# whatscvpp.top — MALICIOUS

> Whatscvpp.top is a high-risk phishing domain flagged for social engineering. Avoid this site to protect your WhatsApp credentials and personal data.

## Summary
PhishDestroy identifies whatscvpp.top as a high-risk phishing domain designed to mimic WhatsApp. This poses a serious threat as it aims to steal user credentials through social engineering tactics.

The domain was registered on March 09, 2026, via Gname.com Pte. Ltd. It resolved to IP 47.82.180.14 and was flagged by Google Safe Browsing for social engineering. VirusTotal detected malicious activity from 23 out of 95 security vendors, and the domain appeared on one security blocklist before being taken offline.

Users should avoid clicking any links related to whatscvpp.top and never enter personal information on suspicious WhatsApp-themed pages. Stay vigilant and verify URLs directly through official WhatsApp channels to prevent credential theft.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: WhatsApp

## Domain Intelligence
- Registered: 2026-03-09 01:07:01
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 47.82.180.14
- IP Country: SG
- IP City: Singapore
- IP Org: AS45102 Alibaba (US) Technology Co., Ltd.
- Nameservers: ["a12.share-dns.com.", "b12.share-dns.net."]
- SSL Issuer: none

## Detection Status
- VirusTotal: 23 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CRDF", "CSIS Security Group", "CyRadar", "DNS8", "ESET", "Emsisoft", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Kaspersky", "Lionic", "Mimecast", "Netcraft", "OpenPhish", "SOCRadar", "Sophos", "Trustwave", "VIPRE", "Webroot"]
- Google Safe Browsing: FLAGGED
- Blocklists: 1 hits
  Lists: ["PhishDestroy"]

## Evidence
- Screenshot: https://i.ibb.co/DDqKTvPb/39b9cf7667ee.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/162d4300-2640-42ff-a380-9d4139a370fe
- Wayback Machine: https://web.archive.org/web/https://whatscvpp.top
- PhishDestroy: https://phishdestroy.io/domain/whatscvpp.top/
- LLM endpoint: https://phishdestroy.io/domain/whatscvpp.top/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/whatscvpp.top/
Last updated: 2026-03-19