# giveawaysteam.com — MALICIOUS

> Investigate giveawaysteam.com, a crypto drainer posing as a gaming giveaway site. Flagged by 19 of 95 VirusTotal vendors. Block domain immediately.

## Summary
The domain giveawaysteam.com is actively associated with a cryptocurrency drainer campaign designed to deceive users into transferring funds to attacker-controlled wallets. PhishDestroy identifies this site as an ongoing credential theft and financial abuse operation. The infrastructure remains operational as of this report, with no evidence of takedown activity.  This domain was flagged by 19 of 95 VirusTotal security vendors and resolved to IP address 188.114.96.3. Registered through Hello Internet Corp on February 05, 2026, it has already been blocked by two active phishing blocklists—OpenPhish and PhishingArmy—and holds a valid SSL certificate issued by Google Trust Services. Despite its recent creation, the presence across nearly one-fifth of leading security platforms and multiple blocklists underscores its malicious intent and elevated risk to end users engaging in crypto transactions or promotional giveaways.  Given the active status, confirmed detection by nearly 20% of VirusTotal scanners, and dual blocklist coverage, immediate network-level blocking of giveawaysteam.com and IP 188.114.96.3 is strongly advised. Users should be warned against interacting with any gaming or crypto-related promotions hosted on this domain. Security teams are urged to update firewall rules, DNS sinkholes, and SIEM signatures to prevent inbound and outbound communications to this infrastructure.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-02-05 15:38:10
- Registrar: Hello Internet Corp
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 19 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["OpenPhish", "PhishingArmy"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/giveawaysteam.com
- PhishDestroy: https://phishdestroy.io/domain/giveawaysteam.com/
- LLM endpoint: https://phishdestroy.io/domain/giveawaysteam.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/giveawaysteam.com/
Last updated: 2026-04-08