# enter-moons-shot.com — SUSPICIOUS

> enter-moons-shot.com linked to a crypto drainer phishing campaign, flagged by 0 of 95 VirusTotal vendors. SSL via Let's Encrypt. Do not connect wallets.

## Summary
PhishDestroy identifies enter-moons-shot.com as an active crypto drainer phishing domain currently under investigation.


This domain combines a generic but suggestive name with a recently registered certificate issued by Let’s Encrypt. VirusTotal currently shows zero vendor detections across 95 engines, indicating it has not yet been widely blacklisted. The domain resolves to the IPv4 address 216.150.1.65 and was created on March 23, 2026 through Name.com, Inc. While no public blocklists have flagged this domain at the time of analysis, its SSL certificate, relatively recent creation date, and connection to a suspicious TLD raise concerns about potential misuse in cryptocurrency-related scams.


Current assessments place this domain at a preliminary risk level pending further behavioral analysis. Given the absence of detections and the domain’s fresh registration, it remains latent but poses a credible threat due to its use of HTTPS, which can misleadingly enhance user trust. The combination of a newly minted domain, a Let’s Encrypt SSL certificate, and a title identical to the domain suggests a hastily assembled campaign targeting crypto users. PhishDestroy recommends immediate network and endpoint blocking of both the domain and its resolved IP. Users should avoid interacting with the site and treat any wallet connection prompts as high-risk. Security teams are advised to monitor for derivative domains and block inbound connections to 216.150.1.65 until a full behavioral profile is established.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Page title: enter-moons-shot.com

## Domain Intelligence
- Registered: 2026-03-23 21:41:50
- Registrar: Name.com, Inc.
- IP: 216.150.1.65

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/5e1d25c0-652e-417f-82cb-58194d424c32
- PhishDestroy: https://phishdestroy.io/domain/enter-moons-shot.com/
- LLM endpoint: https://phishdestroy.io/domain/enter-moons-shot.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/enter-moons-shot.com/
Last updated: 2026-03-24