# pumlpi.fun — SUSPICIOUS

> PhishDestroy identifies pumlpi.fun as a generic phishing domain targeting cryptocurrency users. This domain, registered April 5, 2026, remains undetected by 95.

## Summary
PhishDestroy flags pumlpi.fun as a domain actively engaged in generic phishing operations, with no specific brand or drainer kit affiliation identified at this stage. The page title 'View on Pump' suggests a potential impersonation of cryptocurrency pump-and-dump schemes or related trading platforms, though no explicit branding has been confirmed. Given the domain's recent creation (April 05, 2026) and the lack of detections across VirusTotal’s 95 engines, this threat remains in an early stage of deployment, warranting immediate scrutiny.  This domain resolves to IP 104.21.49.41 and leverages a Let’s Encrypt SSL certificate, which provides no assurance of legitimacy given the domain’s suspicious activity. The registrar, PDR Ltd. d/b/a PublicDomainRegistry.com, has a neutral reputation with no immediate red flags in this instance. The domain has yet to appear on Google Safe Browsing (GSB) blocklists or other major threat intelligence feeds, further highlighting its stealthy nature. At present, VirusTotal records 0/95 detections, indicating a novel or low-sophistication campaign that could escalate rapidly.  The current status of pumlpi.fun is classified as active, with no known takedown efforts or mitigations in progress. Security teams are advised to implement network-level blocks against the resolved IP (104.21.49.41) and monitor for related infrastructure. End users should treat this domain as hostile, avoid interaction, and exercise extreme caution with cryptocurrency-related links. The residual risk remains moderate due to the domain’s recent emergence and lack of widespread detection, but proactive blocking is strongly recommended to prevent potential financial or credential theft.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: cloaking (HTTP ?)
- Page title: View on Pump

## Domain Intelligence
- Registered: 2026-04-05 11:23:33
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 104.21.49.41

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/e76af4d9-9ec5-449d-9529-2f061ba6bf6b
- PhishDestroy: https://phishdestroy.io/domain/pumlpi.fun/
- LLM endpoint: https://phishdestroy.io/domain/pumlpi.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/pumlpi.fun/
Last updated: 2026-04-12