Amber Group reproduces Wintermute exploit in 48 hours using an Apple MacBook

Quick Take

  • Amber Group said it reproduced the recent Wintermute hack. 
  • The firm estimated the private key of Wintermute’s address on a MacBook M1.

After conducting an investigation into the recent $160 million exploit of Wintermute, digital assets firm Amber Group said it was able to repeat the full attack vector.

Amber said it recalculated the private key of the address that market-making firm Wintermute had used. It also signed a transaction from Wintermute's hacked address and left an on-chain message to prove its claim. 

In its analysis of the hack, Amber said that it took the firm only two days to crack the private key with the help of a MacBook M1 computer. To do this, the firm launched a brute force attack that extracted the seed phrase for Wintermute's address

“We have reproduced the recent Wintermute hack. Figured out the algorithm to build the exploit. We were able to reproduce the private key on a MacBook M1 with 16G memory in <48h,” Amber Group noted  in a tweet.

On Sept. 20, crypto market-making firm Wintermute was hacked for $160 million from its Ethereum vault. The vault relied on an admin address, which was targeted to extract the private key to move the funds.

THE SCOOP

Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy

Wintermute’s hacked admin account was a “vanity address,” a type of crypto address containing identifiable names or numbers within them — or which have a particular style — and can be generated using certain online tools including Profanity. Security analysts at 1inch found that private keys of vanity addresses generated with Profanity could be calculated by malicious hackers to steal funds.

Several days after the exploit of Wintermute, Amber decided to conduct its own investigation. The firm went on to determine that it too could extract the private key belonging to Wintermute’s vanity address and estimate the hardware and time requirements to crack the address generated by Profanity.

In its independent analysis, Amber explained that Profanity relied on a particular algorithm to generate large sets of public and private addresses that had certain desirable characters. The Profanity tool created millions of addresses per second and searched for the desired letters or digits that were requested by users as custom wallet addresses. Still, the process used to generate those addresses lacked randomness, and private keys could be reverse-calculated with GPUs.

“We figured out how Profanity divides the job on GPUs. Based on that, we can efficiently compute the private key of any public key generated by Profanity. We pre-compute a public key table, then do reverse computation until we find the public key in the table,” Amber Group said.


© 2023 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.

About Author

Vishal Chawla is The Block’s crypto ecosystems editor and has spent over six years covering tech protocols, cybersecurity, artificial intelligence and cloud computing. Vishal likes to delve deep into blockchain intricacies to ensure readers are well-informed about the continuously evolving crypto landscape. He is also a staunch advocate for rigorous security practices in the space. Before joining The Block, Vishal held positions at IDG ComputerWorld, CIO, and Crypto Briefing. He can be reached on Twitter at @vishal4c and via email at [email protected]