# fees-pump.fun — MALICIOUS

> Explore the safety status of fees-pump.fun. Learn how this domain is linked to phishing and what to do if you encountered it.

## Summary
PhishDestroy identifies fees-pump.fun as a domain currently under investigation for generic phishing activities. Although it is not flagged by any security vendors on VirusTotal, its recent creation date and suspicious registrar raise concerns about potential misuse.

This phishing campaign likely attempts to deceive users by mimicking legitimate payment or fee-related services to steal sensitive information such as login credentials or financial data. Attackers may use fake forms or misleading links hosted on fees-pump.fun to trick victims into submitting personal details.

If you have visited fees-pump.fun, it is recommended to avoid entering any personal or financial information. Users should monitor their accounts for suspicious activity and consider running antivirus scans. Reporting the domain to your security provider or PhishDestroy can help improve detection and protect others.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Target brand: Pump.fun
- Page title: Pump.fun Cashback | Get 30% Back on Rug Pull Losses

## Domain Intelligence
- Registered: 2026-03-08 00:46:19
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 192.64.117.132
- IP Country: US
- IP City: Los Angeles
- IP Org: AS22612 Namecheap, Inc.
- Nameservers: dns1.namecheaphosting.com dns2.namecheaphosting.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 5 vendors flagged
  Vendors: ["ADMINUSLabs", "G-Data", "SOCRadar", "Sophos", "alphaMountain.ai"]
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ccdb6-b428-7708-8b15-9301accd4430.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/c38ce01d-2b95-47e5-94ec-a036da7f5b86
- Wayback Machine: https://web.archive.org/web/https://fees-pump.fun
- PhishDestroy: https://phishdestroy.io/domain/fees-pump.fun/
- LLM endpoint: https://phishdestroy.io/domain/fees-pump.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/fees-pump.fun/
Last updated: 2026-03-19