# rastreioapple.support — MALICIOUS > rastreioapple.support is a crypto drainer impersonating Apple tracking. VirusTotal flags it at 16/95. Block immediately to protect assets. ## Summary PhishDestroy identifies the domain rastreioapple.support as an active crypto drainer posing as Apple’s tracking service. This malicious site lures users into connecting crypto wallets under the guise of package tracking, enabling unauthorized fund transfers. The domain is engineered to deceive victims into approving malicious smart contract transactions that drain cryptocurrency holdings without withdrawal confirmations. This domain was flagged by multiple authoritative security systems. PhishArmy, OpenPhish, and InversionDNS have all added rastreioapple.support to their blocklists. Google Safe Browsing classifies it under SOCIAL_ENGINEERING, indicating deliberate deception. VirusTotal analysis shows 16 out of 95 security vendors flagged this domain as malicious. The domain was registered on February 19, 2026, through Gransy, s.r.o., and resolves to IP address 31.148.99.121. Its SSL certificate, issued by Let’s Encrypt, gives it a false appearance of legitimacy, increasing the risk of successful deception. If you visited rastreioapple.support, disconnect your wallet immediately and revoke any unauthorized smart contract permissions via tools like revoke.cash or Etherscan. Do not interact with any transaction prompts or wallet connection requests from this domain. Report the domain to your antivirus provider and local cybercrime unit. Clear browser cache and cookies associated with this site. Monitor wallet transactions closely for unauthorized activity. Consider transferring remaining funds to a new, secure wallet after revoking access. Stay vigilant—this domain is designed to exploit trust in legitimate tracking services. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-02-19 15:20:03 - Registrar: Gransy, s.r.o. - IP: 31.148.99.121 ## Detection Status - VirusTotal: 16 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 3 hits Lists: ["OpenPhish", "PhishingArmy", "InversionDNS"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/ab77a639-0e57-40a6-ab1a-6b5743d9481b - PhishDestroy: https://phishdestroy.io/domain/rastreioapple.support/ - LLM endpoint: https://phishdestroy.io/domain/rastreioapple.support/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/rastreioapple.support/ Last updated: 2026-03-29