# lauradossi.github.io — MALICIOUS > lauradossi.github.io hosts a live cryptocurrency drainer kit with 5/95 VirusTotal detections. Users should avoid and report this GitHub Pages site immediately. ## Summary PhishDestroy identifies lauradossi.github.io as an active cryptocurrency drainer kit distribution point under the GitHub Pages hosting service. The domain masquerades as a legitimate portfolio or project page while silently injecting JavaScript designed to drain crypto wallets during user interaction. No specific brand is being impersonated in this campaign, indicating a generic but highly effective drainer deployment strategy aimed at unsuspecting visitors. The malicious payload is delivered through a compromised or attacker-controlled GitHub repository, leveraging GitHub's trusted infrastructure to lower victim defenses. lauradossi.github.io resolves to IP 185.199.108.153, registered through GitHub, Inc. with a Let's Encrypt SSL certificate. VirusTotal analysis reveals 5 out of 95 security vendors flag the domain, indicating moderate but growing detection. While the exact creation date is not publicly visible due to GitHub's ephemeral page structure, the operational timeline aligns with recent cryptocurrency drainer campaigns. The domain remains unlisted in Google Safe Browsing (GSB) at this time, and no public blocklist count is available due to its rapid deployment cycle. The drainer kit uses obfuscated JavaScript to monitor clipboard activity, wallet connection prompts, and transaction signing requests, exfiltrating private keys and seed phrases to attacker-controlled wallets. As of the latest assessment, lauradossi.github.io remains ACTIVE and is actively distributing cryptocurrency drainer malware. GitHub has been notified and may take down the repository upon review. Users are strongly advised to block the domain at the network level and avoid any interaction with this page. The elevated risk stems from the drainer's ability to silently extract high-value wallet credentials without user consent. Remaining risk is considered ELEVATED due to GitHub's fast takedown response times and the drainer's dependency on real-time user interaction. Immediate user awareness and proactive blocking are critical to prevent financial loss. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 5 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/467f3172-dea4-4d9c-870c-1a737e8f0adc - PhishDestroy: https://phishdestroy.io/domain/lauradossi.github.io/ - LLM endpoint: https://phishdestroy.io/domain/lauradossi.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/lauradossi.github.io/ Last updated: 2026-03-28