# api.btaibox.com — SUSPICIOUS > PhishDestroy identifies api.btaibox.com as an active crypto drainer scam domain registered on Jan 29, 2026, with 0/95 VirusTotal detections. ## Summary PhishDestroy has flagged api.btaibox.com as a suspected crypto drainer domain designed to steal cryptocurrency from unsuspecting users. This site mimics legitimate API endpoints to trick victims into connecting their wallets, where malicious scripts drain funds without consent. The domain is currently active and under investigation, with no antivirus engines detecting it yet despite its malicious intent. This domain was flagged by PhishDestroy after registering on January 29, 2026, through Gname.com Pte. Ltd., a registrar often abused by threat actors. VirusTotal currently shows 0 detections out of 95 scanners, meaning antivirus tools have not yet blacklisted it. The site also holds an SSL certificate from Google Trust Services and resolves to IP address 172.67.218.33, which may be linked to other malicious infrastructure. If you visited api.btaibox.com, disconnect your wallet immediately and revoke any connected permissions. Do not interact with this domain further. Run a full antivirus scan and check your wallet transaction history for unauthorized transfers. Report this domain to PhishDestroy and your wallet provider to help block its activity. Avoid clicking links from unsolicited messages claiming to be from this domain. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-01-29 11:37:18 - Registrar: Gname.com Pte. Ltd. - IP: 172.67.218.33 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/bd12b46c-a924-42ea-a84e-4198bcdda5d3 - PhishDestroy: https://phishdestroy.io/domain/api.btaibox.com/ - LLM endpoint: https://phishdestroy.io/domain/api.btaibox.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/api.btaibox.com/ Last updated: 2026-03-23