# niftyisland.app — SUSPICIOUS > PhishDestroy warns: niftyisland.app is a crypto drainer hosted on 188.114.96.3. Do NOT connect wallets. Verify sites before use. ## Summary PhishDestroy identifies niftyisland.app as an ACTIVE crypto drainer under investigation with a risk level of under_investigation. This domain was flagged on March 26, 2026, less than 24 hours after creation, resolving to IP 188.114.96.3 and using a Let's Encrypt SSL certificate. VirusTotal currently shows 0/95 detections, indicating no blacklist coverage yet despite the site being active. The domain was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED, a registrar known for accommodating high-risk registrations. Technical indicators reveal a high-risk profile: the domain's age is less than one day, which is atypical for legitimate crypto platforms. The IP address 188.114.96.3 is associated with multiple high-risk domains, including crypto drainers and fake login pages. The absence of VirusTotal detections (0/95) suggests either a very recent deployment or sophisticated evasion techniques. Let's Encrypt certificates are commonly abused by threat actors due to their low verification requirements, enabling the domain to present a false sense of legitimacy. The registrar NICENIC INTERNATIONAL GROUP CO., LIMITED has a history of poor abuse handling, further increasing the risk of this domain being a scam. Users must treat niftyisland.app as HIGH RISK and avoid interacting with it, especially wallet connections. The specific threat is a crypto drainer designed to steal cryptocurrency assets upon wallet connection. To mitigate risk, users should verify any crypto-related domain using PhishDestroy's real-time scanning tools before entering credentials or connecting wallets. Additionally, check the domain's age—domains created within 48 hours pose the highest risk. If already connected, immediately revoke wallet permissions via blockchain explorers like Etherscan or Solscan. Always cross-reference domains with PhishDestroy's database to confirm legitimacy before engagement. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-26 16:32:25 - Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/0d241977-41a4-47a3-8ab3-b72d6cf27c90 - PhishDestroy: https://phishdestroy.io/domain/niftyisland.app/ - LLM endpoint: https://phishdestroy.io/domain/niftyisland.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/niftyisland.app/ Last updated: 2026-03-26