# claim.ethgas.click — SUSPICIOUS

> Discover why claim.ethgas.click is a high-risk crypto drainer site with 0/95 VirusTotal detections. Protect your crypto assets immediately.

## Summary
PhishDestroy identifies claim.ethgas.click as an active crypto drainer domain currently under investigation for malicious activities targeting cryptocurrency users.


This domain was flagged for its role as a crypto drainer, designed to illicitly transfer funds from victims' wallets. According to available intelligence, the domain was registered through DYNADOT LLC on March 31, 2026, and resolves to the IP address 172.67.190.10. The domain operates with a Let's Encrypt SSL certificate, which may contribute to its perceived legitimacy. As of the latest check, VirusTotal reports 0 detections out of 95 vendors, indicating that it has not yet been widely flagged by security solutions. The domain's recent creation and lack of detections suggest it may still be in an early stage of deployment or undetected by many security tools.


Given the active status of this domain and its association with crypto drainer activity, organizations and individuals should treat it as a high-risk threat. Concrete recommendations include blocking the domain and IP address at the network perimeter, updating endpoint detection rules to monitor for connections to this domain, and educating users about the risks of interacting with unsolicited links or websites. Additionally, security teams should monitor for any connections to the associated IP address, 172.67.190.10, and consider investigating any past or present interactions with claim.ethgas.click as part of incident response efforts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-31 21:16:09
- Registrar: DYNADOT LLC
- IP: 172.67.190.10

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/claim.ethgas.click
- PhishDestroy: https://phishdestroy.io/domain/claim.ethgas.click/
- LLM endpoint: https://phishdestroy.io/domain/claim.ethgas.click/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/claim.ethgas.click/
Last updated: 2026-04-02