On 13th March 2023, Euler Finance suffered a significant hack resulting in the loss of around $196 million in assets. The attacker carried out multiple flash loan attacks, and the breakdown of stolen assets includes USDC, stETH, WBTC, and DAI.<figure class="image image_resized" style="width:316.995px;"><img src="https://miro.medium.com/v2/resize:fit:320/1*YF3u_V1sqZTnVc715NiW9w.png" alt="" loading="lazy"><figcaption>Tokens Stolen</figcaption></figure>&nbsp;AnalysisThe attacker executed several transactions as follows.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*iC_w1ap8VykP2_oMw9rw-w.png" alt="" loading="lazy"><figcaption>Transactions involved in the hack.</figcaption></figure>&nbsp;One of the hacker transactions (related to the DAI token). <a href="https://etherscan.io/tx/0xc310a0affe2169d1f6feec1c63dbc7f7c62a887fa48795d327d4d2da2d6b111d">https://etherscan.io/tx/0xc310a0affe2169d1f6feec1c63dbc7f7c62a887fa48795d327d4d2da2d6b111d</a><h2 style="margin-left:0px;">For a deeper understanding, let’s recreate this hack.</h2><h2 style="margin-left:0px;">Step 1: Developing the smart contract used by the hacker based on the on-chain transactions.</h2>1.1 The first step involved borrowing 30 million DAI through a flash loan from Aave. This can be done by using the following contract where excuteHack is used to request the flash loan and the excuteOperation is called by the flash loan contract of Aave.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*NgNH7y_20CAkHdbGFrdHsA.png" alt="" loading="lazy"></figure>1.2 Then, deployed a smart contract and transferred 20 million DAI to it. Let’s add this operation in the executeOperation function as follows.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*yLz8BXtieBs_Lic7-2zszA.png" alt="" loading="lazy"></figure>1.3 The smart contract was then used to deposit 20 million DAI and mint 195 million eDAI / 200 million dDAI. After repaying 10 million DAI, the borrower minted 195 million eDAI / 200 million dDAI and donated 100 million eDAI to make the position liquidatable and changed the conversion rate, also added the liquidation smart contract deployment script to the function.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*gAJ9x_zCKUhDuGbiChJcvw.png" alt="" loading="lazy"></figure>1.4 Then called the liquidate function, initiating the liquidation process and obtaining 310 million dDAI and 250 million eDAI. Finally, the attacker called the withdraw function, obtaining 38.9 million DAI, which was used to repay the 30 million DAI borrowed through the flash loan. They profited 8.87 million.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*3bwHz_ZyFtJgS23qVv8_mw.png" alt="" loading="lazy"></figure>1.5 Putting everything together. You can also find the code on <a href="https://github.com/BuildBearLabs/Tutorials/blob/main/EulerHack.sol">GitHub</a>.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*NEB6AWC1tkzh3He7E6lidg.png" alt="" loading="lazy"><figcaption>Final smart contract</figcaption></figure>&nbsp;<h2 style="margin-left:0px;">Step 2: We will use BuildBear to fork the Ethereum Mainnet to perform the Hack.</h2>2.1 To make our lives easier we have <a href="http://buildbear.io/">BuildBear.io</a> , just head out to <a href="http://buildbear.io/">BuildBear.io</a> and create a private Testnet by forking Ethereum from 16817993. which was 1 block before the hack was performed.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*x7nO9VHhIhqGhwF8nDKRGw.png" alt="" loading="lazy"><figcaption>Forking Ethereum Mainnet</figcaption></figure>&nbsp;2.2 You can add the private Testnet to your MetaMask wallet by clicking on ‘Add to MetaMask’ on the <a href="http://buildbear.io/">BuildBear.io</a> <a href="http://website.so/">website.</a> So that we can sign and send transactions from Wallet.<figure class="image image_resized" style="width:478.996px;"><img src="https://miro.medium.com/v2/resize:fit:483/1*mb8zFgp88v65TxUTQSkwww.png" alt="" loading="lazy"><figcaption>Dashboard</figcaption></figure>&nbsp;2.3 After that, you can visit the faucet on the Testnet, connect your wallet, enter the amount of BB Eth you want, and click on ‘Get BB Eth’. This will give you the necessary Testnet ether to perform the simulation.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*M1gaU9O-EN9ZmgwijRhRYA.png" alt="" loading="lazy"><figcaption>Faucet</figcaption></figure><h2 style="margin-left:0px;">Step 3: Deploying the Smart Contract</h2>3.1. Navigate to the <a href="https://remix.ethereum.org/">Remix Online IDE</a> website.3.2. Create a new contract and paste the Smart Contract we have developed, you can also find it over here 👉 <a href="https://github.com/BuildBearLabs/Tutorials/blob/main/EulerHack.sol">Github</a>3.3. Compile the Smart Contract, by using the following details:<figure class="image image_resized" style="width:386.998px;"><img src="https://miro.medium.com/v2/resize:fit:390/1*qJTJL1gvTsIJGJWssXSMeA.png" alt="" loading="lazy"><figcaption>Compile smart contract details</figcaption></figure>&nbsp;Please note that the ABI of the Contract is available only once the Contract is compiled. You can see in the above image the ABI which can be copied. Please keep this handy. We will need it momentarily.3.4. Select the “Deploy and Run Transactions” tab: and deploy the contract as follows:<figure class="image image_resized" style="width:391.989px;"><img src="https://miro.medium.com/v2/resize:fit:395/1*icbUikUWrfsPRVaHHrM9Hg.png" alt="" loading="lazy"><figcaption>Deployment of smart contract</figcaption></figure>&nbsp;<ul><li>Make sure that you update the Environment to “Injected provider — MetaMask” | CRITICAL,</li></ul>Click on the “transact” button to deploy the contract; once done, you will see something similar to the following:<figure class="image image_resized" style="width:332.992px;"><img src="https://miro.medium.com/v2/resize:fit:336/1*3Oe4AWCbMK3lLuiX-ov8WA.png" alt="" loading="lazy"><figcaption>Deployed contract</figcaption></figure>&nbsp;3.6. Copy the address of the Contract and visit the Blockchain Explorer for your personal forked Testnet (link available on the dashboard page at <a href="http://home.buildbear.io/">home.buildbear.io</a>) and locate your contract.3.6.1. Submit the ABI of the contract for ease of interaction.You can visit your contract page on BuildBear’s Blockchain Explorer and then visit the Contract tab. You should see something similar to the following:<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*d8KRxGhvoh0TEeyqo7rkdw.png" alt="" loading="lazy"><figcaption>Explorer contract page</figcaption></figure>&nbsp;Submit the ABI that we copied from Step 3.3; once done, you should see the Read and Write Contract buttons made available to you on the Contract Page:<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*zneuyGbpjmJWA3RqyeR4tQ.png" alt="" loading="lazy"><figcaption>Contract page one’s ABI is submitted.</figcaption></figure>&nbsp;Without any future due click on connect to web3 and click on the write of excuteHack function to perform the hack. ( MetaMask may take 10secs to process and show transaction confirmation screen).<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*b8SstdvaG6Fi2Kq1O9fJew.png" alt="" loading="lazy"><figcaption>Transaction details</figcaption></figure>&nbsp;Call the getdai() function and transfer the remaining DAI in the contract to our address.<figure class="image image_resized" style="width:162.993px;"><img src="https://miro.medium.com/v2/resize:fit:164/1*HDupMmursmh1kvjnzMSrog.png" alt="" loading="lazy"><figcaption>getdai function</figcaption></figure>&nbsp;We have received 8.8 million DAI.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:685/1*bqDV9rglvt0hy3HmA92Ing.png" alt="" loading="lazy"></figure>We have successfully recreated the hack 🎉🎉.<blockquote>Now you know exactly how the hack was performed !</blockquote><h1 style="margin-left:0px;">The vulnerabilities that allowed this hack to happen.</h1><h2 style="margin-left:0px;">1. Lack of liquidity checks on the donateToReserves function:</h2>The donateToReserves function enables Euler users to deposit funds into a reserved address using both Debt Tokens (DToken) and Equity Tokens (EToken). Unfortunately, the function does not check or confirm the liquidity status of borrowers, which can result in under-collateralized leverage. Essentially, users can donate their Equity Tokens to the reserve while their Debt Tokens remain unchanged, leading to technical bad debt. Hackers exploited this vulnerability by using a liquidation contract to withdraw funds from the protocol.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*ggiFAtnYuRefFlepzQfsnw.png" alt="" loading="lazy"><figcaption>donatetoReserve function of Euler Finance</figcaption></figure>&nbsp;<h2 style="margin-left:0px;">2. The Healthscore Flaw:</h2>Euler Finance assigns health scores to accounts, with insolvent accounts being allowed to keep collateral without repaying outstanding debt. This was done through the computeLiqOpp function. However, this logic can be exploited by attackers to conduct under-collateralized leverage.<figure class="image image_resized" style="width:679.997px;"><img src="https://miro.medium.com/v2/resize:fit:706/1*6ANjSGz9Xveuwg8W9RdQdg.png" alt="" loading="lazy"><figcaption>computeLiqOpp function of Euler Finance</figcaption></figure>&nbsp;We share developer's resources every single day, follow us on <a href="https://twitter.com/_BuildBear">Twitter</a>, and L<a href="https://www.linkedin.com/company/build-bear/">inkedIn</a> and <a href="https://t.me/+6mjOnBFUR9xjN2U1">Join the Telegram</a> group if you haven’t done yet.And please give us a clap 👏 if you like our work.This is for educational purposes only.About BuildBear:BuildBear is a platform for testing dApps at scale, for teams. It provides users with their own private Testnet to test their smart contracts and dApps, which can be forked from any EVM chain. It also provides a Faucet, Explorer, and RPC for testing purposes.BuildBear aims to build an ecosystem of tools for testing dApps at scale for the teams.Authors: <a href="https://twitter.com/chandan1_">Chandan</a>

Euler Finance’s 196 Million Flash Loan Exploit | Learn how to re-do the hack

Let’s get started then, Shall we?

Let’s get started then, Shall we?

Test DApps at Scale.