# perpsquad.top — SUSPICIOUS

> perpsquad.top is a crypto drainer site detected with 0/95 VirusTotal detections. Analyze this crypto fraud domain now.

## Summary
PhishDestroy identifies perpsquad.top as an active crypto drainer domain under investigation for phishing operations targeting cryptocurrency users. This domain has been flagged for its suspicious registration details and zero detections across 95 VirusTotal scanners, indicating it has not yet been widely recognized as malicious despite clear red flags.  This domain was registered through NICENIC INTERNATIONAL GROUP CO., LIMITED on January 12, 2026, with resolution to IP address 172.67.192.72. VirusTotal currently shows 0 out of 95 security engines detecting the threat, and it operates with an SSL certificate issued by Google Trust Services despite its fraudulent nature. The combination of a newly registered domain, low detection rate, and cryptocurrency focus creates a high-risk profile for unsuspecting users.  Users who visited perpsquad.top should immediately check their cryptocurrency wallets for unauthorized transactions. If any suspicious activity is detected, revoke connected wallet permissions immediately and transfer remaining assets to a new, secure wallet. Consider using hardware wallets for future transactions and enable multi-factor authentication on all crypto-related accounts. Report this domain to your antivirus provider and local cybercrime units to help increase its detection rate and prevent further victimization.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-01-12 13:42:18
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.192.72

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/a9f021a0-9f00-446f-8dda-b5e0fa99f83d
- PhishDestroy: https://phishdestroy.io/domain/perpsquad.top/
- LLM endpoint: https://phishdestroy.io/domain/perpsquad.top/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/perpsquad.top/
Last updated: 2026-03-22