TW
Tripwire
Find contracts. Test them. Review real vulns.

Analysis Run

019b477e-a6d6-7110-9513-5d6a0ed1a4f5

complete
Chain ID
1
Address
0x7d692b829cb5a81b9e17066504143fc1b75e0c15
Block Number
Created
Mon, Dec 22, 2025 7:17 PM
Review Summary

What survived the funnel

Open this run to answer one question: is this real attacker-relevant behavior with real impact, or just normal contract plumbing?

back to vulns open contract
Confirmed
0
Validated
0
Source
Bytecode only
Review Backing
Not yet
Best current signal
ETH value transfer possible
crit 0 high 0 direct contract
Review Checklist
1. Read the findings table first. Ignore raw jobs until the result looks real.
2. Confirm attacker control, not just the existence of a sink.
3. Confirm money or privilege impact.
4. Keep it if the behavior is real. Kill it if this is normal proxy, admin, or upgrade plumbing.

Processing Jobs

Status & attempts
ID Type Status Attempts Heartbeat
20153 artifact.fetch complete 1 / 3 3 months ago
20154 tool.cast_disasm complete 1 / 3 3 months ago
88805 analysis.bundle complete 1 / 3 1 week ago
88806 capability.graph complete 1 / 3 1 week ago
88807 detector.run complete 1 / 3 1 week ago
88808 validation.fork complete 1 / 3 1 week ago

Artifact

Runtime bytecode: available
Creation TX:
Deployer:
Proxy: no
Implementation:
Verified Source: no

Slither

tool.slither

No slither job recorded yet.

Codex

report.consolidate

No codex job recorded yet.

Opcode Heuristics

tool.cast_disasm
Delegatecall
0
Selfdestruct
0
CREATE2
0
CALL-family (heavy)
3
EXT*/BALANCE
1
Total opcodes
344
Flags
No heuristic flags raised.
View cast disassembly output 
00000000: PUSH1 0x60
00000002: PUSH1 0x40
00000004: MSTORE
00000005: CALLDATASIZE
00000006: ISZERO
00000007: PUSH2 0x0056
0000000a: JUMPI
0000000b: PUSH1 0xe0
0000000d: PUSH1 0x02
0000000f: EXP
00000010: PUSH1 0x00
00000012: CALLDATALOAD
00000013: DIV
00000014: PUSH4 0x2f29d8c5
00000019: DUP2
0000001a: EQ
0000001b: PUSH2 0x0073
0000001e: JUMPI
0000001f: DUP1
00000020: PUSH4 0x55234ec0
00000025: EQ
00000026: PUSH2 0x0080
00000029: JUMPI
0000002a: DUP1
0000002b: PUSH4 0x806b984f
00000030: EQ
00000031: PUSH2 0x008e
00000034: JUMPI
00000035: DUP1
00000036: PUSH4 0x967ff23e
0000003b: EQ
0000003c: PUSH2 0x0097
0000003f: JUMPI
00000040: DUP1
00000041: PUSH4 0xa035b1fe
00000046: EQ
00000047: PUSH2 0x00a0
0000004a: JUMPI
0000004b: DUP1
0000004c: PUSH4 0xe3450e13
00000051: EQ
00000052: PUSH2 0x00a9
00000055: JUMPI
00000056: JUMPDEST
00000057: PUSH2 0x00bb
0000005a: CALLVALUE
0000005b: PUSH1 0x01
0000005d: PUSH1 0xa0
0000005f: PUSH1 0x02
00000061: EXP
00000062: SUB
00000063: ADDRESS
00000064: AND
00000065: BALANCE
00000066: SUB
00000067: PUSH1 0x00
00000069: DUP1
0000006a: DUP1
0000006b: DUP1
0000006c: PUSH2 0x00bd
0000006f: PUSH2 0x0084
00000072: JUMP
00000073: JUMPDEST
00000074: PUSH2 0x01bb
00000077: JUMPDEST
00000078: PUSH1 0x02
0000007a: SLOAD
0000007b: NUMBER
0000007c: SUB
0000007d: JUMPDEST
0000007e: SWAP1
0000007f: JUMP
00000080: JUMPDEST
00000081: PUSH2 0x01bb
00000084: JUMPDEST
00000085: PUSH1 0x00
00000087: PUSH2 0x01ea
0000008a: PUSH2 0x0077
0000008d: JUMP
0000008e: JUMPDEST
0000008f: PUSH2 0x01bb
00000092: PUSH1 0x02
00000094: SLOAD
00000095: DUP2
00000096: JUMP
00000097: JUMPDEST
00000098: PUSH2 0x01bb
0000009b: PUSH1 0x03
0000009d: SLOAD
0000009e: DUP2
0000009f: JUMP
000000a0: JUMPDEST
000000a1: PUSH2 0x01bb
000000a4: PUSH1 0x04
000000a6: SLOAD
000000a7: DUP2
000000a8: JUMP
000000a9: JUMPDEST
000000aa: PUSH2 0x01cd
000000ad: PUSH1 0x01
000000af: SLOAD
000000b0: PUSH1 0x01
000000b2: PUSH1 0xa0
000000b4: PUSH1 0x02
000000b6: EXP
000000b7: SUB
000000b8: AND
000000b9: DUP2
000000ba: JUMP
000000bb: JUMPDEST
000000bc: STOP
000000bd: JUMPDEST
000000be: LT
000000bf: DUP1
000000c0: ISZERO
000000c1: PUSH2 0x00cc
000000c4: JUMPI
000000c5: POP
000000c6: PUSH1 0x04
000000c8: SLOAD
000000c9: DUP5
000000ca: LT
000000cb: ISZERO
000000cc: JUMPDEST
000000cd: DUP1
000000ce: ISZERO
000000cf: PUSH2 0x00e6
000000d2: JUMPI
000000d3: POP
000000d4: PUSH1 0x01
000000d6: SLOAD
000000d7: PUSH1 0x00
000000d9: PUSH1 0x01
000000db: PUSH1 0xa0
000000dd: PUSH1 0x02
000000df: EXP
000000e0: SUB
000000e1: SWAP2
000000e2: SWAP1
000000e3: SWAP2
000000e4: AND
000000e5: GT
000000e6: JUMPDEST
000000e7: DUP1
000000e8: ISZERO
000000e9: PUSH2 0x00f5
000000ec: JUMPI
000000ed: POP
000000ee: PUSH1 0x02
000000f0: SLOAD
000000f1: PUSH1 0x00
000000f3: SWAP1
000000f4: GT
000000f5: JUMPDEST
000000f6: ISZERO
000000f7: PUSH2 0x0140
000000fa: JUMPI
000000fb: PUSH1 0x40
000000fd: MLOAD
000000fe: PUSH1 0x00
00000100: DUP1
00000101: SLOAD
00000102: PUSH1 0x64
00000104: DUP8
00000105: DIV
00000106: SWAP6
00000107: POP
00000108: DUP6
00000109: DUP8
0000010a: SUB
0000010b: SWAP5
0000010c: POP
0000010d: PUSH1 0x01
0000010f: PUSH1 0xa0
00000111: PUSH1 0x02
00000113: EXP
00000114: SUB
00000115: AND
00000116: SWAP2
00000117: DUP6
00000118: SWAP1
00000119: DUP3
0000011a: DUP2
0000011b: DUP2
0000011c: DUP2
0000011d: DUP6
0000011e: DUP9
0000011f: DUP4
00000120: CALL
00000121: POP
00000122: PUSH1 0x01
00000124: SLOAD
00000125: PUSH1 0x01
00000127: PUSH1 0xa0
00000129: PUSH1 0x02
0000012b: EXP
0000012c: SUB
0000012d: AND
0000012e: SWAP4
0000012f: POP
00000130: DUP6
00000131: SWAP2
00000132: POP
00000133: DUP3
00000134: DUP2
00000135: DUP2
00000136: DUP2
00000137: DUP6
00000138: DUP9
00000139: DUP4
0000013a: CALL
0000013b: POP
0000013c: POP
0000013d: POP
0000013e: POP
0000013f: POP
00000140: JUMPDEST
00000141: POP
00000142: PUSH1 0x04
00000144: SLOAD
00000145: CALLVALUE
00000146: SUB
00000147: PUSH1 0x00
00000149: DUP2
0000014a: LT
0000014b: PUSH2 0x01b5
0000014e: JUMPI
0000014f: PUSH1 0x01
00000151: DUP1
00000152: SLOAD
00000153: PUSH20 0xffffffffffffffffffffffffffffffffffffffff
00000168: NOT
00000169: AND
0000016a: CALLER
0000016b: OR
0000016c: SWAP1
0000016d: SSTORE
0000016e: NUMBER
0000016f: PUSH1 0x02
00000171: SSTORE
00000172: PUSH1 0x00
00000174: DUP2
00000175: GT
00000176: ISZERO
00000177: PUSH2 0x01b5
0000017a: JUMPI
0000017b: PUSH1 0x01
0000017d: PUSH1 0x00
0000017f: SWAP1
00000180: SLOAD
00000181: SWAP1
00000182: PUSH2 0x0100
00000185: EXP
00000186: SWAP1
00000187: DIV
00000188: PUSH1 0x01
0000018a: PUSH1 0xa0
0000018c: PUSH1 0x02
0000018e: EXP
0000018f: SUB
00000190: AND
00000191: PUSH1 0x01
00000193: PUSH1 0xa0
00000195: PUSH1 0x02
00000197: EXP
00000198: SUB
00000199: AND
0000019a: PUSH1 0x00
0000019c: DUP3
0000019d: PUSH1 0x40
0000019f: MLOAD
000001a0: DUP1
000001a1: SWAP1
000001a2: POP
000001a3: PUSH1 0x00
000001a5: PUSH1 0x40
000001a7: MLOAD
000001a8: DUP1
000001a9: DUP4
000001aa: SUB
000001ab: DUP2
000001ac: DUP6
000001ad: DUP9
000001ae: DUP9
000001af: CALL
000001b0: POP
000001b1: POP
000001b2: POP
000001b3: POP
000001b4: POP
000001b5: JUMPDEST
000001b6: POP
000001b7: POP
000001b8: POP
000001b9: POP
000001ba: JUMP
000001bb: JUMPDEST
000001bc: PUSH1 0x40
000001be: DUP1
000001bf: MLOAD
000001c0: SWAP2
000001c1: DUP3
000001c2: MSTORE
000001c3: MLOAD
000001c4: SWAP1
000001c5: DUP2
000001c6: SWAP1
000001c7: SUB
000001c8: PUSH1 0x20
000001ca: ADD
000001cb: SWAP1
000001cc: RETURN
000001cd: JUMPDEST
000001ce: PUSH1 0x40
000001d0: DUP1
000001d1: MLOAD
000001d2: PUSH1 0x01
000001d4: PUSH1 0xa0
000001d6: PUSH1 0x02
000001d8: EXP
000001d9: SUB
000001da: SWAP3
000001db: SWAP1
000001dc: SWAP3
000001dd: AND
000001de: DUP3
000001df: MSTORE
000001e0: MLOAD
000001e1: SWAP1
000001e2: DUP2
000001e3: SWAP1
000001e4: SUB
000001e5: PUSH1 0x20
000001e7: ADD
000001e8: SWAP1
000001e9: RETURN
000001ea: JUMPDEST
000001eb: PUSH1 0x03
000001ed: SLOAD
000001ee: SUB
000001ef: SWAP1
000001f0: POP
000001f1: PUSH2 0x007d
000001f4: JUMP

Findings

validated = confirmed for call sinks; sink observed for others
Severity Category Tool Title Confidence Validated Confirmed Details
high other detector ETH value transfer possible 55 no no
view
trace_id: 0x9b616ee5f81a5d85eac223e7da1a7345ea3c9e752956d88675969e89f039dfa7
call_targets: 0x7d692b829cb5a81b9e17066504143fc1b75e0c15
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x9b616ee5f81a5d85eac223e7da1a7345ea3c9e752956d88675969e89f039dfa7",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x7d692b829cb5a81b9e17066504143fc1b75e0c15"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x2f29d8c5",
            "selector": "0x2f29d8c5",
            "calldata_variants": [
                "0x2f29d8c5",
                "0x2f29d8c50000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x55234ec0",
            "selector": "0x55234ec0",
            "calldata_variants": [
                "0x55234ec0",
                "0x55234ec00000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x806b984f",
            "selector": "0x806b984f",
            "calldata_variants": [
                "0x806b984f",
                "0x806b984f0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x967ff23e",
            "selector": "0x967ff23e",
            "calldata_variants": [
                "0x967ff23e",
                "0x967ff23e0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xa035b1fe",
            "selector": "0xa035b1fe",
            "calldata_variants": [
                "0xa035b1fe",
                "0xa035b1fe0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xe3450e13",
            "selector": "0xe3450e13",
            "calldata_variants": [
                "0xe3450e13",
                "0xe3450e130000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 288,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 314,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 431,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "eth_value_calls": 3,
    "guards_detected": []
}
high other detector Untrusted CALL target/value reachable 60 no no
view
trace_id: 0x9b616ee5f81a5d85eac223e7da1a7345ea3c9e752956d88675969e89f039dfa7
call_targets: 0x7d692b829cb5a81b9e17066504143fc1b75e0c15
target_varies: no
classification: constant_target
validation_json 
{
    "sink": "CALL",
    "errors": 0,
    "status": "sink_reached",
    "attempts": 1,
    "trace_id": "0x9b616ee5f81a5d85eac223e7da1a7345ea3c9e752956d88675969e89f039dfa7",
    "confirmed": false,
    "trace_mode": "callTracer",
    "call_targets": [
        "0x7d692b829cb5a81b9e17066504143fc1b75e0c15"
    ],
    "matched_probe": null,
    "target_varies": false,
    "classification": "constant_target"
}
witness_json 
{
    "notes": "heuristic witness; entrypoints are best-effort selectors with zeroed calldata",
    "constraints": [],
    "entrypoints": [
        {
            "calldata": "0x2f29d8c5",
            "selector": "0x2f29d8c5",
            "calldata_variants": [
                "0x2f29d8c5",
                "0x2f29d8c50000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x55234ec0",
            "selector": "0x55234ec0",
            "calldata_variants": [
                "0x55234ec0",
                "0x55234ec00000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x806b984f",
            "selector": "0x806b984f",
            "calldata_variants": [
                "0x806b984f",
                "0x806b984f0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0x967ff23e",
            "selector": "0x967ff23e",
            "calldata_variants": [
                "0x967ff23e",
                "0x967ff23e0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xa035b1fe",
            "selector": "0xa035b1fe",
            "calldata_variants": [
                "0xa035b1fe",
                "0xa035b1fe0000000000000000000000000000000000000000000000000000000000000000"
            ]
        },
        {
            "calldata": "0xe3450e13",
            "selector": "0xe3450e13",
            "calldata_variants": [
                "0xe3450e13",
                "0xe3450e130000000000000000000000000000000000000000000000000000000000000000"
            ]
        }
    ]
}
evidence_json 
{
    "examples": [
        {
            "pc": 288,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 314,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        },
        {
            "pc": 431,
            "opcode": "CALL",
            "returndata_checked": null,
            "value_expression_category": "computed",
            "target_expression_category": "computed"
        }
    ],
    "call_count": 3,
    "guards_detected": [],
    "untrusted_call_count": 3
}