# giteshyewale.github.io — MALICIOUS > PhishDestroy warns: giteshyewale.github.io runs a crypto drainer that steals wallet funds. 14 of 95 VirusTotal scanners flag this GitHub page. ## Summary PhishDestroy identifies giteshyewale.github.io as an active crypto-drainer site that silently swaps wallet addresses on the page, diverting any sent funds to attacker-controlled addresses instead of their intended destination. This type of threat is particularly dangerous for users who connect cryptocurrency wallets or paste transaction details, as the site can intercept and alter withdrawal destinations without immediate notice. The malicious behavior is triggered automatically when visitors interact with deposit or send forms, making every visit a potential loss of digital assets. This domain was flagged by 14 out of 95 VirusTotal security vendors and is hosted on GitHub Pages under the GitHub, Inc. registrar with a Let’s Encrypt SSL certificate resolving to IP 185.199.108.153. The page was created recently and is part of a known pattern of crypto-drainer campaigns that abuse legitimate hosting services to appear credible while distributing malicious scripts. GitHub has not yet suspended the repository, increasing exposure to unsuspecting users. If you visited giteshyewale.github.io, disconnect your wallet immediately and revoke any connected permissions through your wallet’s security settings or official blockchain explorers. Do not approve any pending transactions. Scan your device using reputable antivirus software and change passwords on all related accounts. Report the domain and any wallet addresses involved to PhishDestroy and the platform where you encountered the link. Always verify URLs and use trusted sources before entering sensitive information or connecting wallets. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 14 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/668d5cb1-b7ed-4526-bb52-0428f3f294ee - PhishDestroy: https://phishdestroy.io/domain/giteshyewale.github.io/ - LLM endpoint: https://phishdestroy.io/domain/giteshyewale.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/giteshyewale.github.io/ Last updated: 2026-03-26