Clara
All incidents

STO Pending-Sell Burn Reserve Manipulation

Share
Feb 23, 2026 11:39 UTCAttackLoss: 26.57 BNB, 6,771,157.6 STOManually checked1 exploit txWindow: Atomic
Estimated Impact
26.57 BNB, 6,771,157.6 STO
Label
Attack
Exploit Tx
1
Addresses
2
Attack Window
Atomic
Feb 23, 2026 11:39 UTC → Feb 23, 2026 11:39 UTC

Exploit Transactions

TX 1BSC
0x8ba17bea937f062743ef85b1f1f22504d79b2499dece96ccb6171aae5a54020c
Feb 23, 2026 11:39 UTCExplorer

Victim Addresses

0xfe33eb082b2374ecd9fb550f833db88cad8d084bBSC
0x7c404ad6149bc69e07ecd534b9f4243ef289bd00BSC

Loss Breakdown

26.57BNB
6,771,157.6STO

Similar Incidents

STOToken Sell-Hook Reserve Manipulation Drains the STO/WBNB Pancake Pair

52%
Feb 20, 2026 04:29 UTC·118 WBNB

XDK Sell-Hook Reserve Theft on PancakePair

42%
Feb 16, 2026 12:51 UTC·6.84 WBNB +2 more

Sheep Burn Reserve Drain

41%
Feb 10, 2023 10:38 UTC·9.54 WBNB

SOF Sell-Hook Reserve Manipulation Drains PancakeSwap V2 USDT Liquidity

41%
Feb 14, 2026 08:45 UTC·248,626.25 USDT

CS Pair Balance Burn Drain

38%
May 23, 2023 16:43 UTC·954,285 USDT

SafeMoon LP Burn Drain

37%
Mar 28, 2023 19:26 UTC·28,355.85 WBNB

Root Cause Analysis

STO Pending-Sell Burn Reserve Manipulation

1. Incident Overview TL;DR

At BSC block 82890987, transaction 0x8ba17bea937f062743ef85b1f1f22504d79b2499dece96ccb6171aae5a54020c executed a deterministic ACT exploit against STO tokenomics integrated with the STO/WBNB Pancake pair. The adversary EOA 0x622ddba7ddf86d573504a1d6021258884e601c42 deployed helper contract 0xc2b3613cc32f40c64dd56f7e089ddbcb3ee7e0ea, borrowed temporary WBNB, and repeatedly cycled sell-triggered pair burns plus sync() before swap extraction. This sequence drained WBNB from the pair while forcing large STO burns to 0x000000000000000000000000000000000000dEaD. The attacker then repaid the temporary WBNB source in-transaction and realized net native profit.

Root cause: STO executes pending sell-burn from the pair before handling subsequent sells, and commits the forced reserve change with PancakePair::sync(). This creates an unprivileged reserve-manipulation primitive that can be looped to extract counter-asset liquidity.

2. Key Background

The target system is a Pancake V2-style AMM pair (0x7c404ad6149bc69e07ecd534b9f4243ef289bd00) between WBNB (0xbb4cdb9cbd36b01bd1cbaebf2de08d9173bc095c) and STO (0xfe33eb082b2374ecd9fb550f833db88cad8d084b). In normal AMM behavior, reserve updates should reflect user-provided swap input and liquidity operations. If a token contract can debit pair inventory out-of-band and then call sync(), the AMM reserve state can be shifted without paying the counter-asset.

STO’s verified source contains this exact pattern:

if (to == pancakePair) {
    require(sellEnabled || isWhitelisted[from], "Sell not enabled");
    if (pendingBurnFromSell > 0) {
        _executePendingSellBurn();
    }
    uint256 tax = amount * TAX_RATE / BASIS_POINTS;
    uint256 afterTax = amount - tax;
    super._update(from, ecosystemWallet, tax);
    super._update(from, to, afterTax);
    if (!burningStopped && burnEnabled) {
        pendingBurnFromSell += afterTax;
        emit SellBurn(from, afterTax);
    }
}

function _executePendingSellBurn() private {
    uint256 pairBalance = balanceOf(pancakePair);
    uint256 toBurn = pendingBurnFromSell;
    uint256 minReserve = 1000 * 1e18;
    if (pairBalance > toBurn + minReserve) {
        pendingBurnFromSell = 0;
        super._update(pancakePair, DEAD, toBurn);
        IPancakePair(pancakePair).sync();
    }
}

3. Vulnerability Analysis & Root Cause Summary

This is an ATTACK-class protocol-integrity failure in token-to-AMM interaction logic. The safety invariant is that traders should not be able to arbitrarily reduce one side of AMM reserves and commit that reduction via sync() without equivalent payment. STO violates this invariant by executing pending pair-side burn (super._update(pancakePair, DEAD, toBurn)) and syncing reserves before processing the current sell. Because this path is reachable by ordinary sells, any unprivileged actor can trigger repeated reserve contractions. After each contraction, the attacker performs PancakePair::swap and extracts WBNB against manipulated reserves. The exploit is deterministic and permissionless; no privileged role, governance action, or private key compromise is required. The economic result is direct attacker profit and severe pair imbalance.

4. Detailed Root Cause Analysis

Pre-state (sigma_B) is public BSC state before block 82890987, including live STO/WBNB pair reserves, STO sell/burn toggles, and all balances. The ACT transaction sequence contains one adversary-crafted transaction (0x8ba17bea...).

Exploit mechanism:

  1. Acquire temporary WBNB liquidity and hold a large STO position in attacker-controlled contract.
  2. Trigger STO sell path so each sell appends to pendingBurnFromSell.
  3. On subsequent sell, STO first burns previous pending amount from pair and calls sync().
  4. Immediately call PancakePair::swap to withdraw WBNB under the manipulated reserve state.
  5. Repeat this cycle many times in a single transaction.

Trace evidence (burn -> sync -> swap loop):

emit Transfer(from: PancakePair, to: 0x000000000000000000000000000000000000dEaD, value: 173391536166673597516860)
PancakePair::sync()
emit Sync(reserve0: 75283664279345624086029, reserve1: 43845297773049838847186)
...
PancakePair::swap(33833054798059979999911, 0, attackerHelper, 0x)
WBNB::transfer(attackerHelper, 33833054798059979999911)

The pattern repeats throughout the same transaction. Quantitatively, the trace contains 40 SellBurn events, with repeatedly shrinking WBNB outputs in later swaps, consistent with progressive pool depletion.

Code-level breakpoint:

  • _update pre-sell trigger: STO source lines 226-228.
  • _executePendingSellBurn forced pair debit and sync: STO source lines 320-321.

5. Adversary Flow Analysis

Stage A: Deploy helper and bootstrap liquidity

The EOA deploys helper contract 0xc2b3613c... and starts execution. The helper receives temporary WBNB in the same transaction:

WBNB::transfer(0xc2b3613c..., 360894644170199501239042)
emit Transfer(from: 0x8F73b65B4caAf64FBA2aF91cC5D4a2A1318E5D8C, to: 0xc2b3613c..., value: 360894644170199501239042)

Stage B: Reserve-manipulation loop

The helper executes repeated STO sell operations that trigger pending burn + sync(), then calls PancakePair::swap to extract WBNB. This loop is observed across the trace with monotonically shrinking swap outputs.

Stage C: Repay temporary source and realize profit

At the end of the transaction, the helper repays the temporary WBNB source, withdraws remaining WBNB to native BNB, and transfers proceeds to the EOA:

WBNB::transferFrom(0xc2b3613c..., 0x8F73b65B4caAf64FBA2aF91cC5D4a2A1318E5D8C, 360894644170199501239042)
WBNB::withdraw(26571266065271298275)
0x622DDba7ddf86d573504a1D6021258884E601c42::fallback{value: 26571266065271298275}()

6. Impact & Losses

Measured from balance-diff artifacts:

  • Attacker EOA native delta: +26571046020341298275 wei (net, after gas).
  • STO burned to dead address: +6771157603491222778996612 units.
  • STO removed from pair balance: -7684346074933575778445683 units.

Economic impact: STO/WBNB liquidity was heavily dislocated, WBNB side was drained, and STO inventory was force-burned from the pair. This produced direct adversary profit and severe market integrity damage for STO trading liquidity.

7. References

  • Exploit tx: 0x8ba17bea937f062743ef85b1f1f22504d79b2499dece96ccb6171aae5a54020c (BSC chainid 56, block 82890987).
  • Victim token contract: 0xfe33eb082b2374ecd9fb550f833db88cad8d084b (STO).
  • Victim pair contract: 0x7c404ad6149bc69e07ecd534b9f4243ef289bd00 (STO/WBNB Pancake pair).
  • Counter-asset token: 0xbb4cdb9cbd36b01bd1cbaebf2de08d9173bc095c (WBNB).
  • Supporting evidence: verified STO source, full transaction trace, and balance-diff artifacts collected for the above transaction.