# project-bridge-trzr.pages.dev — SUSPICIOUS

> PhishDestroy flags project-bridge-trzr.pages.dev as an active crypto drainer hosted on Cloudflare. This malicious page mimics a legitimate bridge to steal.

## Summary
PhishDestroy identifies project-bridge-trzr.pages.dev as a live crypto drainer kit posing as a blockchain bridge interface, designed to siphon cryptocurrency from unwitting users. The domain leverages Cloudflare Pages hosting to evade detection, presenting a polished interface that mimics legitimate cross-chain bridges. Unlike generic phishing lures, this page specifically targets crypto wallets by prompting users to connect their wallets under the guise of facilitating token transfers, then draining funds via malicious smart contract interactions. Security research indicates this drainer kit is part of a broader campaign targeting users of decentralized finance (DeFi) protocols.

Technical analysis reveals several red flags: VirusTotal flags the domain with a detection score of 2 out of 95 security vendors, indicating low but present suspicion among security tools. Registered through Cloudflare, Inc., the domain resolves to IP 172.66.44.167 and operates with a Google Trust Services SSL certificate, enhancing its credibility to unsuspecting users. While creation date data is not provided, the use of Cloudflare Pages and the presence of a modern SSL certificate suggest recent deployment. Google Safe Browsing (GSB) has not yet listed this domain, and blocklist counts remain low, highlighting the challenge of early-stage detection for such malicious infrastructure.

The domain remains active as of the latest assessment, with no takedown observed despite the elevated risk level. PhishDestroy recommends immediate blocking of the domain and associated IP, alongside user education to avoid connecting wallets to unverified sites. While the current threat is elevated, proactive monitoring and community reporting can help mitigate further spread. Users are advised to verify URLs via PhishDestroy’s threat intelligence platform before engaging with any crypto-related interfaces.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.167

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/146b9778-82e1-467a-901e-d78422752caa
- PhishDestroy: https://phishdestroy.io/domain/project-bridge-trzr.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/project-bridge-trzr.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/project-bridge-trzr.pages.dev/
Last updated: 2026-03-21