# airdrop.axt.fun — SUSPICIOUS

> Explore the safety and risk profile of airdrop.axt.fun, a crypto drainer domain now offline. Learn about its infrastructure and threat status.

## Summary
PhishDestroy identifies airdrop.axt.fun as a medium-risk crypto drainer domain that was created recently on March 3, 2026. This site falls into a category targeting cryptocurrency users by attempting to illicitly harvest digital assets through deceptive airdrop schemes. The classification is based on behavioral patterns consistent with crypto drainers, which are designed to compromise wallet security.

Technical indicators show that airdrop.axt.fun resolved to the IP address 172.66.153.159 and was registered through Go Daddy, LLC. VirusTotal analysis detected 3 out of 95 security vendors flagging this domain, which supports its suspicious nature. The combination of its recent creation date, registrar information, and flagged status reinforces the likelihood of malicious intent tied to crypto-related fraud.

Currently, this domain is offline, indicating a possible takedown or voluntary suspension to mitigate harm. PhishDestroy recommends users avoid any interaction with this domain or similar airdrop offers, as crypto drainer sites pose a threat of asset loss. Continuous monitoring of such domains is advised given the evolving tactics of crypto fraudsters.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)
- Scam type: Airdrop Scam
- Page title: Home

## Domain Intelligence
- Registered: 2026-03-03 19:07:02
- Registrar: Go Daddy, LLC
- Country: US
- IP: 172.66.153.159
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: ["alexia.ns.cloudflare.com", "gerald.ns.cloudflare.com"]
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["ADMINUSLabs", "Kaspersky", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/pjdyMJMR/51711665aad6.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/cfba1c70-2e2d-4581-b4dd-08d13511ff6c
- Wayback Machine: https://web.archive.org/web/https://airdrop.axt.fun
- PhishDestroy: https://phishdestroy.io/domain/airdrop.axt.fun/
- LLM endpoint: https://phishdestroy.io/domain/airdrop.axt.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/airdrop.axt.fun/
Last updated: 2026-03-19