# keysigaming.click — SUSPICIOUS > keysigaming.click is a live crypto drainer impersonating gaming brands, detected 0/95 on VirusTotal. Protect your crypto assets now. ## Summary PhishDestroy identifies keysigaming.click as an active crypto drainer campaign targeting gaming enthusiasts with a sophisticated brand impersonation of a prominent gaming entity. The domain was registered on January 23, 2026 through Dynadot, LLC and resolves to IP address 91.218.49.169. It leverages a Let’s Encrypt SSL certificate to appear legitimate, likely deployed to harvest cryptocurrency wallet credentials and drain digital assets from unsuspecting users. This domain has not yet been detected by any of the 95 VirusTotal engines, indicating it remains under the radar despite active distribution. Given its recent creation and clean detection history, it poses an immediate risk to users lured via spoofed gaming promotions, fake giveaways, or phishing emails. The use of bulletproof hosting infrastructure and rapid domain turnover suggests operational sophistication aimed at evading traditional security measures. Early indicators point to possible affiliation with known crypto-draining toolkits, such as those distributing through Discord, Telegram, and gaming forums. Users who accessed keysigaming.click or entered any information—especially wallet credentials or private keys—should immediately disconnect from the internet, revoke any connected wallet permissions via a secure device, and transfer remaining funds to a new wallet. Run a full antivirus scan and consider using hardware wallets for enhanced security. Report the domain to your security provider and avoid interacting with similar links in the future. If funds were stolen, file an incident report with local cybercrime units and the blockchain explorer based on transaction IDs. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-01-23 10:06:13 - Registrar: Dynadot, LLC - IP: 91.218.49.169 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/0f866432-a4a1-4f50-aca1-8097b2117c39 - PhishDestroy: https://phishdestroy.io/domain/keysigaming.click/ - LLM endpoint: https://phishdestroy.io/domain/keysigaming.click/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/keysigaming.click/ Last updated: 2026-03-26