# bitreem.com — SUSPICIOUS > bitreem.com is a recently registered domain flagged for phishing with fake Bitcoin investment schemes. ## Summary PhishDestroy identifies bitreem.com as an ACTIVE phishing domain currently under investigation for impersonating cryptocurrency investment platforms and phishing for Bitcoin wallet credentials. The domain poses a HIGH immediate risk to users seeking legitimate investment opportunities. bitreem.com was registered on December 07, 2024 through NICENIC INTERNATIONAL GROUP CO., LIMITED, resolving to IP address 188.114.97.3. VirusTotal currently shows 0 of 95 security vendors flagging the domain, indicating its recent deployment and undetected malicious behavior. The domain possesses a valid SSL certificate issued by Google Trust Services, which malicious actors often exploit to appear legitimate to wary users. Domain age analysis reveals a 24-hour registration period, a common tactic among fraudulent cryptocurrency schemes designed for rapid deployment and evasion of detection systems. Recent threat intelligence indicates the domain hosts fraudulent Bitcoin investment platforms promising unrealistic returns, with infrastructure designed to harvest cryptocurrency wallet credentials and personal financial information. The low VirusTotal detection rate suggests this phishing campaign remains in its early propagation phase. Current status: bitreem.com is an ACTIVE phishing domain with no current blocklist entries despite zero VirusTotal detections. The domain employs HTTPS encryption and legitimate registrar services to enhance credibility. Users should immediately cease all interactions with bitreem.com, including refraining from clicking any links or entering personal or financial information. Security teams should implement network-level blocking of domain and IP address 188.114.97.3 to prevent access to this fraudulent cryptocurrency scam. Immediate reporting to cybersecurity platforms such as VirusTotal, PhishTank, and relevant financial fraud authorities is recommended to accelerate detection and takedown efforts. Businesses should update firewall rules and security awareness training to specifically address cryptocurrency-related phishing attacks, as bitreem.com demonstrates evolving tactics leveraging timely financial themes to lure victims. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2024-12-07 23:08:15 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.97.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/064ddccd-64dc-4fee-8dfa-50df279976a4 - PhishDestroy: https://phishdestroy.io/domain/bitreem.com/ - LLM endpoint: https://phishdestroy.io/domain/bitreem.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/bitreem.com/ Last updated: 2026-03-27