# lives02.run — SUSPICIOUS

> lives02.run hosts a crypto drainer posing as a live event platform. VirusTotal shows 0/95 detections. Do not interact.

## Summary
PhishDestroy identifies lives02.run as a recently activated crypto drainer domain designed to steal cryptocurrency assets from unsuspecting users. This domain mimics legitimate live event platforms to deceive visitors into connecting wallets or submitting transaction details, enabling unauthorized fund transfers. The threat actor behind this campaign leverages urgency and familiarity to bypass user skepticism, making it a high-risk vector for financial loss.  This domain was flagged with a VirusTotal score of 0/95 detections, indicating it has evaded initial scanning engines. It was registered through Unstoppable Domains Inc on March 30, 2026, and resolves to IP 34.42.100.71 with a valid Let's Encrypt SSL certificate. The combination of a freshly registered domain, zero detections, and reputable infrastructure suggests this is an emerging threat actively testing detection evasion techniques.  Users who visited lives02.run should immediately disconnect any connected wallets, revoke any unauthorized permissions, and scan their devices for malware. Do not enter credentials or cryptocurrency transaction details. Report the domain to your wallet provider and consider filing an incident report with relevant cybersecurity authorities. Monitor financial accounts for unauthorized transactions and update security settings across all platforms.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-30 13:25:03
- Registrar: Unstoppable Domains Inc
- IP: 34.42.100.71

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/c165d3ed-b54f-455b-a55c-4ce412b446a6
- PhishDestroy: https://phishdestroy.io/domain/lives02.run/
- LLM endpoint: https://phishdestroy.io/domain/lives02.run/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/lives02.run/
Last updated: 2026-03-31