# openairdrops.top — SUSPICIOUS

> Domain openairdrops.top impersonates Airdrop Scams, active since April 2026, with 0/95 VirusTotal detections. Avoid this site to prevent credential theft.

## Summary
PhishDestroy identifies openairdrops.top as a live airdrop scam impersonation domain, currently active and posing as a legitimate airdrop platform. This domain leverages brand impersonation to deceive users into revealing sensitive information, such as wallet credentials or personal data, under the guise of participating in exclusive cryptocurrency offers. The page title, rendered in Chinese, suggests a focus on high-quality products, likely targeting non-English speaking users unfamiliar with legitimate airdrop campaigns.  Analysts have confirmed this domain exhibits several red flags. Registered through Dominet (HK) Limited on April 10, 2026, it resolves to IP 188.114.96.3 and currently shows 0 detections out of 95 VirusTotal scans. Despite its recent creation, it remains unblocked by most security vendors, making it a latent threat to unsuspecting users. The domain employs a Let's Encrypt SSL certificate, adding a veneer of legitimacy while hosting malicious content designed to harvest user inputs.  Users who have visited openairdrops.top should immediately cease any interaction with the site and inspect their devices for signs of compromise. Avoid entering any credentials, wallet addresses, or personal information on the page. If credentials were submitted, rotate passwords immediately and monitor accounts for unauthorized access. Report the domain to your security team or block it at the network level using the IP 188.114.96.3 to prevent further exposure.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP ?)
- Target brand: Airdrop Scam
- Page title: ç²¾ååå - ä¼è´¨äº§åï¼åè¶ä½éª

## Domain Intelligence
- Registered: 2026-04-10 10:57:46
- Registrar: Dominet (HK) Limited
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/25b93d18-9487-4745-896b-c3a032c04203
- PhishDestroy: https://phishdestroy.io/domain/openairdrops.top/
- LLM endpoint: https://phishdestroy.io/domain/openairdrops.top/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/openairdrops.top/
Last updated: 2026-04-12