Report on Cryptocurrency Scam Involving URL us.pepeusa.online

Scam URL: us.pepeusa.online
Lost Amount: $92,940.00
Type of Scam: Fraudulent cryptocurrency transaction scheme
Receiving Addresses:0xfb6e57b19f7a82a9f9f272fd0860da32b920df6c
0xc2132d05d31c914a87c6611c10748aeb04b58e8f
0x1650987a5a3b0ce2629f4eb55f27e76b0813fbf3
0xc8881d9572bf0bf9f2e1f2e8b270c6de5fa320f4
0x3c499c542cef5e3811e1192ce70d8cc03d5c3359
0xa0b86991c6218b36c1d19d4a2e9eb0ce3606eb48
0x31135ab0772675442a690306ede8d11cd6a0cac4

If you’ve encountered issues with the website us.pepeusa.online, you’re not alone. This investigation delves into open-source findings about this domain and its activities, revealing suspicious indicators that point to fraudulent behavior. If you have additional information or evidence, please contribute to strengthen this case.

Key Findings:
The domain us.pepeusa.online appears to operate under dubious circumstances. Registered through Gname.com Pte. Ltd., it utilizes nameservers hosted by the same registrar: a.share-dns.com and b.share-dns.net. This raises initial red flags as such registrars are commonly associated with operations that value anonymity over transparency.

The IP address associated with the site is linked to Peg Technic, a hosting provider with a history of facilitating questionable operations. Hosting services are provided by RakSmart, and both companies could be subpoenaed for records. This type of layered hosting, often in jurisdictions with limited oversight, is a hallmark of fraud operations seeking to evade accountability.

The site content is predominantly in Chinese, and technical analysis shows the use of modern frameworks such as jQuery 3.6.3 and enforced SSL encryption via LetsEncrypt. While these elements suggest a professional front, they can also indicate deliberate efforts to appear legitimate. The website is optimized for mobile, targeting broader accessibility—a likely tactic to ensnare victims globally.

While examining the mail exchange (MX) records, none were found, suggesting the domain does not support email correspondence. This lack of communication infrastructure could indicate a deliberate strategy to minimize traceable interactions.

The site’s technical foundation includes an nginx server, a common choice for high-traffic operations. Despite the potential for legitimate use, the server setup further aligns with patterns observed in other fraudulent crypto-related schemes.

Call to Action:
If you’ve interacted with this site, whether through transactions or inquiries, share your experience. Details such as transaction IDs, screenshots, or email communications can be instrumental in unraveling their network. If you are conducting further OSINT or have connections to the relevant hosting or DNS providers, consider leveraging that access to trace their operations.

This case underscores the importance of vigilance in crypto dealings. Fraudsters exploit trust, and platforms like ScamCrypto.net are here to expose their schemes. Your input is vital—let’s work together to bring them to light.