# pujanca-finova.com — SUSPICIOUS

> pujanca-finova.com is a crypto drainer scam flagged by VirusTotal with 1/95 vendors detecting it. Avoid connecting wallets or sharing credentials.

## Summary
PhishDestroy identifies pujanca-finova.com as an active crypto drainer scam impersonating a financial service platform. The domain leverages social engineering tactics to trick users into connecting cryptocurrency wallets, enabling unauthorized fund transfers to attacker-controlled addresses. No specific drainer kit (e.g., MetaMask, WalletConnect, or Web3 provider exploit) was identified in open-source intelligence, but the site exhibits hallmark behaviors of crypto drainers: fake investment opportunities, inflated returns, and pressure to act immediately. The threat is elevated due to the domain's recent creation and active hosting infrastructure, suggesting opportunistic targeting of unsuspecting users.  

This domain was flagged by PhishDestroy with the following technical indicators: VirusTotal detection ratio of 1 out of 95 security vendors (1.05%), domain registered through NETIM on November 17, 2025, resolving to IP 91.236.116.172. The domain is flagged by Google Safe Bearing as a social engineering site and holds a valid Let's Encrypt SSL certificate. No additional blocklist data was provided in the intelligence feed. The domain's recent registration date (within the last month) and low detection rate indicate a potentially emerging threat with limited exposure in threat intelligence feeds.  

As of the latest assessment, pujanca-finova.com remains active and poses an elevated risk to users engaging with its fraudulent content. Immediate actions include blocking the domain at the network level (DNS/hosts file) and reporting it to relevant authorities (e.g., Google Safe Browsing, NETIM abuse team, or local cybercrime units). Users should avoid interacting with the site entirely, particularly wallet connections or financial transactions. The remaining risk is elevated due to the domain's active status and the lack of widespread detection, though proactive blocking can mitigate exposure. Continued monitoring is recommended to track its operational lifespan and potential evolution into other scams.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-11-17 21:46:43
- Registrar: NETIM
- IP: 91.236.116.172

## Detection Status
- VirusTotal: 1 vendors flagged
- Google Safe Browsing: FLAGGED
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/b1847b38-5d78-453a-94b6-1a8525afc7de
- PhishDestroy: https://phishdestroy.io/domain/pujanca-finova.com/
- LLM endpoint: https://phishdestroy.io/domain/pujanca-finova.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pujanca-finova.com/
Last updated: 2026-03-22