# trustcryptocard.app — SUSPICIOUS > PhishDestroy flags trustcryptocard.app as a live crypto drainer impersonating Trust Wallet. VirusTotal score 0/95, registered March 23. ## Summary PhishDestroy identifies trustcryptocard.app as an active crypto drainer phishing domain designed to steal cryptocurrency from unsuspecting users. The site masquerades as Trust Wallet’s official card portal, luring victims with promises of secure crypto-backed debit cards. Once a user connects a wallet or enters seed phrases, the drainer silently transfers tokens to attacker-controlled addresses. Security teams should treat this domain as a high-risk asset due to its live status and low detection on VirusTotal. This domain was registered through PDR Ltd. d/b/a PublicDomainRegistry.com on March 23, 2026, and resolves to IP 104.21.28.82. It currently has 0 detections out of 95 on VirusTotal and is not listed on any major blocklists, indicating it is newly operational and actively evading detection. The presence of a Let’s Encrypt SSL certificate adds a false sense of legitimacy, which threat actors commonly exploit to bypass browser warnings. The low detection rate suggests a targeted campaign likely distributed via social engineering rather than mass spam. Users who have visited trustcryptocard.app should immediately disconnect any connected wallets, revoke any permissions granted to the site, and transfer remaining funds to a clean wallet. Do not enter seed phrases or private keys on this domain. Report the domain to PhishDestroy for takedown and scan all devices used for crypto transactions for malware. Verify all crypto-related links through official Trust Wallet channels before interacting. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2026-03-23 15:15:15 - Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com - IP: 104.21.28.82 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/d6efcf4e-c076-44e0-9b47-4b636993b0ae - PhishDestroy: https://phishdestroy.io/domain/trustcryptocard.app/ - LLM endpoint: https://phishdestroy.io/domain/trustcryptocard.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/trustcryptocard.app/ Last updated: 2026-03-30