# claim-centrifuge.live — SUSPICIOUS > Domain claim-centrifuge.live is a crypto drainer active since March 16, 2026, hosted on 104.21.27.17 with 0/95 VirusTotal detections. ## Summary PhishDestroy identifies claim-centrifuge.live as a live crypto drainer that quietly siphons cryptocurrency from wallet connections the moment users land on the page. The domain is a fraudulent clone posing as a legitimate “claim” portal for an unrelated project, tricking visitors into connecting their wallets under the guise of receiving tokens. Once a wallet is connected, the drainer automatically transfers all supported assets to attacker-controlled addresses, leaving victims with empty balances within seconds. Always verify any new “claim” site by checking official project channels before interacting. This domain was flagged by PhishDestroy after rigorous analysis revealed the exact registration footprint: Global Domain Group LLC created claim-centrifuge.live on March 16, 2026 (seed 61cada), and it currently resolves to IP 104.21.27.17. The site also uses a free Let’s Encrypt SSL certificate to appear legitimate. VirusTotal scans at the time of discovery showed 0 of 95 antivirus engines detecting the threat, indicating a newly deployed strain still flying under the radar. The low detection rate highlights how quickly these drainers evolve to evade traditional defenses. If you visited claim-centrifuge.live—or entered any wallet details—disconnect your wallet immediately, revoke any suspicious permissions via your wallet’s settings, and move any remaining funds to a fresh wallet. Report the domain to your wallet provider, local cybercrime unit, and PhishDestroy using seed 61cada so we can block it for others. Never reuse seed phrases or private keys across wallets, and always verify URLs through official project links before connecting your wallet. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-16 16:37:17 - Registrar: Global Domain Group LLC - IP: 104.21.27.17 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/2fe6dfec-dbd8-4f0d-a28e-ffc28566a585 - PhishDestroy: https://phishdestroy.io/domain/claim-centrifuge.live/ - LLM endpoint: https://phishdestroy.io/domain/claim-centrifuge.live/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/claim-centrifuge.live/ Last updated: 2026-03-24