# hassansidiqui.github.io — SUSPICIOUS > hassansidiqui.github.io hosts a crypto drainer phishing page with 0/95 VirusTotal detections. Google Safe Browsing flags it for social engineering schemes. ## Summary PhishDestroy identifies a crypto drainer campaign hosted at hassansidiqui.github.io, a GitHub Pages domain leveraging brand impersonation tactics to trick users into connecting crypto wallets. Security researchers assess this domain as actively malicious, with threat actors distributing links through deceptive social media posts or fake giveaways to harvest wallet credentials and drain funds. The page masquerades as a legitimate cryptocurrency service while silently executing unauthorized transactions upon wallet connection. Evidence gathered from multiple threat intelligence sources confirms this domain's malicious intent. VirusTotal currently rates it at 0/95 detections, indicating it remains undetected by most antivirus engines. The domain resolves to IP address 185.199.108.153, registered through GitHub Inc. with a valid Let's Encrypt SSL certificate likely used to establish credibility. Google Safe Browsing has already blacklisted this domain under the SOCIAL_ENGINEERING category, signaling immediate risk to visitors. Users who accessed this domain should assume their system may have been compromised. Immediately disconnect any cryptocurrency wallets and revoke all permissions through official wallet interfaces or blockchain explorers. Clear browser cache and cookies, then perform a full antivirus scan using updated security software. Consider rotating all cryptocurrency wallet addresses and private keys as a precautionary measure. Report this incident to your organization's SOC team if work-related assets were involved. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/hassansidiqui.github.io - PhishDestroy: https://phishdestroy.io/domain/hassansidiqui.github.io/ - LLM endpoint: https://phishdestroy.io/domain/hassansidiqui.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/hassansidiqui.github.io/ Last updated: 2026-04-04