Loss Exceeds $7.5 Million: Analysis of the Honeypot Attack Targeting MEV Bot and Tracking of Stolen Funds

marsbitPublished on 2026-06-22Last updated on 2026-06-22

Abstract

On June 21, Jaredfromsubway.eth, one of Ethereum's most active MEV bots, suffered a sophisticated honeypot attack, losing over $7.5 million in crypto assets. Attackers deployed a complex contract system, including a coordinator, trigger, and fake token/pair contracts, to exploit the bot's arbitrage logic. The core attack trick involved baiting the bot with transactions: small trades appeared normal and consumed token approvals, while larger trades preserved these approvals by using fake swaps. This left the bot with large, unused approvals for assets like USDC, USDT, and WETH. The attacker then drained these approvals in a final step. The stolen funds—$2.87M USDC, $2.04M USDT, and 1,474 WETH—were consolidated and partially laundered through Tornado Cash. This incident highlights that MEV bots must not rely solely on simulated profits for security. Extra caution is required with unfamiliar contracts or custom wrappers in arbitrage paths, and post-transaction allowance checks are strongly recommended.

On June 21, Jaredfromsubway.eth, one of the most active MEV Bots on the Ethereum network, fell victim to a meticulously orchestrated "honeypot attack," resulting in the loss of over $7.5 million worth of crypto assets. The following is Beosin Security Team's analysis of this attack and tracking of the stolen fund flow.

Attack Process Analysis

Attack Contract Family

- Coordinator Contract (0xb84db016324e8f2bfdd8dd9c260338aee0a8df52): Responsible for recording whether the current block is in an 'armed' state and, in the final stage, cyclically calling sub-contracts to drain funds.
- Trigger Contract (0x4de8c729a064ff6087cc84a4152969349e4feb98): Responsible for setting the state of fake trading pairs within the same block, making the arbitrage path appear executable.
- Sub-contract / Fake Token Contract: Disguised as a normal ERC-20 token, used to obtain genuine approvals.
- Hub Contract: Responsible for paying out a small amount of real profit, making the MEV Bot believe the opportunity is profitable.
- Ring V2 Pair: Fake Uniswap v2 trading pair.
- Fake Intermediate Token Contract: Used to construct multi-hop arbitrage paths, such as fCAP, fUSDC.

The Key to the Attack: Deceiving Approvals

By analyzing on-chain transactions, the attacker constructed multiple sets of bait transactions:

- Large USDC: The bot profited about 36.997120 USDC, but left behind an approval for 20 USDC.
- Large USDT: The bot profited about 37.053440 USDT, but left behind an approval for 20 USDT.
- Large WETH: The bot profited about 0.0179 WETH, but left behind an approval for 16 WETH.
- Small transactions behaved normally, with the approval consumed within the same transaction to reduce suspicion.

In small transactions, after the bot authorized a real token allowance, the sub-contract would immediately transfer the real tokens away. The approval was consumed, appearing completely normal.

In large transactions, however, the sub-contract would not call `transferFrom` to move the real tokens. Instead, it would directly mint fake tokens via the fake trading pair. The bot thought it had completed the normal pre-swap steps, but the real token approval remained intact.

This is the core of the entire attack: small transactions normally consume approvals, while large transactions preserve them.

Attack Procedure

Taking the attack transaction targeting USDC as an example:

(1) The attacker calls the coordinator to set the current block as 'armed'.
(2) The attacker calls the trigger to update the state of multiple fake Ring V2 pairs.
(3) The MEV Bot detects the arbitrage opportunity and executes the transaction.

The internal process of the MEV Bot transaction is roughly as follows:

(1) The MEV Bot contract approves a large USDC allowance to a specific sub-contract.
(2) The MEV Bot calls the `wrapTo`/`wrap` function of the sub-contract.
(3) Because the current state is 'armed', the sub-contract does not consume real USDC. Instead, it mints fake tokens to the pair, and the USDC approval is preserved.
(4) The MEV Bot continues by calling the `swap` function on the fake pair.
(5) The second-hop pair sends the tokens to the MEV Bot.
(6) The hub contract pays a small amount of real USDC profit to the MEV Bot.

approval example

tx hash: 0x0121e07a916c06eea3e7daf11893f3f0b95b9e1684124545ae14c32aee6029bb

The result seen by the MEV Bot: A successful arbitrage transaction yielding real USDC profit. However, the USDC approval was retained by the sub-contract.
This process was repeated for USDC, USDT, and WETH, ultimately accumulating numerous approvals.

The attack transaction hash is:

0x2be8704f5a59b69e0b71f64aefdb99eb0e8ae9fb3926147c581910d71bcf3e65

The attacker calls the `drain loop` function of the coordinator contract. The calldata contains 66 sub-contract addresses and the MEV Bot contract address. For any sub-contract to which the MEV Bot contract had previously left an allowance, that sub-contract could directly transfer the corresponding real tokens to the attacker.

Final Result:

- The entire 20 USDC large allowance was drained.
- The entire 16 WETH large allowance was drained.
- Part of the USDT allowance still exists, but the USDT balance is insufficient.

Fund Flow Analysis

After succeeding, the attacker's address (0x3e37f4A10d771Ba9dE44b6d301410b1BEdeA65d0) received $2.87M USDC, $2.04M USDT, and 1,474 WETH. Subsequently, the attacker exchanged the stablecoins for ETH and transferred it to the following 4 addresses:

- 0xe3Da36E4bd1a5738fa5D6Ef4F0e4dF40bDeB5f17 (approx. 1,000 ETH)
- 0x74Dc5b93586D248D5Aec64b3586736FF0A0D0e65 (1,001 ETH)
- 0xd8C125efCBc99408eC8723E9BBd81d1E8D39D845 (1,001 ETH)
- 0x71d4416A7A85e08a5Fe7227Ca3B44Fc639e94e97 (1,423 ETH)

Among these, 0xe3Da3 has transferred 1,000 ETH to Tornado Cash. The ETH at the other three addresses has not seen further movement. The fund flow chart is shown below:

Conclusion

This attack demonstrates a highly sophisticated method: instead of directly attacking contract code, the attacker, based on the business logic of MEV Bots, constructed corresponding arbitrage scenarios to mislead the MEV Bot into making seemingly harmless approvals, and then transferred its assets. For arbitrage bots and MEV Bots, relying solely on simulated profits to judge the safety of a route is insufficient. Especially when an arbitrage path involves unfamiliar contracts, fake tokens, or custom wrappers, caution is essential. Consider enforcing checks on allowance changes after transactions.

View Original Article

Trending Cryptos

Related Questions

QWhat was the total loss suffered by the MEV bot Jaredfromsubway.eth in the honeypot attack on June 21st?

AThe total loss exceeded 7.5 million US dollars worth of crypto assets.

QWhat was the core mechanism used in the honeypot attack to exploit the MEV bot?

AThe core mechanism was deceiving the bot into granting excessive token approvals (allowances). Small, normal-looking trades consumed the approval, while larger trades left the approval intact. The attacker later exploited these retained approvals to drain the bot's funds.

QWhich specific real-world assets (tokens) did the MEV bot lose in this attack?

AThe bot lost USDC, USDT, and WETH. Specifically, it lost $2.87M USDC, $2.04M USDT, and 1,474 WETH (which was later converted to more ETH).

QWhat was one of the final destination addresses for the stolen ETH, as mentioned in the fund flow analysis?

AOne of the final destinations was the privacy mixer Tornado Cash, where 1,000 ETH from address 0xe3Da36E4bd1a5738fa5D6Ef4F0e4dF40bDeB5f17 was sent.

QWhat key security recommendation does the article provide for MEV bots and arbitrage robots to prevent similar attacks?

AThe article recommends that MEV bots should not rely solely on simulated profits to judge the safety of a route. They should be cautious with unfamiliar contracts, fake tokens, or custom wrappers in an arbitrage path. Furthermore, they should consider implementing mandatory checks for allowance changes after a transaction.

Related Reads

Conversation with Co-founder of Hyperdash: Why is Hyperliquid Still Severely Undervalued?

Interview Summary with Hanson Birringer, Co-founder of Hyperdash: Why Hyperliquid Remains Undervalued In an interview on *The Rollup*, Hanson Birringer, Co-founder and Chief Revenue Officer of Hyperdash—a trading data analytics platform for Hyperliquid—shared his investment thesis on the Hyperliquid ecosystem. He described Hyperliquid as a pure play on three key crypto super-trends: perpetual contracts, real-world assets (RWAs), and stablecoins. The platform is an open-source, decentralized, and high-performance financial system uniquely positioned to bridge traditional institutional capital with decentralized finance. Birringer highlighted Hyperliquid's leadership in perpetual DEX trading and its recent innovation of RWA perpetual contracts. He emphasized the significance of USDC becoming a core quoting asset, which, by allocating 90% of its backend yield from assets like US treasuries to a protocol buyback fund, creates substantial, programmatic buy pressure for the Hype token. He addressed regulatory challenges, noting that Hyperliquid's policy team is actively engaging with US regulators like the CFTC to establish clear rules for decentralized venues. Once achieved, regulated brokers could route orders directly to Hyperliquid's backend, tapping into its low-cost liquidity layer. Regarding revenue, Birringer was optimistic, citing the immense size of traditional financial markets. Even capturing a small fraction of global trading volume in products like RWA perpetuals could lead to exponential growth for the protocol. The recently launched Grayscale Hyperliquid ETF, seeded by their SPV (Hyper Holdings Global), provides a compliant on-ramp for institutional investors drawn to the clear "cash flow + token buyback" model. Finally, he discussed Hyperdash's acquisition of Imperator, enhancing its data and node infrastructure to serve both retail traders and traditional asset managers. His bullish case rests on Hyperliquid's potential to provide unprecedented global access to dollar-based capital markets. He struggled to articulate a bear case, seeing the long-term trends of internet adoption and financial inclusion as powerful tailwinds.

marsbit50m ago

Conversation with Co-founder of Hyperdash: Why is Hyperliquid Still Severely Undervalued?

marsbit50m ago

DeepSeek V4 'Full-Blooded Edition' Leaked, Could Be Released As Early As Tomorrow

The highly anticipated full release of DeepSeek V4 is imminent, expected to launch as early as tomorrow after nearly three months of waiting. A select group has already received access to the GA (General Availability) beta, which includes two versions: DeepSeek V4 Flash and DeepSeek V4 Pro. Early testers report that V4's overall performance is close to the level of Opus 4.8, with coding capabilities rivaling GPT-5.6 Sol. Its agent abilities are significantly enhanced, and 3D/SVG generation has improved notably. While it may not surpass the recently released Kimi K3 in performance, its expected price point is significantly lower. The official release will introduce a new "peak/off-peak" pricing model for its API. For example, deepseek-v4-pro will cost $0.87 per million output tokens during standard times and $1.74 during peak hours. The flash version is even more aggressive at $0.28/$0.56 per million tokens, with cached input tokens priced extremely low at $0.0028. This makes V4 a strong contender in terms of cost-effectiveness, potentially offering Opus-level capabilities at a fraction of the cost, continuing DeepSeek's reputation as a "price disruptor" in the AI market. Initial demos showcasing V4's capabilities have begun circulating, including generated 3D simulation games, HTML games blending elements of Minecraft and No Man's Sky, and classic games like a "Cut the Rope" clone. The final GA version is set to replace the older deepseek-chat and deepseek-reasoner models, which will be retired on July 24th.

marsbit59m ago

DeepSeek V4 'Full-Blooded Edition' Leaked, Could Be Released As Early As Tomorrow

marsbit59m ago

WEEX Labs Weekly Observation: The 'Power Restructuring' of AI Infrastructure and the 'Deep Dive Movement' into the Real Economy

WEEX Labs Weekly Review: AI Infrastructure's "Power Restructuring" and the "Deep Dive" into the Real Economy Mid-July 2026 marks a pivotal shift in the global AI industry. The allocation of computing power is transferring from cloud giants to compute resource owners, while the core value of AI is solidifying around its penetration into physical industry, moving beyond the race for model parameters. The era of fragmented model development is over, replaced by a capital-intensive, integrated chain driven by hard tech. Key developments this week include Meta's planned entry into the cloud computing market with "MetaCompute." This move by social media giants with massive GPU clusters challenges traditional cloud providers like AWS, integrating compute, models, and data into one-stop services, which will squeeze smaller rental providers and shift enterprise focus towards underlying model ecosystems. Chinese foundational models like DeepSeek-V4 and Tencent's Hy-3 are pushing towards "utility" status through open-source releases and extreme cost reductions via MoE architectures. This lowers entry barriers for enterprises, allowing them to focus resources on private deployment and deep business integration. Embodied intelligence, particularly humanoid robots, is transitioning from lab demos to real-world factory applications, driven by policies promoting large-scale, practical deployment in logistics and manufacturing. The value focus is shifting from spectacle to stable industrial data and real operational efficiency. Global governance, through forums like WAIC, is evolving from theoretical ethics to practical operational frameworks for "Sovereign AI," raising geopolitical compliance barriers and making auditability and data sovereignty core design requirements from the outset. WEEX Labs Insights: The current transformation shows AI's prosperity is deeply embedding into the fabric of global manufacturing. Strategic recommendations include: 1) leveraging open-source models for private, proprietary knowledge bases; 2) maintaining cloud provider diversity to avoid vendor lock-in from integrated model ecosystems; and 3) seeking opportunities in the "embodied infrastructure" supporting robots, such as data collection, industrial simulation, and factory AI adaptation services.

marsbit1h ago

WEEX Labs Weekly Observation: The 'Power Restructuring' of AI Infrastructure and the 'Deep Dive Movement' into the Real Economy

marsbit1h ago

Is WEEX TradFi Reliable? What You Should Know Before Your First Trade of U.S. Stock Tokens

In recent years, cryptocurrency users have expanded their focus beyond Bitcoin and Ethereum to include popular traditional financial (TradFi) assets like Nvidia, Apple, and Tesla stocks. This shift raises key questions: What do these TradFi assets represent on crypto trading platforms? How do they differ from traditional stock ownership? And how can users assess the reliability of platforms offering such products? TradFi products, such as those offered by WEEX TradFi (including NVDA, MSFT, AAPL, TSLA, and QQQ tokens), are blurring the lines between crypto and traditional markets. They allow users to trade based on the price movements of traditional assets within a familiar digital asset trading environment. However, it's crucial to understand that trading a "stock token" is not equivalent to owning the actual stock. Users are participating in price speculation, not gaining shareholder rights like dividends or voting. A key feature of these products is 7x24 trading, offering flexibility beyond traditional market hours. While convenient, this also introduces unique risks, such as potential liquidity gaps and volatility when underlying markets are closed. For users evaluating TradFi products, reliability hinges on transparency and risk management. Critical factors include understanding the product mechanism, how prices track the underlying assets, and the associated risks—especially when using leverage. Popular stocks and indices are still subject to company performance, macroeconomic shifts, and sector trends. Ultimately, TradFi represents a new gateway connecting crypto users to global markets. The future points toward integrated trading environments where the distinction between "crypto investor" and "traditional investor" fades. For newcomers, a platform's reliability stems not from promises, but from a clear understanding of the product, a comprehensive view of risks, and informed judgment of the platform's capabilities.

marsbit1h ago

Is WEEX TradFi Reliable? What You Should Know Before Your First Trade of U.S. Stock Tokens

marsbit1h ago

Trading

Spot

Hot Articles

Discussions

Welcome to the HTX Community. Here, you can stay informed about the latest platform developments and gain access to professional market insights. Users' opinions on the price of ETH (ETH) are presented below.

活动图片