rewards-gacha.com
Category: Phishing, Spam, Newly Registered
To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.
Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.
Description of rewards-gacha.com
rewards-gacha.com appears to present itself as an "Official Airdrop Portal" for a project called $GACHA. Based on the page title, on-page text, and screenshot, the site is designed to encourage visitors to connect a cryptocurrency wallet, verify eligibility, and claim a token airdrop. The layout includes sections such as "How It Works," "Claim," "Timeline," and "FAQ," which is a common structure for promotional crypto-token landing pages.
The domain name combines "rewards" and "gacha," suggesting a rewards or token-distribution theme tied to a gaming or collectible-style brand identity. However, the available scan data does not clearly identify a verified operating company, legal entity, or established organization behind the site. The domain is very newly registered, and based on the visible content, it appears to function primarily as a single-purpose cryptocurrency claim page rather than a broader, established web platform.
Safety Assessment for rewards-gacha.com
This website shows multiple risk indicators at the time of this scan. It was flagged by 13 out of 91 security engines, with several classifying it as phishing, malware-related, spam-related, or fraudulent. Multiple web-classification providers also categorized the domain as phishing, spam, or newly registered. In addition, the page content itself appears to center on a cryptocurrency airdrop and prominently asks users to connect a wallet, which is a pattern commonly associated with wallet-draining or credential-harvesting campaigns when the operator is not independently verified.
The domain is only 12 days old, has no established traffic ranking, and the malware scan reported one suspicious JavaScript file, although that file was identified only with a generic heuristic label rather than a named malware family. Broader blacklist and threat-database checks were clean at the time of this scan, which slightly reduces certainty, but that does not outweigh the combination of multi-engine phishing detections, very recent registration, and the high-risk wallet-connection theme shown on the page.
Based on these findings, this website may pose potential risks to visitors.
Technical Description
The site uses a valid SSL/TLS certificate issued by a mainstream certificate authority, and it is served through Cloudflare infrastructure with hosting and reverse-proxy services associated with Cloudflare. The server IP resolves to 188.114.96.0 with reported geolocation in Toronto, Canada. Nameservers also point to Cloudflare, indicating the site is using that provider for DNS and edge delivery.
From a security-configuration perspective, the certificate presence means traffic may be encrypted in transit, but that should not be treated as evidence of legitimacy. DNSSEC appears to be unsigned, and the domain is extremely new. The scan also noted a suspicious JavaScript file by heuristic analysis, which may warrant caution even though no named malware family was identified.
Share your experience with this website. Was it safe? Did you encounter any issues?