# backpack-mainnets.app — SUSPICIOUS > PhishDestroy identifies backpack-mainnets.app as an active crypto drainer impersonating Backpack wallet. 0 of 95 VirusTotal vendors currently flag this domain. ## Summary PhishDestroy identifies the domain backpack-mainnets.app as an active crypto drainer impersonating the Backpack wallet, a popular Solana-based cryptocurrency platform. The domain is currently under investigation with a status marked as active, indicating ongoing malicious activity. The threat involves draining cryptocurrency assets from unsuspecting users by tricking them into connecting their wallets to a fraudulent interface designed to mimic the legitimate Backpack wallet login or transaction process. This domain was flagged by 0 of 95 VirusTotal vendors as of the latest scan, indicating no automated detection by major antivirus engines at this time. The domain was registered on March 22, 2026, through PDR Ltd. d/b/a PublicDomainRegistry.com. It resolves to the IP address 172.67.170.253, which is associated with Cloudflare infrastructure. The SSL certificate for this domain is issued by Let's Encrypt, a trusted certificate authority often exploited in phishing campaigns due to its widespread acceptance. The low detection rate on VirusTotal suggests that this domain is either very new or employs evasion techniques to avoid detection by signature-based security tools. The current status of backpack-mainnets.app is active, and users are strongly advised to exercise extreme caution. PhishDestroy recommends avoiding interaction with this domain entirely due to the high risk of financial loss associated with crypto drainers. Users who may have already interacted with the domain should immediately revoke any wallet connections and transfer remaining assets to a secure, newly generated wallet address. Additionally, report the domain to PhishDestroy and relevant cybersecurity platforms to aid in its flagging and eventual takedown. For further verification, users can check the domain on PhishDestroy’s database using the unique seed identifier 6913a3. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-22 09:33:51 - Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com - IP: 172.67.170.253 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b713d2e9-cb9b-4b6b-9b4e-467f2649d6ab - PhishDestroy: https://phishdestroy.io/domain/backpack-mainnets.app/ - LLM endpoint: https://phishdestroy.io/domain/backpack-mainnets.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/backpack-mainnets.app/ Last updated: 2026-03-22