# reallocation-usdai.org — SUSPICIOUS > PhishDestroy flags reallocation-usdai.org as a crypto drainer landing page mimicking USDai services. VT shows 0/95 detections; scan before you click. ## Summary PhishDestroy identifies reallocation-usdai.org as an active generic phishing domain classified as a crypto-drainer landing page, designed to trick users into connecting wallets and signing malicious transactions that silently drain tokens to attacker-controlled addresses. This domain was flagged on April 08, 2026, and currently resolves to IPv4 address 104.21.12.59. A Let’s Encrypt SSL certificate is present, increasing perceived legitimacy, yet VirusTotal reports 0 detections out of 95 engines and no entries on major blocklists. The registrar is PDR Ltd. d/b/a PublicDomainRegistry.com, a common gateway for bulletproof domain registrations. Trust scores for the IP and domain remain at or near zero, indicating fresh infrastructure with minimal historical scrutiny. Users should immediately avoid interacting with reallocation-usdai.org and any embedded wallet connection prompts. Verify the site using PhishDestroy’s real-time scanner before entering credentials or signing transactions. If accidentally connected, revoke unauthorized wallet permissions via your wallet’s “Connected Apps” menu and transfer remaining funds to a clean wallet. Report the domain to PhishDestroy to help block similar campaigns targeting crypto holders. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-04-08 20:31:10 - Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com - IP: 104.21.12.59 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/reallocation-usdai.org - PhishDestroy: https://phishdestroy.io/domain/reallocation-usdai.org/ - LLM endpoint: https://phishdestroy.io/domain/reallocation-usdai.org/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/reallocation-usdai.org/ Last updated: 2026-04-08