On September 2023, DEXRouter was exploited in a arbitrary call, resulting in approximately $4K in losses. That makes the DEXRouter exploit the 416th largest DeFi incident out of 690 documented in our archive.
Attack Mechanics: How the DEXRouter Arbitrary Call Played Out
Exploit Class Applied to DEXRouter
The DEXRouter incident on September 29, 2023 is classified as a Arbitrary Call. The contract executes an external call with attacker-controlled target or calldata, letting them impersonate the contract. In the full archive, DEXRouter is 1 of 21 documented arbitrary call incidents.
DEXRouter in Context
At $4K, the DEXRouter exploit is a minor (<$1M) event compared to the largest same-class incident in our archive — Seneca (2024) at $6M.
Prior Arbitrary Call Before DEXRouter
The nearest arbitrary call incident before DEXRouter was MIMSpell, 101 days earlier on June 20, 2023 ($17K lost). The same exploit class surfaced again within the arbitrary call attack surface.
DEXRouter Vulnerability Signature
The primary source categorises the DEXRouter exploit specifically as “Arbitrary External Call”. This narrower label is entity-specific: it reflects how the DEXRouter contract failed, rather than the broad arbitrary call pattern alone.
Impact & Recovery for DEXRouter
DEXRouter Loss Figure
The DEXRouter exploit caused $4,000 in losses — a minor (<$1M) incident and the 149th largest of 214 documented in 2023.
Where DEXRouter Sits Among Arbitrary Call Attacks
Ranked by loss size, DEXRouter is the 16th largest of 21 arbitrary call incidents documented. That puts the DEXRouter loss below the class average of $783.5K.
Timeline Since the DEXRouter Incident
The DEXRouter exploit occurred 2.5 years ago (928 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for DEXRouter
Public post-mortem / on-chain analysis for the DEXRouter incident: view source.
FAQ
How much did DEXRouter lose?
The DEXRouter exploit in September 2023 resulted in $4,000 in losses — the 149th largest of 214 DeFi incidents that year.
When did the DEXRouter hack happen?
The DEXRouter exploit was recorded on September 29, 2023 — 928 days ago.
What type of exploit hit DEXRouter?
The DEXRouter incident is classified as a Arbitrary Call. The contract executes an external call with attacker-controlled target or calldata, letting them impersonate the contract.
How common is the Arbitrary Call pattern seen at DEXRouter?
Our archive contains 21 documented arbitrary call incidents. The DEXRouter incident is one of them.
How does DEXRouter compare to the largest Arbitrary Call attack?
The largest arbitrary call incident in our archive is Seneca (2024) at $6M. The DEXRouter loss is $4K.
What statistical tests were applied besides the GARCH model?
Descriptive statistics, unit root tests, and ARCH effect tests.
What are the four main categories for stock market analysis advancements?
Statistical approaches, pattern recognition, machine learning, and sentiment analysis.