# dep46t.sbs — SUSPICIOUS

> dep46t.sbs is a live crypto drainer domain flagged by 2 of 95 VirusTotal vendors. Review before interacting to prevent asset compromise.

## Summary
PhishDestroy identifies dep46t.sbs as an active crypto drainer domain engaged in cryptocurrency theft operations. Intelligence confirms the malicious infrastructure remains online and is currently distributing blockchain-targeting payloads. Users and organizations are strongly advised to treat this domain as hostile and refrain from clicking or entering sensitive information.


This domain was flagged by 2 of 95 VirusTotal security vendors and resolves to IP 172.67.198.159. It was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on March 28, 2026. Despite hosting a Google Trust Services SSL certificate, the domain exhibits elevated risk due to its low detection rate and recent creation date, indicating opportunistic deployment for fraud campaigns.


Current status is active with elevated risk. Organizations should implement network-level blocking via DNS and firewall rules targeting both the domain and associated IP address 172.67.198.159. Users should avoid any interaction, including visiting or submitting data to dep46t.sbs. Security teams are advised to audit logs for related domains, scan endpoints for crypto wallet artifacts, and update threat intelligence feeds with this indicator. Immediate action is required to prevent cryptocurrency asset loss.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-28 13:21:17
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.198.159

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/dep46t.sbs
- PhishDestroy: https://phishdestroy.io/domain/dep46t.sbs/
- LLM endpoint: https://phishdestroy.io/domain/dep46t.sbs/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dep46t.sbs/
Last updated: 2026-04-02