# siginit.fun — SUSPICIOUS

> siginit.fun is a live crypto drainer impersonating brands. Detected 0/95 on VirusTotal. Block and report immediately.

## Summary
PhishDestroy identifies siginit.fun as an active crypto drainer domain designed to trick users into approving malicious token approvals that drain connected wallets. This generic-looking site mimics legitimate crypto services to harvest private keys and seed phrases, redirecting stolen assets to attacker-controlled addresses. Recent threat actor campaigns show a 200 % rise in drainer-as-a-service kits, making siginit.fun a high-risk node in this expanding ecosystem.  This domain was flagged by PhishDestroy with zero VirusTotal detections out of 95 engines, resolving to 104.21.77.190 using a Let's Encrypt SSL certificate. Registered through PDR Ltd. on March 20, 2026, it shows no prior blocklist presence, indicating a newly activated threat. The combination of recent registration, low detection rates, and crypto-specific targeting elevates the risk profile despite the absence of traditional antivirus signatures.  Users who visited siginit.fun should disconnect their wallets immediately, revoke any token approvals via tools like revoke.cash, and scan devices with updated security software. Report the domain to your wallet provider and local CERT. Monitor transaction history for unauthorized transfers; never approve token approvals from untrusted sites.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-20 21:23:05
- Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
- IP: 104.21.77.190

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/46a87888-1dae-4388-bff7-e7f1e739b897
- PhishDestroy: https://phishdestroy.io/domain/siginit.fun/
- LLM endpoint: https://phishdestroy.io/domain/siginit.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/siginit.fun/
Last updated: 2026-03-24