# frtt-gamma.vercel.app — MALICIOUS

> The domain frtt-gamma.vercel.app is actively hosting a crypto drainer phishing site flagged by 9 of 95 VirusTotal vendors. Act now to block 64.29.17.67.

## Summary
PhishDestroy identifies the active domain frtt-gamma.vercel.app as a crypto-draining phishing host targeting unsuspecting cryptocurrency users. Security telemetry confirms the site remains live and is actively attempting to siphon digital assets from victims who interact with its fraudulent interfaces.

This domain was flagged by 9 of 95 VirusTotal vendors upon submission, indicating early-stage detection of its malicious intent. It resolves to IPv4 address 64.29.17.67 and is currently deployed on Vercel infrastructure under US jurisdiction, leveraging Google Trust Services SSL certificates to appear legitimate. Telemetry correlates this host with an emerging cluster of crypto-draining domains, where attackers impersonate legitimate services to trick users into connecting wallets or approving fraudulent transactions.

Given its elevated risk status and confirmed hostile behavior, all network defenses should immediately block 64.29.17.67 and frtt-gamma.vercel.app at perimeter and endpoint levels. SOC teams should also inspect DNS logs for any resolutions to frtt-gamma.vercel.app within the last 72 hours and notify end users who may have accessed the domain. Implement strict egress controls to prevent wallet-connecting domains from reaching external endpoints to mitigate further loss of funds.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Vercel Inc.
- IP: 64.29.17.67

## Detection Status
- VirusTotal: 9 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/frtt-gamma.vercel.app
- PhishDestroy: https://phishdestroy.io/domain/frtt-gamma.vercel.app/
- LLM endpoint: https://phishdestroy.io/domain/frtt-gamma.vercel.app/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/frtt-gamma.vercel.app/
Last updated: 2026-04-07