Attacker wallet pre-strike probe (low-gas failing txs)
Uniswap (v2 + v3)'s assessment for RD-F-159 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
V2+V3 combined: No low-gas failing transactions from CTI-flagged wallets on V2 or V3 core contracts identified in public-source review in the 30-day assessment window. V2Factory (0x5C69bEe701ef814a2B6a3EDD4B1652CB9cc5aA6f) and V3Factory (0x1F98431c8aD98523631AE4a59f267346ea31F984) show no anomalous failed transaction spikes in available data. Requires live mempool CTI feed for definitive coverage. Green based on available public sources.
Detail #
Signal fires when wallet in threat-actor cluster sends failing/low-gas txs to protocol contracts (pre-strike testing pattern). No such pattern identified against V2 or V3 core contracts in the 30-day window from public sources. Additionally, V2 and V3 core contracts are immutable — a probe of the admin surfaces would reveal there are none, making pre-strike reconnaissance of limited utility. Definitive confirmation requires Chainalysis/TRM private cluster data (partner feed; not available in static assessment). Public proxy observation (Etherscan contract pages for V2Factory and V3Factory) shows no anomalous failed transaction patterns.
Sources #
- EtherscanUniswapV3Factory Etherscan — No Probe PatternUniswapV3Factory 0x1F98431c8aD98523631AE4a59f267346ea31F984 — no anomalous failed transaction pattern in assessment windowretrieved 2026-05-12
- UniswapV2Factory Etherscan — No Probe PatternUniswapV2Factory 0x5C69bEe701ef814a2B6a3EDD4B1652CB9cc5aA6f — no anomalous failed transaction pattern in assessment windowretrieved 2026-05-12
Methodology #
Detect whether a wallet in a threat-actor cluster is sending low-gas or intentionally-failing transactions to this protocol (pre-strike reconnaissance pattern).
See the full factor methodology and distribution across all protocols →