Bug exploiter hunting.

On June 8th, a critical bug was found on Osmosis that led to the theft of several million dollars from liquidity pools. In an effort to help provide the Osmosis team with important data, we’ve curated these flash bounties to surface metrics that the team has requested. The upgrade that contained the exploited bug occurred at block height 4707300, and the chain was halted at block 4713064.

Task

Intro

Method

Analysis

What is the list of addresses that were explicitly exploiting the bug by doing multiple join/exits, i.e. who were the attackers?
What was the total dollar amount that was taken by the attackers?
What amount of stolen assets in the attackers’ wallets remain on Osmosis?

Search for transactions on the blockchain starting for the first use of the exploit at block_id =4707300 till the moment the network was halted at block_id = 4713064

Paragraph

The wallet osmo...lzjtq took 4,209,479 OSMOs out from liquidity pools. Accounting by itself a 63% from the total exploited.
The second wallet osmo...tqer took 1,895,295 OSMOs out, accounting for 28.5% of the total exploited.
The third one osmo...ljh2 took 182,374 OSMOs out, accounting for 2.75% of the total exploited.
The fourth one osmo...xzay took 120,447 OSMOs out, accounting for 1.81% of the total exploited.

Where did all that OSMO go?

Wallet osmo18qx59wy8s3ytax3e0akna934e86mw776vlzjtq (63.4%)

This wallet ended up transfering his newly found bank out of Osmosis and onto other networks from the Cosmos ecosystem..

Wallet