# airdrop-backpack.xyz — SUSPICIOUS

> airdropt-backpack.xyz is a crypto drainer impersonating Airdrop Scam. Flagged by 4 of 95 VirusTotal vendors. Avoid clicking and report immediately.

## Summary
PhishDestroy identifies airdropt-backpack.xyz as an active crypto drainer domain engaged in brand impersonation of Airdrop Scam. The domain is currently classified under elevated risk status and continues to operate with malicious intent to deceive users within the cryptocurrency ecosystem.

This domain exhibits multiple indicators of compromise and fraudulent behavior. According to VirusTotal, airdropt-backpack.xyz is flagged by 4 of 95 security vendors. The domain resolves to IP address 188.114.96.3 and was registered through PDR Ltd. d/b/a PublicDomainRegistry.com on March 23, 2026. Security blocklists have already flagged this domain twice, indicating widespread recognition of its malicious nature. Notably, it has been blocked by MetaMask and SEAL, reinforcing its credibility as a threat.

Given the elevated risk level and confirmed malicious activities associated with airdropt-backpack.xyz, immediate action is required. Users are strongly advised to avoid interacting with this domain under any circumstances. System administrators and security teams should update firewall rules, DNS blocklists, and endpoint protection solutions to include this domain and its associated IP address. Reporting this domain to relevant cybersecurity platforms and threat intelligence feeds is critical to prevent further exploitation. Users who may have already engaged with this domain are urged to review their cryptocurrency wallets and accounts for unauthorized transactions, revoke any exposed permissions, and conduct a full security audit of their digital assets.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Airdrop Scam

## Domain Intelligence
- Registered: 2026-03-23 08:36:05
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 4 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["MetaMask", "SEAL"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/airdrop-backpack.xyz
- PhishDestroy: https://phishdestroy.io/domain/airdrop-backpack.xyz/
- LLM endpoint: https://phishdestroy.io/domain/airdrop-backpack.xyz/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/airdrop-backpack.xyz/
Last updated: 2026-04-07