# trader-pump.fun — SUSPICIOUS

> Trader-pump.fun poses a low-risk brand impersonation threat targeting Pump.fun. Stay alert and avoid interacting with this active malicious site.

## Summary
PhishDestroy has detected trader-pump.fun as a brand impersonation domain mimicking the legitimate Pump.fun platform. This site attempts to lure victims by advertising a cashback offer on rug pull losses, a tactic designed to exploit users' trust and financial concerns. Although classified as low risk, the presence of fraudulent activity targeting Pump.fun's brand integrity warrants caution.

The domain trader-pump.fun was registered recently on March 13, 2026, through NiceNIC International Group Co., Limited. It resolves to the IP address 145.79.20.143 and currently remains active. Despite only one out of 95 security vendors flagging this domain on VirusTotal, it has already appeared on three separate security blocklists, underscoring suspicious behavior. The website's page title, "Pump.fun Cashback | Get 30% Back on Rug Pull Losses," is designed to mislead users into believing in a legitimate refund program.

Users should avoid visiting trader-pump.fun or engaging with any offers presented on the site. It is advised to verify URLs carefully and rely solely on official channels when interacting with Pump.fun or similar services. Organizations and individuals are encouraged to report any suspicious activity linked to this domain and maintain updated security solutions to guard against potential phishing attempts.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 530)
- Target brand: Pump.fun
- Page title: Pump.fun Cashback | Get 30% Back on Rug Pull Losses

## Domain Intelligence
- Registered: 2026-03-13 03:07:02
- Registrar: NiceNIC International Group Co., Limited
- Country: HK
- IP: 145.79.20.143
- IP Country: FR
- IP City: Paris
- IP Org: AS47583 Hostinger International Limited
- Nameservers: artemis.dns-parking.com hermes.dns-parking.com
- SSL Issuer: none

## Detection Status
- VirusTotal: 1 vendors flagged
  Vendors: ["Seclookup"]
- Google Safe Browsing: clean
- Blocklists: 3 hits
  Lists: ["PhishDestroy", "MetaMask", "SEAL"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019ce543-3b55-725c-8c75-1000b79ad8e5.png
- PhishDestroy: https://phishdestroy.io/domain/trader-pump.fun/
- LLM endpoint: https://phishdestroy.io/domain/trader-pump.fun/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/trader-pump.fun/
Last updated: 2026-03-19