Share this page!

The Smart Ape 🔥 Profile picture
Twitter logo
Mar 22 22 tweets 10 min read
I'll show you how a friend foolishly lost several $BNB by getting scammed

AND

How it could have been easily avoided !

SECURITY THREAD 🧵🧵🧵
Let's call this victim Paul!

Paul came across this Youtube video and followed the recommendations of this video.



DON'T DO IT !!!! IT IS A SCAM !!
It's just to show how you can avoid it
This video provides a so-called Arbitrage contract that it is possible to relaunch on Solidity to earn several $BNB per day from a single investment BNB.

Yes of course … we believe in it 🤬
But Paul was encouraged by all the positive comments on the video and so decided to take the test.
He then follows the steps described in the video:
a – Copy/Paste the smart contract on Remix
b – Deploy the Smart Contract
c – Send 1 BNB to the smart contract
d – Call the "Action" function of the smart contract
e – Wait a few hours for the smart contract to arbitrate and return +200/300% profit

Of course the last step never happened!
I'll show you how Paul could have avoided this scam without any technical skills!
The objective is to see if the last step (5) has been achieved for people who have followed the same process before Paul.
The starting point is the smart contract, in all smart contracts the function that transfers value is called "transfer" (yes logical) and the syntax is as follows:

addressReceiver.transfer(amount)
where « addressReceiver » is the address to which the funds are sent and « amount » the amount sent.

This is the only technical element to understand!

It is therefore necessary to go to the smartcontract to see this syntax to find to whom the funds will be sent.
In the "Action" function we find this line:
address(uint160(manager.pancakeswapDepositAddress())).transfer(address(this).balance);

The command sends all the BNB present in the contract to a « manager.pancakeswapDepositAddress() » address.
Here the scammer is trying to hide his address, just look for the "manager" imported file in which we should find « pancakeswapDepositAddress() » which contains the address.
The "manager" file is therefore imported from this link :
ipfs://Qmf6VGrKVuLRMqoyN5xr9vhZSqeBF37Fzq55uT7AjAa1dY

Here's what's on the link page:
Bingo we found the address, that's the most complicated part and as you can see it's not very difficult!

The next step is to verify who owns? Which addresses sent $BNB to this address? And finally, do these addresses receive $BNB in return or is it a one-way trip ?
Let's go to BSC scan and paste this address:
0x01B547630BF98c6EC57df5845520914CdD036c5d

We see that the address does not correspond to that of a smart contract, so it is the address of an account (it does not smell good).
When the "action" function is launched, the smart contract triggers the "transfer" function, so the $BNB are sent from a smart contract.

To see the transactions made from a smart contract you have to go to "Internal Txns":
Internal transactions correspond to step 4 of this diagram :

We can therefore go back to the addresses of the different smart contracts !
The "From" column of the internal transactions corresponds to the various smart contracts deployed by all the victims.

Take for example the last internal transaction at 0.9 $BNB.

Let's click on the address that is in the "From" column.
We therefore see all the transactions relating to the deployed smart contract :
Here we can see all the interactions the victim had with the contract he created.

In the "From" column we have the address of the victim's account.

We can directly go to these transactions to see whether or not she received the $BNB she sent and therefore check step 5 of this
Finally, we see directly that the victim has received nothing, no "IN" transaction since his interaction with the smart contract...

Step 5 is therefore wrong.
We proove that is a SCAM.

You can do the same thing we all others smarts contract addresses here
Moral of this THREAD:

1 – Never launch or interact with a smart contract that you do not understand or not audited

2 – If you still want to do it, do some basic checks using what I just showed you.

The Blockchain is public, so take advantage of it!
Mention :
@CryptoKaduna
@DeFi_Made_Here
@Chinchillah_
@defi_mochi
@phtevenstrong
@DefiIgnas
@TheDeFinvestor
@LouisCooper_
@PowerHasheur
@crypthoem
@OnchainDataNerd
@crypto_linn
@Crypt0Ricard0
@EricCryptoman
Thanks to share this THREAD to make everyone aware.


I hope you enjoyed it, don't hesitate to let me know in the comments, without forgetting to like and RT the first tweet of the thread!

Stay safe and learn 💪
#Cryptocurency #Security #Scam #BNB #Solidity #BlockExplorer #blockchain #smartcontract

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with The Smart Ape 🔥

The Smart Ape 🔥 Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ed_Nuward

The Smart Ape 🔥 Profile picture
Mar 21
Everyone talks about @zksync or especially the potential #airdrop

BUT

Do you know what @zkSync is? How is it different from @arbitrum ? How advanced it is ?

These are the questions you should ask before betting on a potential airdrop

Let's see it all in this THREAD 🧵🧵🧵
As you must surely know, @zksync is an L2 of #Ethereum.

I won't go back to what a Layer 2 is, I'll put you the link of the documentation if necessary:

academy.binance.com/en/glossary/la…
Before going further you must understand what a rollup is, Rollups are a recent development intended to increase the scalability of Ethereum by performing calculations off-chain, rolling many transactions up into a single batch, and sending it to the main Ethereum chain.
Read 19 tweets
The Smart Ape 🔥 Profile picture
Mar 21
Last PART on @pendle_fi !

After the first two THREADs :
Part 1 :
Part 2 :

where we saw the principles of the protocol, let's see the last part on the Tokenomics of the @pendle_fi project.

So let’s dive into it !

THREAD 🧵🧵🧵
Let's start by watching TVL on @DefiLlama, we see a strong increase in this TVL from December 2022.
Surely the beginning of the #LSD narrative.

Logically @pendle_fi takes strength on this narrative because it allows to trade Yields from #LSDs.
Logically, the price has also had the same evolution as the TVL (narrative LSDs).
Read 16 tweets
The Smart Ape 🔥 Profile picture
Mar 20
It hasn't been long since I started making content on Twitter.

So let me introduce you for 2 minutes to the purpose of this account and the vision I have.

THREAD on my account vision 🧵🧵🧵 Image
You won't see me telling you about a coin out of nowhere that I'm going to call "GEM" and ask you to buy if you want to make an X10 or X100.
But you will see me explaining a project, a protocol:
- How does it work ?
- How does he manage his income?
- What is the token for?
- What is protocol for? What need does it meet?
- Tokenomics? Etc …
Read 16 tweets
The Smart Ape 🔥 Profile picture
Mar 19
I did a first THREAD to present the @pendle_fi protocol to achieve level 2 comprehension.

I complete this THREAD (to level 4) by finishing the presentation of this wonderful protocol !

Let's dive into it !

THREAD PART 2 🧵🧵🧵
In the last THREAD I talked about:
- #Yield Tokenisation
- PT (Principal #Token) Strategy

In this THREAD we’ll talk about :
- YT (Yield Token) Strategy
- Yield Trading
On the same principle of the previous THREAD, I will try to be as simple as possible and will put a lot of examples to facilitate understanding.

Let’s GO !! 🔥🔥
Read 29 tweets
The Smart Ape 🔥 Profile picture
Mar 18
One of the protocols that I appreciate the most and which is also one of the most technically complicated : @pendle_fi

I think a lot still don't understand the principle of this amazing protocol.

Let’s dive into it !

THREAD 🧵🧵🧵
@pendle_fi is a technically quite complex protocol, it took me a while to understand it.

In this THREAD, I will do my best to be as simple as possible so that as many people as possible understand.
There is 4 levels of understanding on @pendle_fi, at the end of this THREAD my goal is that you are at level 2.

I will probably do another THREAD to complete.

Let's GO!!
Read 28 tweets
The Smart Ape 🔥 Profile picture
Mar 17
Everyone is talking about @RamsesExchange !

What is it and why does it make noise ??

Let’s dive into it !

THREAD 🧵🧵🧵
What is @RamsesExchange ?

RAMSES is a ve(3,3) DEX.

If you don’t know what is a ve(3, 3) I encourage you to read this article from @AndreCronje_dev  :

andrecronje.medium.com/ve-3-3-44466ea…
The important point here is that the $veRAM holder are protected against Token inflation.

Example: If inflation increases by 10% then your position ( $veRAM ) also increases by 10%.

$veRAM is the vested token $RAM, the token of the protocol.
Read 19 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(