# itsiamdev.github.io — MALICIOUS

> itsiamdev.github.io is a crypto drainer phishing site flagged by 8/95 VirusTotal engines. OpenPhish confirms active credential theft targeting unsuspecting.

## Summary
PhishDestroy identifies itsiamdev.github.io as a live crypto drainer phishing domain actively distributing malicious payloads to steal cryptocurrency wallet credentials and digital assets.

Technical indicators show the domain resolves to IP 185.199.108.153, registered through GitHub, Inc., and secured with a Let’s Encrypt SSL certificate. Security analysis via VirusTotal reveals 8 out of 95 detection engines flag the domain, while it appears on one Google Safe Browsing blocklist. OpenPhish independently confirms active blocking due to confirmed malicious activity.

Current status remains active with elevated risk. Immediate action is recommended: avoid visiting the domain, block the IP 185.199.108.153 at the network level, and report to your security team. Remaining risk includes potential continued abuse via GitHub Pages infrastructure, warranting ongoing monitoring and user awareness campaigns to prevent further compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 8 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/itsiamdev.github.io
- PhishDestroy: https://phishdestroy.io/domain/itsiamdev.github.io/
- LLM endpoint: https://phishdestroy.io/domain/itsiamdev.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/itsiamdev.github.io/
Last updated: 2026-04-08