# trumpgiving.us — SUSPICIOUS

> trumpgiving.us is a crypto-draining phishing site that mimics the Trump Give foundation. 3 of 95 VirusTotal scanners already flag it; verify on PhishDestroy.

## Summary
PhishDestroy identifies trumpgiving.us as an active crypto-draining phishing site that lures visitors into connecting cryptocurrency wallets and silently drains tokens. The domain was registered on February 19, 2026 through WebNic.cc and now resolves to IP 188.114.97.3. It carries a Let’s Encrypt SSL certificate, yet 3 out of 95 security vendors already flag the domain, and it is blocked by MetaMask.  This domain mimics the legitimate Trump Give foundation in order to trick donors into approving malicious wallet connections. Once a victim clicks “Connect Wallet” or enters seed phrases, hidden scripts transfer tokens to attacker-controlled addresses. The site is already listed on one public blocklist, showing elevated risk. Its recent creation date and low VT detection ratio suggest it is still early in its campaign, making it especially dangerous for unsuspecting visitors.  If you visited trumpgiving.us, disconnect your wallet immediately, revoke any unauthorized permissions via wallet settings, and run a malware scan on your device. Do NOT enter any seed phrases or approve transactions on this domain. Report the incident to your wallet provider and verify any charity link using PhishDestroy’s lookup tool before donating.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-02-19 23:45:17
- Registrar: Web Commerce Communications Limited dba WebNic.cc
- IP: 188.114.97.3

## Detection Status
- VirusTotal: 3 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["MetaMask"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/4d3230ce-e902-49b4-932c-d3a528ae31c8
- PhishDestroy: https://phishdestroy.io/domain/trumpgiving.us/
- LLM endpoint: https://phishdestroy.io/domain/trumpgiving.us/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/trumpgiving.us/
Last updated: 2026-03-21