# masterbot.trade — SUSPICIOUS

> masterbot.trade hosts an active phishing scam disguised as an airdrop offer. Stay vigilant and avoid interacting with this site to protect your data.

## Summary
PhishDestroy identifies masterbot.trade as an active phishing domain posing as a cryptocurrency airdrop platform named MasterBOT. This threat is significant because it attempts to deceive users into divulging sensitive information, potentially leading to financial loss or account compromise. The use of enticing airdrop themes exploits user trust in crypto giveaways and increases the risk of credential theft.

The domain masterbot.trade was registered on February 21, 2026, and resolves to the IP address 172.67.215.197. It appears in two AlienVault OTX threat pulses and is listed on two security blocklists, indicating ongoing malicious activity. VirusTotal flags this domain as suspicious by three out of ninety-five security vendors. The website’s page title, "MasterBOT | Airdrop," suggests the phishing attempt targets cryptocurrency enthusiasts seeking free tokens.

Users are strongly advised to avoid visiting masterbot.trade or interacting with any communications referencing this domain. Do not enter personal or financial details on this site. Security teams should consider blocking the domain and monitoring for related phishing attempts. Staying informed about such threats and verifying the authenticity of crypto airdrops through official channels can reduce the risk of falling victim to scams like this one.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Page title: MasterBOT | Airdrop

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 172.67.215.197
- SSL Issuer: WE1

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: ["CRDF", "Gridinsoft", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a05cd-a0d0-7509-9a25-5a36cf1c0f38.png
- PhishDestroy: https://phishdestroy.io/domain/masterbot.trade/
- LLM endpoint: https://phishdestroy.io/domain/masterbot.trade/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/masterbot.trade/
Last updated: 2026-03-19