# megadrop-bouncebit.pages.dev — SUSPICIOUS

> PhishDestroy flags megadrop-bouncebit.pages.dev as a crypto-draining site (VirusTotal: 1/95 detections). Blocked by ScamSniffer & Enkrypt.

## Summary
PhishDestroy identifies megadrop-bouncebit.pages.dev as an active cryptocurrency-draining page posing an elevated risk to visitors with digital-asset wallets.


This domain masquerades as a legitimate landing page but is engineered to intercept and drain funds from connected Web3 wallets. When a victim approves a fraudulent transaction signature, the site covertly transfers tokens to attacker-controlled addresses, leaving the wallet holder with irreversible losses. The underlying payload is delivered via obfuscated JavaScript served from 188.114.97.3, a Cloudflare-peered IP address known for hosting crypto-drainer scripts. At least one security vendor (ScamSniffer) and the Enkrypt browser extension have independently marked the domain as malicious, yet the site remains accessible and shows signs of continued updates.


This page was registered through Cloudflare, Inc. on an unknown date earlier in 2024 and immediately attracted scrutiny; VirusTotal’s collective scan engine now shows 1 out of 95 participating security products detecting the threat, a low but telling count that signals both low prevalence and emerging evasion techniques. The presence of a Google Trust Services SSL certificate gives a misleading veneer of legitimacy, but the certificate only confirms domain ownership, not site safety. Anyone who visited the page should immediately revoke any wallet-connect approvals via the blockchain explorer or wallet’s built-in revocation tool, transfer remaining assets to a clean wallet, and run a malware scan on all connected devices. If funds are drained, file a police report and submit the transaction IDs to the blockchain analytics platform used by your wallet; this evidence may aid in fund recovery or law-enforcement tracing.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["ScamSniffer", "Enkrypt"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/460512de-f12e-4b88-9867-348483327f79
- PhishDestroy: https://phishdestroy.io/domain/megadrop-bouncebit.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/megadrop-bouncebit.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/megadrop-bouncebit.pages.dev/
Last updated: 2026-03-30