phishing site (evm drainer elevendrainer.eth)

### Malicious domains, IPs, IPFS hashes, or IPNS names

https://mainnet-citrea.com/

### Please explain why this content is malicious

Fake account @cirtea_xyz uses paid X verification (gold tick / Verified Organizations) + exact copied official bio to impersonate Citrea (@citrea_xyz, citrea.xyz).
Fake post: https://x.com/cirtea_xyz/status/2033282577776443690
Site: https://mainnet-citrea.com/
Fake “0.01 cBTC claim” incentives → drainer. Bot replies fake engagement.
If hosted on GitHub, takedown please. Screenshots attached.

![Image](https://github.com/user-attachments/assets/a9038230-2d0c-4a7b-9226-6ff1ffb65b4e)

![Image](https://github.com/user-attachments/assets/325f92b8-6ef0-42ec-b1d3-ec09d4060232)

![Image](https://github.com/user-attachments/assets/f46c578d-11d8-45ee-b293-9beca0065755)

![Image](https://github.com/user-attachments/assets/3be5d797-98c1-47d0-903e-4c02b4a12361)

### Is this a duplicate request?

- [x] I have checked the issues page and confirmed this is not a duplicate request

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

phishing site (evm drainer elevendrainer.eth) #229756

Malicious domains, IPs, IPFS hashes, or IPNS names

Please explain why this content is malicious

Is this a duplicate request?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

phishing site (evm drainer elevendrainer.eth) #229756

Description

Malicious domains, IPs, IPFS hashes, or IPNS names

Please explain why this content is malicious

Is this a duplicate request?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions