 3 1 week ago
109348 detector.run complete 1 / 3 1 week ago
109349 validation.fork complete 1 / 3 1 week ago

Artifact

Runtime bytecode: available
Creation TX:
Deployer:
Proxy: no
Implementation:
Verified Source: no

Slither

tool.slither

No slither job recorded yet.

Codex

report.consolidate

No codex job recorded yet.

Opcode Heuristics

tool.cast_disasm
Delegatecall
0
Selfdestruct
0
CREATE2
0
CALL-family (heavy)
1
EXT*/BALANCE
0
Total opcodes
293
Flags
No heuristic flags raised.
View cast disassembly output 
00000000: PUSH1 0x60
00000002: PUSH1 0x40
00000004: MSTORE
00000005: CALLDATASIZE
00000006: ISZERO
00000007: PUSH2 0x0040
0000000a: JUMPI
0000000b: PUSH1 0xe0
0000000d: PUSH1 0x02
0000000f: EXP
00000010: PUSH1 0x00
00000012: CALLDATALOAD
00000013: DIV
00000014: PUSH4 0x12065fe0
00000019: DUP2
0000001a: EQ
0000001b: PUSH2 0x0063
0000001e: JUMPI
0000001f: DUP1
00000020: PUSH4 0x205c2878
00000025: EQ
00000026: PUSH2 0x0087
00000029: JUMPI
0000002a: DUP1
0000002b: PUSH4 0x47734892
00000030: EQ
00000031: PUSH2 0x0112
00000034: JUMPI
00000035: DUP1
00000036: PUSH4 0xa9059cbb
0000003b: EQ
0000003c: PUSH2 0x0132
0000003f: JUMPI
00000040: JUMPDEST
00000041: PUSH2 0x018a
00000044: PUSH1 0x01
00000046: PUSH1 0xa0
00000048: PUSH1 0x02
0000004a: EXP
0000004b: SUB
0000004c: CALLER
0000004d: AND
0000004e: PUSH1 0x00
00000050: SWAP1
00000051: DUP2
00000052: MSTORE
00000053: PUSH1 0x20
00000055: DUP2
00000056: SWAP1
00000057: MSTORE
00000058: PUSH1 0x40
0000005a: SWAP1
0000005b: KECCAK256
0000005c: DUP1
0000005d: SLOAD
0000005e: CALLVALUE
0000005f: ADD
00000060: SWAP1
00000061: SSTORE
00000062: JUMP
00000063: JUMPDEST
00000064: CALLER
00000065: PUSH1 0x01
00000067: PUSH1 0xa0
00000069: PUSH1 0x02
0000006b: EXP
0000006c: SUB
0000006d: AND
0000006e: PUSH1 0x00
00000070: SWAP1
00000071: DUP2
00000072: MSTORE
00000073: PUSH1 0x20
00000075: DUP2
00000076: SWAP1
00000077: MSTORE
00000078: PUSH1 0x40
0000007a: SWAP1
0000007b: KECCAK256
0000007c: SLOAD
0000007d: JUMPDEST
0000007e: PUSH1 0x60
00000080: SWAP1
00000081: DUP2
00000082: MSTORE
00000083: PUSH1 0x20
00000085: SWAP1
00000086: RETURN
00000087: JUMPDEST
00000088: PUSH2 0x018a
0000008b: PUSH1 0x04
0000008d: CALLDATALOAD
0000008e: PUSH1 0x24
00000090: CALLDATALOAD
00000091: PUSH1 0x01
00000093: PUSH1 0xa0
00000095: PUSH1 0x02
00000097: EXP
00000098: SUB
00000099: CALLER
0000009a: AND
0000009b: PUSH1 0x00
0000009d: SWAP1
0000009e: DUP2
0000009f: MSTORE
000000a0: PUSH1 0x20
000000a2: DUP2
000000a3: SWAP1
000000a4: MSTORE
000000a5: PUSH1 0x40
000000a7: SWAP1
000000a8: KECCAK256
000000a9: SLOAD
000000aa: DUP1
000000ab: DUP3
000000ac: GT
000000ad: PUSH2 0x010d
000000b0: JUMPI
000000b1: PUSH1 0x40
000000b3: PUSH1 0x00
000000b5: SWAP1
000000b6: DUP2
000000b7: KECCAK256
000000b8: DUP4
000000b9: DUP4
000000ba: SUB
000000bb: SWAP1
000000bc: SSTORE
000000bd: PUSH1 0x01
000000bf: PUSH1 0xa0
000000c1: PUSH1 0x02
000000c3: EXP
000000c4: SUB
000000c5: DUP5
000000c6: AND
000000c7: SWAP1
000000c8: DUP4
000000c9: PUSH1 0x60
000000cb: DUP3
000000cc: DUP2
000000cd: DUP2
000000ce: DUP2
000000cf: DUP6
000000d0: DUP9
000000d1: DUP4
000000d2: CALL
000000d3: SWAP4
000000d4: POP
000000d5: POP
000000d6: POP
000000d7: POP
000000d8: ISZERO
000000d9: ISZERO
000000da: PUSH2 0x010d
000000dd: JUMPI
000000de: DUP2
000000df: PUSH1 0x00
000000e1: PUSH1 0x00
000000e3: POP
000000e4: PUSH1 0x00
000000e6: CALLER
000000e7: PUSH1 0x01
000000e9: PUSH1 0xa0
000000eb: PUSH1 0x02
000000ed: EXP
000000ee: SUB
000000ef: AND
000000f0: DUP2
000000f1: MSTORE
000000f2: PUSH1 0x20
000000f4: ADD
000000f5: SWAP1
000000f6: DUP2
000000f7: MSTORE
000000f8: PUSH1 0x20
000000fa: ADD
000000fb: PUSH1 0x00
000000fd: KECCAK256
000000fe: PUSH1 0x00
00000100: DUP3
00000101: DUP3
00000102: DUP3
00000103: POP
00000104: SLOAD
00000105: ADD
00000106: SWAP3
00000107: POP
00000108: POP
00000109: DUP2
0000010a: SWAP1
0000010b: SSTORE
0000010c: POP
0000010d: JUMPDEST
0000010e: POP
0000010f: POP
00000110: POP
00000111: JUMP
00000112: JUMPDEST
00000113: PUSH1 0x04
00000115: CALLDATALOAD
00000116: PUSH1 0x01
00000118: PUSH1 0xa0
0000011a: PUSH1 0x02
0000011c: EXP
0000011d: SUB
0000011e: AND
0000011f: PUSH1 0x00
00000121: SWAP1
00000122: DUP2
00000123: MSTORE
00000124: PUSH1 0x20
00000126: DUP2
00000127: SWAP1
00000128: MSTORE
00000129: PUSH1 0x40
0000012b: SWAP1
0000012c: KECCAK256
0000012d: SLOAD
0000012e: PUSH2 0x007d
00000131: JUMP
00000132: JUMPDEST
00000133: PUSH2 0x018a
00000136: PUSH1 0x04
00000138: CALLDATALOAD
00000139: PUSH1 0x24
0000013b: CALLDATALOAD
0000013c: PUSH1 0x01
0000013e: PUSH1 0xa0
00000140: PUSH1 0x02
00000142: EXP
00000143: SUB
00000144: CALLER
00000145: AND
00000146: PUSH1 0x00
00000148: SWAP1
00000149: DUP2
0000014a: MSTORE
0000014b: PUSH1 0x20
0000014d: DUP2
0000014e: SWAP1
0000014f: MSTORE
00000150: PUSH1 0x40
00000152: SWAP1
00000153: KECCAK256
00000154: SLOAD
00000155: DUP2
00000156: SWAP1
00000157: LT
00000158: PUSH2 0x0186
0000015b: JUMPI
0000015c: PUSH1 0x40
0000015e: PUSH1 0x00
00000160: DUP2
00000161: DUP2
00000162: KECCAK256
00000163: PUSH1 0x01
00000165: PUSH1 0xa0
00000167: PUSH1 0x02
00000169: EXP
0000016a: SUB
0000016b: DUP6
0000016c: DUP2
0000016d: AND
0000016e: DUP4
0000016f: MSTORE
00000170: SWAP3
00000171: DUP3
00000172: KECCAK256
00000173: DUP1
00000174: SLOAD
00000175: DUP6
00000176: ADD
00000177: SWAP1
00000178: SSTORE
00000179: CALLER
0000017a: SWAP1
0000017b: SWAP3
0000017c: AND
0000017d: SWAP1
0000017e: MSTORE
0000017f: DUP1
00000180: SLOAD
00000181: DUP3
00000182: SWAP1
00000183: SUB
00000184: SWAP1
00000185: SSTORE
00000186: JUMPDEST
00000187: POP
00000188: POP
00000189: JUMP
0000018a: JUMPDEST
0000018b: STOP
View stderr 
Warning: This is a nightly build of Foundry. It is recommended to use the latest stable version. To mute this warning set `FOUNDRY_DISABLE_NIGHTLY_WARNING` in your environment.

Findings

validated = confirmed for call sinks; sink observed for others
Severity Category Tool Title Confidence Validated Confirmed Details
high other detector ETH value transfer possible 55 no no
view
trace_id: 0x71e97e131c35aab1fc94801f8b9cf3f8cd5350990f8bc184a8090e1e65209ffb
call_targets: 0x49fb58aa72a2890d9f1bc473a4cf151be50320ea
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x71e97e131c35aab1fc94801f8b9cf3f8cd5350990f8bc184a8090e1e65209ffb",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x49fb58aa72a2890d9f1bc473a4cf151be50320ea"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x12065fe0",
            "selector": "0x12065fe0",
            "calldata_variants": [
                "0x12065fe0",
                "0x12065fe00000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x205c2878",
            "selector": "0x205c2878",
            "calldata_variants": [
                "0x205c2878",
                "0x205c28780000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x47734892",
            "selector": "0x47734892",
            "calldata_variants": [
                "0x47734892",
                "0x477348920000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xa9059cbb",
            "selector": "0xa9059cbb",
            "calldata_variants": [
                "0xa9059cbb",
                "0xa9059cbb0000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 210,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "eth_value_calls": 1,
    "guards_detected": []
}
high other detector Untrusted CALL target/value reachable 60 no no
view
trace_id: 0x71e97e131c35aab1fc94801f8b9cf3f8cd5350990f8bc184a8090e1e65209ffb
call_targets: 0x49fb58aa72a2890d9f1bc473a4cf151be50320ea
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x71e97e131c35aab1fc94801f8b9cf3f8cd5350990f8bc184a8090e1e65209ffb",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x49fb58aa72a2890d9f1bc473a4cf151be50320ea"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x12065fe0",
            "selector": "0x12065fe0",
            "calldata_variants": [
                "0x12065fe0",
                "0x12065fe00000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x205c2878",
            "selector": "0x205c2878",
            "calldata_variants": [
                "0x205c2878",
                "0x205c28780000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x47734892",
            "selector": "0x47734892",
            "calldata_variants": [
                "0x47734892",
                "0x477348920000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xa9059cbb",
            "selector": "0xa9059cbb",
            "calldata_variants": [
                "0xa9059cbb",
                "0xa9059cbb0000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 210,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "call_count": 1,
    "guards_detected": [],
    "untrusted_call_count": 1
}