Obfuscation substantially increases the interpretation cost of smart-contract auditing, while the comparability and transferability of obfuscation signals across chains remain unclear. We present HObfNET as an efficient surrogate of Obfs_Tool (ObfProbe), enabling fast cross-chain scoring at scale. The model aligns well with tool outputs on Ethereum (PCC 0.9158, MAPE 8.20 percent) and achieves 8-9 ms per contract, a 2.3k-5.2k times speedup over second-level Obfs_Tool runs, enabling million-scale scoring. On large BSC, Polygon, and Avalanche corpora, we find systematic score drift: fixed-threshold transfer inflates and deflates candidate queues, motivating within-chain main and extreme thresholds (p99 and p99.9) and an actionable queueing strategy. The high-score tail exhibits rare selectors, external-call opcode enrichment, and low signature density; a proxy indicator is enriched in the BSC high-score queue, enabling secondary triage. Cross-chain reuse analysis shows tail enrichment and directional diffusion, with traceable same-hash cases across chains. In publicly alignable incident samples, all fall into the p99 queue; Transit Swap DEX Hack and New Free DAO Flash Loan exhibit cross-chain spillover, indicating real-world hit and prioritization value. We deliver a two-tier audit queue and cross-chain linkage workflow to support practical multi-chain security operations.
翻译:混淆显著增加了智能合约审计的解读成本,而混淆信号在不同链间的可比性与可迁移性尚不明确。我们提出HObfNET作为Obfs_Tool(ObfProbe)的高效替代方案,支持大规模快速跨链评分。该模型在以太坊上与工具输出高度一致(皮尔逊相关系数0.9158,平均绝对百分比误差8.20%),单合约处理时间达8-9毫秒,较秒级Obfs_Tool运行实现2.3千至5.2千倍加速,支持百万级规模评分。在BSC、Polygon和Avalanche大规模语料库中,我们发现系统性评分漂移:固定阈值迁移会膨胀或收缩候选队列,因此提出采用链内主阈值与极端阈值(p99与p99.9)及可操作的队列策略。高分尾部呈现罕见函数选择器、外部调用操作码富集及低签名密度特征;BSC高分队列中富集的代理指示器支持二次分诊。跨链复用分析显示尾部富集与定向扩散现象,存在可追踪的跨链同哈希案例。在可公开对齐的安全事件样本中,所有案例均落入p99队列;Transit Swap DEX攻击与New Free DAO闪电贷事件表现出跨链溢出效应,证实了实际命中率与优先级价值。我们构建了双层审计队列与跨链关联工作流,以支持实际多链安全运营。