# p3ump.fun — SUSPICIOUS

> p3ump.fun is a crypto drainer phishing site impersonating a major brand. 1/95 security vendors flag this domain—verify safety on PhishDestroy before entering.

## Summary
PhishDestroy identifies p3ump.fun as an active crypto drainer phishing domain designed to steal cryptocurrency by tricking users into connecting wallets or entering seed phrases. The domain mimics a legitimate service to harvest private keys and drain funds, posing a severe risk to cryptocurrency holders who interact with it. Security research indicates this is not a generic phishing attempt but a targeted scheme to exploit wallet connections and transaction approvals, often leading to irreversible financial losses.  This domain was flagged by 1 out of 95 security vendors on VirusTotal, indicating limited but critical detection. The domain was registered through PDR Ltd. d/b/a PublicDomainRegistry.com on March 29, 2026, and resolves to IP address 104.21.10.159. It also utilizes a Let's Encrypt SSL certificate, which may lend a false sense of legitimacy to unsuspecting users. The recent creation date and low blocklist count suggest this is a newly deployed threat with minimal exposure to traditional security measures.  If you visited p3ump.fun, immediately disconnect any connected wallets, revoke all token and transaction approvals, and transfer remaining funds to a secure wallet. Scan your device for malware and review recent transactions for unauthorized activity. Report the domain to PhishDestroy and your wallet provider to help prevent further attacks. Exercise extreme caution with any unsolicited links or unexpected wallet connection requests to avoid falling victim to this crypto drainer.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-29 16:57:55
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 104.21.10.159

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/7bcdf789-9959-40e3-a435-23df69fefdbd
- PhishDestroy: https://phishdestroy.io/domain/p3ump.fun/
- LLM endpoint: https://phishdestroy.io/domain/p3ump.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/p3ump.fun/
Last updated: 2026-03-31