# trustwallet-alpha.tw — SUSPICIOUS > PhishDestroy identifies trustwallet-alpha.tw as a crypto drainer impersonating Trust Wallet. This domain, flagged by 3/95 VirusTotal vendors, resolves to 104.26. ## Summary PhishDestroy identifies trustwallet-alpha.tw as an active crypto drainer impersonating Trust Wallet, posing an elevated risk to cryptocurrency users who may unknowingly connect their wallets to this malicious domain. This threat involves a fake login portal designed to steal private keys and drain digital assets, leveraging Trust Wallet’s brand recognition to deceive victims. The domain’s active status and specific targeting of crypto users make it particularly dangerous, as attackers exploit the trust associated with legitimate wallet services to facilitate unauthorized transactions. This domain was flagged by PhishDestroy due to multiple indicators of compromise. VirusTotal analysis reveals that 3 out of 95 security vendors have flagged trustwallet-alpha.tw as malicious, indicating a low but notable detection rate. The domain is registered through WebCC Ltd., a registrar known for hosting high-risk domains, and resolves to IP address 104.26.6.249, which is associated with malicious activity. Additionally, the domain was created on March 19, 2026, suggesting a recent and opportunistic campaign. The presence of a Let’s Encrypt SSL certificate further enhances the domain’s credibility, making it more likely to deceive unsuspecting users. These technical indicators, combined with the domain’s active status and impersonation of a trusted brand, confirm its malicious intent. To mitigate the risk posed by trustwallet-alpha.tw, users should avoid interacting with the domain entirely. If a connection to this domain has already occurred, disconnect the wallet immediately and transfer remaining assets to a secure, offline wallet. Always verify the authenticity of wallet-related domains by cross-referencing official Trust Wallet sources and using PhishDestroy’s verification tools. Additionally, enable multi-factor authentication (MFA) on all crypto-related accounts and monitor transaction histories for unauthorized activity. Users should also report the domain to PhishDestroy and relevant authorities to help disrupt ongoing campaigns. By taking these precautions, users can significantly reduce the risk of falling victim to this crypto drainer. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) - Target brand: Trust Wallet ## Domain Intelligence - Registered: 2026-03-19 16:27:59 - Registrar: WebCC Ltd. - IP: 104.26.6.249 ## Detection Status - VirusTotal: 3 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/b36aab32-7b0a-43d8-8867-95bb8ec386e6 - PhishDestroy: https://phishdestroy.io/domain/trustwallet-alpha.tw/ - LLM endpoint: https://phishdestroy.io/domain/trustwallet-alpha.tw/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/trustwallet-alpha.tw/ Last updated: 2026-03-23