{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,20]],"date-time":"2025-06-20T04:08:54Z","timestamp":1750392534976,"version":"3.41.0"},"reference-count":55,"publisher":"Association for Computing Machinery (ACM)","issue":"FSE","funder":[{"name":"National Natural Science Foundation of China","award":["62332004"],"award-info":[{"award-number":["62332004"]}]},{"name":"Sichuan Provincial Natural Science Foundation for Distinguished Young Scholars","award":["2023NSFSC1963"],"award-info":[{"award-number":["2023NSFSC1963"]}]},{"name":"Hong Kong RGC Projects","award":["PolyU15224121, PolyU15231223"],"award-info":[{"award-number":["PolyU15224121, PolyU15231223"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Proc. ACM Softw. Eng."],"published-print":{"date-parts":[[2025,6,19]]},"abstract":"<jats:p>Cryptocurrency tokens, implemented by smart contracts, are prime targets for attackers due to their substantial monetary value. To illicitly gain profit, attackers often embed malicious code or exploit vulnerabilities within token contracts. Token transfer identification is crucial for detecting malicious and vulnerable token contracts. However, existing methods suffer from high false positives or false negatives due to invalid assumptions or reliance on limited patterns. This paper introduces a novel approach that captures the essential principles of token contracts, which are independent of programming languages and token standards, and presents a new tool, CRYPTO-SCOUT. CRYPTO-SCOUT automatically and accurately identifies token transfers, enabling the detection of various malicious and vulnerable token contracts. CRYPTO-SCOUT's core innovation is its capability to automatically identify complex container-type variables used by token contracts for storing holder information. It processes the bytecode of smart contracts written in the two most widely-used languages, Solidity and Vyper, and supports the three most popular token standards, ERC20, ERC721, and ERC1155. Furthermore, CRYPTO-SCOUT detects four types of malicious and vulnerable token contracts and is designed to be extensible. Extensive experiments show that CRYPTO-SCOUT outperforms existing approaches and uncovers over 21,000 malicious\/vulnerable token contracts and more than 12,000 transactions triggering them.<\/jats:p>","DOI":"10.1145\/3715766","type":"journal-article","created":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T15:15:34Z","timestamp":1750346134000},"page":"1068-1090","source":"Crossref","is-referenced-by-count":0,"title":["Automated and Accurate Token Transfer Identification and Its Applications in Cryptocurrency Security"],"prefix":"10.1145","volume":"2","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-4368-0950","authenticated-orcid":false,"given":"Shuwei","family":"Song","sequence":"first","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"},{"name":"The Hong Kong Polytechnic University, Hong Kong, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9165-8331","authenticated-orcid":false,"given":"Ting","family":"Chen","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0007-5131-8114","authenticated-orcid":false,"given":"Ao","family":"Qiao","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9082-3208","authenticated-orcid":false,"given":"Xiapu","family":"Luo","sequence":"additional","affiliation":[{"name":"The Hong Kong Polytechnic University, Hong Kong, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0005-5599-1790","authenticated-orcid":false,"given":"Leqing","family":"Wang","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2131-1046","authenticated-orcid":false,"given":"Zheyuan","family":"He","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4927-5833","authenticated-orcid":false,"given":"Ting","family":"Wang","sequence":"additional","affiliation":[{"name":"Stony Brook University, New York, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8916-6645","authenticated-orcid":false,"given":"Xiaodong","family":"Lin","sequence":"additional","affiliation":[{"name":"University of Guelph, Guelph, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0094-7213","authenticated-orcid":false,"given":"Peng","family":"He","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1989-1224","authenticated-orcid":false,"given":"Wensheng","family":"Zhang","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9886-1412","authenticated-orcid":false,"given":"Xiaosong","family":"Zhang","sequence":"additional","affiliation":[{"name":"University of Electronic Science and Technology of China, Chengdu, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2025,6,19]]},"reference":[{"key":"e_1_2_1_1_1","unstructured":"achinta das. 2021. DEFI Sandwich Attack Explain. https:\/\/medium.com\/coinmonks\/defi-sandwich-attack-explain-776f6f43b2fd"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1007\/S41060-021-00281-1"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-78800-3_27"},{"key":"e_1_2_1_4_1","unstructured":"Defi Cartel. 2023. Wrecking sandwich traders for fun and profit. https:\/\/github.com\/Defi-Cartel\/salmonella"},{"key":"e_1_2_1_5_1","volume-title":"32nd USENIX Security Symposium (USENIX Security 23)","author":"Cernera Federico","year":"2023","unstructured":"Federico Cernera, Massimo La Morgia, Alessandro Mei, and Francesco Sassi. 2023. Token Spammers, Rug Pulls, and Sniper Bots: An Analysis of the Ecosystem of Tokens in Ethereum and in the Binance Smart Chain (BNB). In 32nd USENIX Security Symposium (USENIX Security 23). USENIX Association, Anaheim, CA. 3349\u20133366. isbn:978-1-939133-37-3 https:\/\/www.usenix.org\/conference\/usenixsecurity23\/presentation\/cernera"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2019.00137"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3345664"},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/JETCAS.2023.3266396"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3366423.3380215"},{"key":"e_1_2_1_10_1","unstructured":"CoinMarketCap. 2024. Global Cryptocurrency Charts. https:\/\/coinmarketcap.com\/charts\/"},{"key":"e_1_2_1_11_1","unstructured":"Curvegrid. 2018. toy-block-explorer. https:\/\/github.com\/curvegrid\/toy-block-explorer"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/BRAINS49436.2020.9223287"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-54455-3_28"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.fsidi.2019.200894"},{"key":"e_1_2_1_15_1","unstructured":"Ellaism. 2018. EthereumClassic Block Explorer. https:\/\/github.com\/ellaism\/etc-explorer"},{"key":"e_1_2_1_16_1","unstructured":"W. Entriken D. Shirley J. Evans and N. Sachs. 2018. ERC-721 Non-Fungible Token Standard. https:\/\/eips.ethereum.org\/EIPS\/eip-721"},{"key":"e_1_2_1_17_1","unstructured":"ethereum.org. 2025. Ethereum development documentation. https:\/\/ethereum.org\/en\/developers\/docs\/"},{"key":"e_1_2_1_18_1","unstructured":"EtherEx. 2016. EtherEx: decentralized exchange built on Ethereum. https:\/\/github.com\/etherex\/etherex"},{"key":"e_1_2_1_19_1","volume-title":"d.]. Non-Fungible Token Tracker. https:\/\/etherscan.io\/tokens-nft Accessed","year":"2020","unstructured":"Etherscan. [n. d.]. Non-Fungible Token Tracker. https:\/\/etherscan.io\/tokens-nft Accessed in April 2020. The website has been updated, and the content may no longer be available"},{"key":"e_1_2_1_20_1","unstructured":"Etherscan. 2024. Etherscan APIs documentation. https:\/\/docs.etherscan.io\/api-endpoints\/contracts"},{"key":"e_1_2_1_21_1","unstructured":"Etherscan. 2024. Token Holdings 0x8d12A197cB00D4747a1fe03395095ce2A5CC6819. https:\/\/etherscan.io\/tokenholdings?a=0x8d12A197cB00D4747a1fe03395095ce2A5CC6819"},{"key":"e_1_2_1_22_1","volume-title":"n.d.. Token Tracker (ERC-20). https:\/\/etherscan.io\/tokens Accessed","year":"2020","unstructured":"Etherscan. n.d.. Token Tracker (ERC-20). https:\/\/etherscan.io\/tokens Accessed in April 2020. The website has been updated, and the content may have changed"},{"key":"e_1_2_1_23_1","unstructured":"Etherwall. 2022. The first Ethereum desktop wallet. https:\/\/www.etherwall.com\/"},{"key":"e_1_2_1_24_1","unstructured":"EthVM. 2023. EthVM: Open Source Processing Engine and Block Explorer for Ethereum. https:\/\/github.com\/EthVM\/EthVM"},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-64322-8_2"},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-32101-7_7"},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1145\/3605768.3623546"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/174662.174663"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICC45855.2022.9839252"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3560263"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238177"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978309"},{"key":"e_1_2_1_33_1","volume-title":"32nd USENIX Security Symposium (USENIX Security 23)","author":"McLaughlin Robert","year":"2023","unstructured":"Robert McLaughlin, Christopher Kruegel, and Giovanni Vigna. 2023. A Large Scale Study of the Ethereum Arbitrage Ecosystem. In 32nd USENIX Security Symposium (USENIX Security 23). USENIX Association, Anaheim, CA. 3295\u20133312. isbn:978-1-939133-37-3 https:\/\/www.usenix.org\/conference\/usenixsecurity23\/presentation\/mclaughlin"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1177\/104973200129118183"},{"key":"e_1_2_1_35_1","unstructured":"MyEtherWallet. 2024. Ethereum\u2019s Original Wallet. https:\/\/www.myetherwallet.com\/"},{"key":"e_1_2_1_36_1","unstructured":"Nico. 2023. Token standards. https:\/\/ethereum.org\/en\/developers\/docs\/standards\/tokens"},{"key":"e_1_2_1_37_1","unstructured":"OAX. 2018. Decentralized Exchange Proof of Concept. https:\/\/gitlab.com\/oax\/dex-poc"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1007\/S10664-019-09796-5"},{"key":"e_1_2_1_39_1","unstructured":"Optimism. 2023. Multi-Token Token Tracker. https:\/\/optimistic.etherscan.io\/tokens-nft1155"},{"key":"e_1_2_1_40_1","unstructured":"Z3 Theorem Prover. 2024. Z3 Prover. https:\/\/github.com\/Z3Prover\/z3"},{"key":"e_1_2_1_41_1","unstructured":"W. Radomski A. Cooke P. Castonguay J. Therien E. Binet and R. Sandford. 2018. EIP-1155: ERC-1155 Multi Token Standard. https:\/\/eips.ethereum.org\/EIPS\/eip-1155"},{"key":"e_1_2_1_42_1","unstructured":"Shahar Somin Goren Gordon Alex Pentland Erez Shmueli and Yaniv Altshuler. 2020. ERC20 Transactions over Ethereum Blockchain: Network Analysis and Predictions. arxiv:2004.08201. arxiv:2004.08201"},{"key":"e_1_2_1_43_1","unstructured":"Solidity Team. 2024. Solidity documentation. https:\/\/solidity.readthedocs.io\/en\/latest\/"},{"key":"e_1_2_1_44_1","unstructured":"Vyper Team. 2024. Vyper documentation. https:\/\/docs.vyperlang.org\/en\/latest\/"},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-32101-7_8"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/2393596.2393665"},{"key":"e_1_2_1_47_1","unstructured":"F. Vogelsteller and V. Buterin. 2015. EIP-20: ERC-20 Token Standard. https:\/\/eips.ethereum.org\/EIPS\/eip-20"},{"key":"e_1_2_1_48_1","unstructured":"Qin Wang Rujia Li Qi Wang and Shiping Chen. 2021. Non-Fungible Token (NFT): Overview Evaluation Opportunities and Challenges. arxiv:2105.07447. arxiv:2105.07447"},{"key":"e_1_2_1_49_1","volume-title":"ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER. https:\/\/ethereum.github.io\/yellowpaper\/paper.pdf","author":"Wood Gavin","year":"2020","unstructured":"Gavin Wood. 2020. ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER. https:\/\/ethereum.github.io\/yellowpaper\/paper.pdf"},{"key":"e_1_2_1_50_1","unstructured":"xDai. 2024. xDai Explorer. https:\/\/blockscout.com\/poa\/xdai\/"},{"key":"e_1_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00257"},{"key":"e_1_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416553"},{"key":"e_1_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2012.8"},{"key":"e_1_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3442381.3449916"},{"key":"e_1_2_1_55_1","volume-title":"Opaque Smart Contracts. In 27th USENIX Security Symposium (USENIX Security 18)","author":"Zhou Yi","year":"2018","unstructured":"Yi Zhou, Deepak Kumar, Surya Bakshi, Joshua Mason, Andrew Miller, and Michael Bailey. 2018. Erays: Reverse Engineering Ethereum\u2019 s Opaque Smart Contracts. In 27th USENIX Security Symposium (USENIX Security 18). USENIX Association, Baltimore, MD. 1371\u20131385. isbn:978-1-939133-04-5 https:\/\/www.usenix.org\/conference\/usenixsecurity18\/presentation\/zhou"}],"container-title":["Proceedings of the ACM on Software Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3715766","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T15:26:51Z","timestamp":1750346811000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3715766"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,6,19]]},"references-count":55,"journal-issue":{"issue":"FSE","published-print":{"date-parts":[[2025,6,19]]}},"alternative-id":["10.1145\/3715766"],"URL":"https:\/\/doi.org\/10.1145\/3715766","relation":{},"ISSN":["2994-970X"],"issn-type":[{"value":"2994-970X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,6,19]]}}}