# gettrumpmemes.pages.dev — SUSPICIOUS

> PhishDestroy identifies gettrumpmemes.pages.dev as a Trump Token impersonation site distributing a meme-themed drainer kit. Check the full report.

## Summary
PhishDestroy has flagged the domain gettrumpmemes.pages.dev as a brand impersonation threat targeting supporters of Trump Token. The domain leverages meme-themed content to create a false sense of legitimacy while attempting to deceive users into connecting their wallets to a drainer kit designed to siphon cryptocurrency assets. The threat remains under active investigation, with no confirmed drainer payloads yet identified in sandbox analysis.  This domain resolves to the IP address 172.66.44.207 and is registered through Cloudflare, Inc. VirusTotal analysis currently shows 0 detections out of 95 engines, indicating that signature-based detection has not yet flagged this domain as malicious. The SSL certificate is issued by Google Trust Services, which may lend an air of legitimacy to unsuspecting visitors. The domain was created recently and is being monitored for further malicious activity.  The domain is currently active and classified as a medium-risk threat under investigation. There are no confirmed blocklist entries or Google Safe Browsing (GSB) detections associated with this domain at this time. Users are advised to avoid interacting with this domain and report any suspicious activity. Remaining risk is moderate due to the domain's recent registration and the absence of widespread detection signatures. PhishDestroy continues to monitor this domain and will update the threat assessment as new intelligence becomes available.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Trump Token

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.207

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/9354a913-6886-4b06-a1c7-7316875eda70
- PhishDestroy: https://phishdestroy.io/domain/gettrumpmemes.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/gettrumpmemes.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gettrumpmemes.pages.dev/
Last updated: 2026-03-26