# ava-chiang-mai-night-safari.entry-cryptolist.app — SUSPICIOUS

> ava-chiang-mai-night-safari.entry-cryptolist.app is a live crypto drainer site flagged by 0/95 VirusTotal engines.

## Summary
PhishDestroy identifies ava-chiang-mai-night-safari.entry-cryptolist.app as an active crypto drainer site under investigation for stealing cryptocurrency through fraudulent QR codes and wallet connections.  This domain was flagged with 0 detections on VirusTotal out of 95 scanners, indicating it currently evades most antivirus tools. It resolves to IP 185.114.97.3 and uses a Google Trust Services SSL certificate to appear legitimate. The registrar is Namecheap, Inc., and the site’s low detection rate suggests it may have been operational for weeks, distributing deceptive links via social media and travel forums.  If you visited this site, immediately revoke any connected wallet permissions through your wallet’s settings. Do not enter seed phrases or private keys. Clear browser cache and cookies, then run a full antivirus scan. Report the domain to your wallet provider and local cybercrime units if funds were lost.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/ava-chiang-mai-night-safari.entry-cryptolist.app
- PhishDestroy: https://phishdestroy.io/domain/ava-chiang-mai-night-safari.entry-cryptolist.app/
- LLM endpoint: https://phishdestroy.io/domain/ava-chiang-mai-night-safari.entry-cryptolist.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ava-chiang-mai-night-safari.entry-cryptolist.app/
Last updated: 2026-04-11