# whalescope.pages.dev — SUSPICIOUS

> PhishDestroy identifies whalescope.pages.dev as an active crypto drainer scam impersonating crypto services.

## Summary
PhishDestroy flagged whalescope.pages.dev as a generic phishing domain under active investigation. This page is suspected to host a crypto drainer kit designed to siphon cryptocurrency from unwitting victims. No specific brand impersonation has been confirmed, but the domain structure resembles a fake login or wallet drainer common in crypto scams. The page is served through Cloudflare Pages, leveraging Google Trust Services for SSL certificates to appear legitimate.  This domain resolves to IP 172.66.44.110 and is registered through Cloudflare, Inc. VirusTotal currently shows 0/95 detections, indicating it has not yet been flagged by security vendors. No creation date is publicly available, and Google Safe Browsing (GSB) status remains unverified. The domain has not been listed on major blocklists at this time, suggesting it is a newly emerged threat with low exposure.  As of the latest update, whalescope.pages.dev remains active with a status of 'under_investigation.' PhishDestroy continues to monitor this domain for changes in behavior or infrastructure. Users are advised to avoid interacting with this domain and to verify any suspicious links using PhishDestroy's real-time detection tools. The current risk level is classified as active but low due to limited detections, though the potential for harm remains high if the domain deploys a fully operational drainer kit.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: Cloudflare, Inc.
- IP: 172.66.44.110

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/d2c4ce19-03c3-4b3f-b962-0fac4e65fdc5
- PhishDestroy: https://phishdestroy.io/domain/whalescope.pages.dev/
- LLM endpoint: https://phishdestroy.io/domain/whalescope.pages.dev/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/whalescope.pages.dev/
Last updated: 2026-03-28