# dpmgkozh.com — SUSPICIOUS

> dpmgkozh.com is a suspected crypto drainer phishing domain. VirusTotal shows 0/95 detections. Verify safety on PhishDestroy immediately.

## Summary
PhishDestroy identifies dpmgkozh.com as an active generic phishing domain currently under investigation for hosting a cryptocurrency drainer kit. The domain does not yet show strong ties to a branded impersonation but aligns with generic wallet-draining campaigns that harvest seed phrases or private keys from unsuspecting users. Given the absence of VT detections and the rapid domain creation timeline, this site is likely in early deployment, possibly targeting users through social media or messaging platforms where cryptocurrency transactions are discussed.    

Technical indicators confirm this domain was created on March 12, 2026, and is registered via NICENIC INTERNATIONAL GROUP CO., LIMITED. It resolves to IP 104.21.32.233 and has an active SSL certificate issued by Let's Encrypt. As of the latest scan, the domain shows 0 detections out of 95 on VirusTotal, indicating low antivirus coverage. It remains unlisted on Google Safe Browsing (GSB) and is not present on major blocklists such as PhishTank or OpenPhish. These factors suggest a newly launched campaign with limited exposure to detection systems.    

The domain is currently active and poses a moderate-to-high risk due to the lack of detection and the presence of a drainer kit infrastructure. PhishDestroy has flagged this domain under seed 341e04 and is actively monitoring its payload and redirection behavior. Users are advised to avoid interacting with this domain and verify any links using PhishDestroy’s platform before entering wallet credentials or making transactions. The remaining risk is high until the domain is widely blocked or taken down. Immediate user vigilance and reporting are critical to mitigate potential losses.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-12 09:07:00
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 104.21.32.233

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/eb7ef28c-6523-44f6-a15c-6379e0ff5023
- PhishDestroy: https://phishdestroy.io/domain/dpmgkozh.com/
- LLM endpoint: https://phishdestroy.io/domain/dpmgkozh.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dpmgkozh.com/
Last updated: 2026-03-23