# samber-gledek88.club — SUSPICIOUS > samber-gledek88.club is a crypto-drainer site with 0/95 VirusTotal detections. Avoid wallet connections—funds may be drained instantly. Block and report. ## Summary This domain, samber-gledek88.club, has been flagged under an active investigation for operating as a generic phishing page suspected of running a cryptocurrency drainer kit targeting wallet connections. No specific brand impersonation has been confirmed at this stage, but the infrastructure suggests active deployment of malicious scripts designed to siphon digital assets upon user interaction. The threat actor appears to be leveraging deceptive domains with automated scripts that trigger unauthorized transactions once wallet permissions are granted. The campaign remains under analysis for additional payloads or further targeting scope. Exact technical indicators for this domain include a VirusTotal detection score of 0/95, registered through Dynadot Inc on December 12, 2025, resolving to IP address 188.114.96.3. The domain holds a valid SSL certificate issued by Google Trust Services, which may be used to establish false trust with potential victims. As of current assessments, this domain has not been flagged by Google Safe Browsing (GSB), and no blocklist detections have been recorded—indicating it is actively evading detection mechanisms. The domain is currently classified as 'active' with a risk level marked as 'under_investigation', suggesting ongoing monitoring but no immediate remediation. The current operational status of samber-gledek88.club remains active, with no public blocklist inclusions reported. Security researchers recommend immediate blocking of the domain and associated IP address to prevent user exposure. Users are strongly advised to avoid any interaction with this domain, especially wallet connections or transaction approvals. Remaining risk includes potential evolution of the drainer kit or expansion into additional phishing campaigns. Continuous monitoring is advised as the threat actor may adapt infrastructure to evade detection. Immediate defensive actions include network-level blocking and reporting to threat intelligence platforms for proactive defense. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2025-12-12 17:24:06 - Registrar: Dynadot Inc - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/5278847f-8563-43bb-b1df-a17605fc6080 - PhishDestroy: https://phishdestroy.io/domain/samber-gledek88.club/ - LLM endpoint: https://phishdestroy.io/domain/samber-gledek88.club/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/samber-gledek88.club/ Last updated: 2026-03-24