# lord111041.github.io — MALICIOUS > PhishDestroy identifies lord111041.github.io as a crypto drainer phishing site impersonating a major brand. ## Summary PhishDestroy identifies lord111041.github.io as an active crypto drainer phishing domain designed to stealthily drain cryptocurrency wallets under the guise of a legitimate brand interface. The site is currently live and distributing malicious payloads to unsuspecting users who interact with embedded wallet-connect prompts. This behavior aligns with the growing trend of “crypto drainers” that silently authorize blockchain transactions without explicit consent, often mimicking reputable platforms to exploit trust. This domain was flagged by 11 of 95 VirusTotal security vendors as of latest analysis, confirming elevated malicious intent. It is registered through GitHub, Inc. and resolved to IP 185.199.108.153 at the time of detection. The domain appears on one public blocklist and holds an SSL certificate issued by Let’s Encrypt, suggesting an attempt to appear trustworthy. While exact creation date is not publicly disclosed, the combination of low trust scores, cryptocurrency wallet integration prompts, and early-stage detection indicates recent deployment targeting crypto users. Given the active threat status and confirmed malicious infrastructure, PhishDestroy strongly advises against visiting, clicking, or engaging with any content on lord111041.github.io. Users who may have already interacted with this domain—especially those who connected wallets or entered seed phrases—should immediately revoke unauthorized smart contract approvals via tools like Revoke.cash, transfer remaining assets to a new wallet, and monitor for suspicious transactions. Block the domain at network and browser levels using real-time threat feeds. Report the domain to your antivirus provider and relevant crypto security platforms to aid in global takedown efforts. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 11 vendors flagged - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["OpenPhish"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/lord111041.github.io - PhishDestroy: https://phishdestroy.io/domain/lord111041.github.io/ - LLM endpoint: https://phishdestroy.io/domain/lord111041.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/lord111041.github.io/ Last updated: 2026-04-08