# srishanthreddyv.github.io — MALICIOUS > srishanthreddyv.github.io is a verified crypto drainer posing as a legitimate site. VirusTotal flags 15/95 security vendors. Avoid interactions immediately. ## Summary PhishDestroy identifies srishanthreddyv.github.io as an active crypto drainer kit deployed on GitHub Pages, masquerading as a personal or project site. The domain leverages GitHub’s free hosting service to host malicious JavaScript payloads designed to intercept and drain cryptocurrency wallet private keys or seed phrases from unsuspecting users. While no direct brand impersonation (e.g., MetaMask, Ledger) is referenced in the dataset, the use of a GitHub subdomain and deceptive web content strongly suggests an attempt to trick users into connecting compromised wallets or downloading malicious extensions. The presence of a Let's Encrypt SSL certificate adds superficial legitimacy, but the payload behavior aligns with known crypto-draining schemes observed in underground forums. This domain resolves to IP 185.199.108.153 via GitHub’s infrastructure and was registered through GitHub, Inc. VirusTotal detection stands at 15 out of 95 security vendors, indicating partial but incomplete coverage. Google Safe Browsing has flagged this domain under the SOCIAL_ENGINEERING category, a classification often reserved for deceptive sites used in cryptocurrency scams. The site’s creation date is not provided in public records, but the active status and ongoing detection indicate recent deployment. While the registrar is GitHub itself—limiting traditional takedown avenues—the hosting provider has not yet intervened, suggesting either a delay in detection or jurisdictional complexity. As of the latest analysis, srishanthreddyv.github.io remains active and unblocked by most browsers and security tools. Immediate user action is required: users should avoid visiting the site, refrain from connecting wallets, and report the domain to their browser vendor and relevant threat intelligence platforms. GitHub should be notified via their abuse reporting system to trigger takedown. Remaining risk is assessed as HIGH due to the active drainer payload, partial detection coverage, and the site’s use of a trusted hosting platform. Users interacting with this domain risk irreversible financial loss through wallet compromise. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: GitHub, Inc. - IP: 185.199.108.153 ## Detection Status - VirusTotal: 15 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/a4b4768a-1cd7-49ff-87ef-bc9f5cb8df69 - PhishDestroy: https://phishdestroy.io/domain/srishanthreddyv.github.io/ - LLM endpoint: https://phishdestroy.io/domain/srishanthreddyv.github.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/srishanthreddyv.github.io/ Last updated: 2026-03-26