TW
Tripwire
Find contracts. Test them. Review real vulns.

Analysis Run

019b3836-5a2c-72a3-b710-fa6869546a9f

complete
Chain ID
1
Address
0x01dc689804a1c05040b68388b9fd4a3755837d0c
Block Number
Created
Fri, Dec 19, 2025 8:04 PM
Review Summary

What survived the funnel

Open this run to answer one question: is this real attacker-relevant behavior with real impact, or just normal contract plumbing?

back to vulns open contract
Confirmed
0
Validated
0
Source
Bytecode only
Review Backing
Not yet
Best current signal
Untrusted CALL target/value reachable
crit 0 high 0 direct contract
Review Checklist
1. Read the findings table first. Ignore raw jobs until the result looks real.
2. Confirm attacker control, not just the existence of a sink.
3. Confirm money or privilege impact.
4. Keep it if the behavior is real. Kill it if this is normal proxy, admin, or upgrade plumbing.

Processing Jobs

Status & attempts
ID Type Status Attempts Heartbeat
8877 artifact.fetch complete 1 / 3 4 months ago
8878 tool.cast_disasm complete 1 / 3 4 months ago
52036 analysis.bundle complete 1 / 3 2 weeks ago
52037 capability.graph complete 1 / 3 2 weeks ago
52038 detector.run complete 1 / 3 2 weeks ago
52039 validation.fork complete 1 / 3 2 weeks ago

Artifact

Runtime bytecode: available
Creation TX:
Deployer:
Proxy: no
Implementation:
Verified Source: no

Slither

tool.slither

No slither job recorded yet.

Codex

report.consolidate

No codex job recorded yet.

Opcode Heuristics

tool.cast_disasm
Delegatecall
0
Selfdestruct
0
CREATE2
0
CALL-family (heavy)
2
EXT*/BALANCE
2
Total opcodes
224
Flags
No heuristic flags raised.
View cast disassembly output 
00000000: PUSH1 0x60
00000002: PUSH1 0x40
00000004: MSTORE
00000005: PUSH1 0x00
00000007: CALLDATALOAD
00000008: PUSH29 0x0100000000000000000000000000000000000000000000000000000000
00000026: SWAP1
00000027: DIV
00000028: DUP1
00000029: PUSH4 0x4bb278f3
0000002e: EQ
0000002f: PUSH2 0x0044
00000032: JUMPI
00000033: DUP1
00000034: PUSH4 0x590e1ae3
00000039: EQ
0000003a: PUSH2 0x0053
0000003d: JUMPI
0000003e: PUSH2 0x0042
00000041: JUMP
00000042: JUMPDEST
00000043: STOP
00000044: JUMPDEST
00000045: PUSH2 0x0051
00000048: PUSH1 0x04
0000004a: DUP1
0000004b: POP
0000004c: POP
0000004d: PUSH2 0x0062
00000050: JUMP
00000051: JUMPDEST
00000052: STOP
00000053: JUMPDEST
00000054: PUSH2 0x0060
00000057: PUSH1 0x04
00000059: DUP1
0000005a: POP
0000005b: POP
0000005c: PUSH2 0x0187
0000005f: JUMP
00000060: JUMPDEST
00000061: STOP
00000062: JUMPDEST
00000063: PUSH1 0x01
00000065: PUSH1 0x00
00000067: SWAP1
00000068: SLOAD
00000069: SWAP1
0000006a: PUSH2 0x0100
0000006d: EXP
0000006e: SWAP1
0000006f: DIV
00000070: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000085: AND
00000086: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000009b: AND
0000009c: CALLER
0000009d: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000000b2: AND
000000b3: EQ
000000b4: ISZERO
000000b5: DUP1
000000b6: ISZERO
000000b7: PUSH2 0x010e
000000ba: JUMPI
000000bb: POP
000000bc: PUSH1 0x02
000000be: PUSH1 0x00
000000c0: SWAP1
000000c1: SLOAD
000000c2: SWAP1
000000c3: PUSH2 0x0100
000000c6: EXP
000000c7: SWAP1
000000c8: DIV
000000c9: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000000de: AND
000000df: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000000f4: AND
000000f5: CALLER
000000f6: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000010b: AND
0000010c: EQ
0000010d: ISZERO
0000010e: JUMPDEST
0000010f: ISZERO
00000110: PUSH2 0x0118
00000113: JUMPI
00000114: PUSH2 0x0002
00000117: JUMP
00000118: JUMPDEST
00000119: PUSH1 0x00
0000011b: PUSH1 0x00
0000011d: SWAP1
0000011e: SLOAD
0000011f: SWAP1
00000120: PUSH2 0x0100
00000123: EXP
00000124: SWAP1
00000125: DIV
00000126: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000013b: AND
0000013c: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000151: AND
00000152: PUSH1 0x00
00000154: ADDRESS
00000155: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000016a: AND
0000016b: BALANCE
0000016c: PUSH1 0x40
0000016e: MLOAD
0000016f: DUP1
00000170: SWAP1
00000171: POP
00000172: PUSH1 0x00
00000174: PUSH1 0x40
00000176: MLOAD
00000177: DUP1
00000178: DUP4
00000179: SUB
0000017a: DUP2
0000017b: DUP6
0000017c: DUP9
0000017d: DUP9
0000017e: CALL
0000017f: SWAP4
00000180: POP
00000181: POP
00000182: POP
00000183: POP
00000184: POP
00000185: JUMPDEST
00000186: JUMP
00000187: JUMPDEST
00000188: PUSH1 0x00
0000018a: PUSH1 0x00
0000018c: SWAP1
0000018d: SLOAD
0000018e: SWAP1
0000018f: PUSH2 0x0100
00000192: EXP
00000193: SWAP1
00000194: DIV
00000195: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000001aa: AND
000001ab: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000001c0: AND
000001c1: CALLER
000001c2: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
000001d7: AND
000001d8: EQ
000001d9: ISZERO
000001da: DUP1
000001db: ISZERO
000001dc: PUSH2 0x0233
000001df: JUMPI
000001e0: POP
000001e1: PUSH1 0x02
000001e3: PUSH1 0x00
000001e5: SWAP1
000001e6: SLOAD
000001e7: SWAP1
000001e8: PUSH2 0x0100
000001eb: EXP
000001ec: SWAP1
000001ed: DIV
000001ee: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000203: AND
00000204: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000219: AND
0000021a: CALLER
0000021b: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000230: AND
00000231: EQ
00000232: ISZERO
00000233: JUMPDEST
00000234: ISZERO
00000235: PUSH2 0x023d
00000238: JUMPI
00000239: PUSH2 0x0002
0000023c: JUMP
0000023d: JUMPDEST
0000023e: PUSH1 0x01
00000240: PUSH1 0x00
00000242: SWAP1
00000243: SLOAD
00000244: SWAP1
00000245: PUSH2 0x0100
00000248: EXP
00000249: SWAP1
0000024a: DIV
0000024b: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000260: AND
00000261: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000276: AND
00000277: PUSH1 0x00
00000279: ADDRESS
0000027a: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
0000028f: AND
00000290: BALANCE
00000291: PUSH1 0x40
00000293: MLOAD
00000294: DUP1
00000295: SWAP1
00000296: POP
00000297: PUSH1 0x00
00000299: PUSH1 0x40
0000029b: MLOAD
0000029c: DUP1
0000029d: DUP4
0000029e: SUB
0000029f: DUP2
000002a0: DUP6
000002a1: DUP9
000002a2: DUP9
000002a3: CALL
000002a4: SWAP4
000002a5: POP
000002a6: POP
000002a7: POP
000002a8: POP
000002a9: POP
000002aa: JUMPDEST
000002ab: JUMP
View stderr 
Warning: This is a nightly build of Foundry. It is recommended to use the latest stable version. To mute this warning set `FOUNDRY_DISABLE_NIGHTLY_WARNING` in your environment.

Findings

validated = confirmed for call sinks; sink observed for others
Severity Category Tool Title Confidence Validated Confirmed Details
medium other detector Untrusted CALL target/value reachable 45 no no
view
trace_id: 0x5d150243c582d67bfc4c4513d2afbb3c4a21cbe6025ab100a725b160acd98bc2
call_targets: 0x01dc689804a1c05040b68388b9fd4a3755837d0c
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x5d150243c582d67bfc4c4513d2afbb3c4a21cbe6025ab100a725b160acd98bc2",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x01dc689804a1c05040b68388b9fd4a3755837d0c"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x4bb278f3",
            "selector": "0x4bb278f3",
            "calldata_variants": [
                "0x4bb278f3",
                "0x4bb278f30000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x590e1ae3",
            "selector": "0x590e1ae3",
            "calldata_variants": [
                "0x590e1ae3",
                "0x590e1ae30000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 382,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 675,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "call_count": 2,
    "guards_detected": [
        {
            "pc": 156,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 245,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 449,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 538,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        }
    ],
    "untrusted_call_count": 2
}
medium other detector ETH value transfer possible 40 no no
view
trace_id: 0x5d150243c582d67bfc4c4513d2afbb3c4a21cbe6025ab100a725b160acd98bc2
call_targets: 0x01dc689804a1c05040b68388b9fd4a3755837d0c
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x5d150243c582d67bfc4c4513d2afbb3c4a21cbe6025ab100a725b160acd98bc2",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x01dc689804a1c05040b68388b9fd4a3755837d0c"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x4bb278f3",
            "selector": "0x4bb278f3",
            "calldata_variants": [
                "0x4bb278f3",
                "0x4bb278f30000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x590e1ae3",
            "selector": "0x590e1ae3",
            "calldata_variants": [
                "0x590e1ae3",
                "0x590e1ae30000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 382,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 675,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "eth_value_calls": 2,
    "guards_detected": [
        {
            "pc": 156,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 245,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 449,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        },
        {
            "pc": 538,
            "type": "msg_sender_eq_const",
            "value": "0xffffffffffffffffffffffffffffffffffffffff"
        }
    ]
}