# uwegamb.cc — MALICIOUS

> uwegamb.cc poses as a credential theft and crypto drainer posing as a gambling site. VirusTotal flags 6/95 vendors. Avoid interacting with this domain.

## Summary
PhishDestroy identifies uwegamb.cc as an active credential theft and crypto drainer domain designed to mimic legitimate gambling platforms like Uwe Gamb. This domain was flagged by 6 out of 95 VirusTotal security vendors, indicating elevated risk of data interception and cryptocurrency theft. The domain resolves to IP 172.67.157.197 and uses a Let's Encrypt SSL certificate, which attackers commonly exploit to appear trustworthy. Registered on March 24, 2026 through NICENIC INTERNATIONAL GROUP CO., LIMITED, uwegamb.cc is a newly created domain with a high likelihood of malicious intent.

Technical indicators reveal this domain operates as a gateway for credential harvesting and automated crypto drainer scripts. Criminals often deploy such sites to capture login details or drain digital wallets during transactions. The combination of a recent domain registration, low blocklist count (6/95), and use of a reputable SSL provider illustrates a modern phishing tactic: short-lived domains leveraging legitimate-looking certificates to bypass detection. Users accessing this site risk having their credentials stolen or crypto assets drained without warning.

If you visited uwegamb.cc, immediately disconnect from the site and scan your device using updated antivirus software. Change passwords for any accounts exposed during the visit, especially those related to gambling or financial platforms. Enable two-factor authentication on all critical accounts and monitor connected wallets for unauthorized transactions. Report the domain to your cybersecurity team or platform provider using the VirusTotal link or local authorities if financial loss occurs. Avoid future access—this domain is confirmed malicious and actively monitored by security researchers.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-03-24 08:49:50
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 172.67.157.197

## Detection Status
- VirusTotal: 6 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/650a8c6e-1826-4631-8888-9abe6316a9c6
- PhishDestroy: https://phishdestroy.io/domain/uwegamb.cc/
- LLM endpoint: https://phishdestroy.io/domain/uwegamb.cc/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/uwegamb.cc/
Last updated: 2026-04-13