Smart contracts can manage assets worth millions of Euro but are often not formally modeled and, as a consequence, may contain vulnerabilities. This paper explores the application of Dynamic Condition Response (DCR) graphs, initially developed for modeling business processes, to model and analyze smart contracts’ embedded processes. Using DCR graphs, we demonstrate high-level properties in the contracts, such as event partial ordering and role-based access control via empirical analysis of several high-profile successful exploits on smart contracts. The result of our analysis offers valuable insights and underscores the potential of DCR graphs in preventing the vulnerabilities causing the breaches.