# rohan3012cmyk.github.io — MALICIOUS

> PhishDestroy warns: rohan3012cmyk.github.io is a crypto drainer phishing site with 7/95 VirusTotal detections.

## Summary
PhishDestroy identifies rohan3012cmyk.github.io as an active crypto drainer phishing domain operating at elevated risk. This GitHub-hosted page is designed to deceive users into connecting wallets and approving malicious token transfers designed to siphon cryptocurrency. The site leverages the trust of GitHub’s *.github.io subdomain space to appear legitimate, but its payload is intended to drain connected digital assets without consent.  This domain resolves to IP address 185.199.108.153 and was registered through GitHub, Inc. VirusTotal analysis shows 7 out of 95 participating security vendors flagging it as malicious, indicating moderate detection but consistent with active phishing operations. While the registration date is not provided, the use of a *.github.io subdomain suggests recent deployment given GitHub’s active takedown policies. The domain is not listed on major blocklists at this time, but elevated detection ratios and known crypto drainer behavior warrant immediate caution. Independent trust scores are low due to association with theft-focused malware.  Users must avoid interacting with any links or wallet connections from rohan3012cmyk.github.io. Always verify URLs using PhishDestroy’s real-time scanner before clicking. Never connect wallets or enter credentials on unfamiliar sites—especially those hosted on free tiers of reputable platforms. Report all suspected drainer domains immediately to raise collective awareness and accelerate blocking. Protect assets by using hardware wallets and transaction simulation tools before signing.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 7 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- PhishDestroy: https://phishdestroy.io/domain/rohan3012cmyk.github.io/
- LLM endpoint: https://phishdestroy.io/domain/rohan3012cmyk.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/rohan3012cmyk.github.io/
Last updated: 2026-03-26