Threat Intelligence Dashboard

July 2025 Report

Detailed threat intelligence for 700 phishing domains. Registrar abuse, drainer kits, targeted brands, and AI-generated expert assessment.

146,053Total Detected
79,237Taken Down
57%Kill Rate
92.4%VT Coverage
38,873Abuse Reports
Overview May 261,969 Apr 2615,640 Mar 2618,821 Feb 2642,102 Jan 268,930 Dec 2511,773 Nov 2512,579 Oct 258,841 Sep 257,307 Aug 253,788 Jul 25700 Jun 254
July 2025 Intelligence Report 17400%
700
297
Taken Down
385
Still Live
42.4%
Kill Rate
5625h
Avg Response
4.3
Avg VT Score

In July 2025, PhishDestroy detected 700 phishing domains, marking a 17400.0% increase from the previous month, with a takedown rate of 85.1%. Notably, Angel Drainer kits were identified on 183 domains, posing significant risks of wallet drains and seed theft. The mean registrar response time was a concerning 4981.9 hours, highlighting gaps in takedown efficiency. Despite the high volume, our operational impact remains strong with a substantial number of domains taken offline, though registrar responsiveness needs improvement.

  • NameSilo, LLC and PDR Ltd. lead in registrar abuse with 75 and 71 domains respectively, indicating a need for targeted mitigation.
  • Crypto brands remain prime targets with Generic Crypto and SushiSwap being the most attacked, suggesting a persistent focus on digital asset theft.
  • The .com TLD is the most weaponized with 304 domains, followed by .xyz with 84, indicating a preference for these TLDs in phishing campaigns.
  • The dominance of Angel Drainer kits across 183 domains suggests a prevalent threat of wallet drains and seed theft.
  • The US hosts the majority of phishing infrastructure with 561 domains, indicating a concentration of malicious activities in this region.
  • The mean detection-to-takedown time remains high at 4981.9 hours, necessitating faster registrar responses to reduce active phishing threats.
Outlook
Given the surge in phishing domains and the focus on crypto brands, defenders should prioritize monitoring for Angel Drainer kits and .com TLDs. Registrars like NameSilo, LLC and PDR Ltd. require escalation to enhance response times. Expect continued targeting of crypto sectors, necessitating heightened vigilance and rapid takedown actions.
Full Data on GitHub Browse All Domains Live Threats

Top Registrars

RegistrarDomains
Web Commerce Communications Limited 85
NameSilo, LLC 78
PDR Ltd. d/b/a PublicDomainRegistry.com 75
NameCheap, Inc. 50
NiceNIC International Group Co., Limited 43
HOSTINGER operations, UAB 42
OwnRegistrar, Inc. 36
Dynadot LLC 31

Targeted Brands

BrandDomains
across 73
Ethereum 41
binance 25
SushiSwap 20
metamask 18
Coinbase 17
facebook 15
aave 14

Top TLDs

.com304 .xyz84 .org27 .net23 .live21 .pro20 .finance16 .site15

Hosting Countries

🇺🇸 US562 🇩🇪 DE18 🇳🇱 NL17 🇷🇺 RU11 🇭🇰 HK8 🇸🇬 SG6 🇬🇧 GB6 PL5

Active Drainer Kits

Angel Drainer183 Wallet Connect Abuse11 Inferno Drainer1 Solana Drainer1

July 2025 Domains (700)

Sorted by VirusTotal detections. Click any domain for full security report.

packedtools.tools
11 VTLive
perfectminingfx.com
11 VTLive
qnt-sushi.lat
11 VTTaken DownAngel Drainer
ai-quanttrader.org
10 VTLive
airdrop-debridge.live
10 VTTaken Down
atomic-wallet.pro
10 VTLive
avax-sushi.xyz
10 VTLive
avmdistritokscod.com
10 VTLiveAngel Drainer
bitpiemi.com
10 VTLive
bobo-sushi.lat
10 VTLive
brad-live.net
10 VTLive
claims-spheron.network
10 VTLiveAngel Drainer
coinassetinvest.com
10 VT
community-ethereum.com
10 VTLiveAngel Drainer
cryptowideweb.com
10 VTLiveAngel Drainer
dapptify.com
10 VTLive
data-manual.xyz
10 VTLiveAngel Drainer
fhefaucet.com
10 VTLiveAngel Drainer
high-ada.com
10 VTLive
https-keepkey.com
10 VTLive
hyperliquidbuy.org
10 VTTaken DownAngel Drainer
laf-sushi.cfd
10 VTTaken Down
metis-sushi.vip
10 VTTaken Down
okxedex.com
10 VTTaken Down
pancakeswap.games
10 VTTaken Down
parti-sushi.xyz
10 VTLiveAngel Drainer
pepe-sushi.xyz
10 VTTaken DownAngel Drainer
pi-coring.com
10 VTLive
adelphilbanplc.com
9 VTLive
aerlifi.net
9 VTTaken Down
airdrop.moonveil.click
9 VTTaken DownAngel Drainer
bithpie.com
9 VTTaken Down
bitpieqc.com
9 VTLive
caminoverdadservices.com
9 VTTaken Down
cawa4d.org
9 VTTaken Down
coinbtcash.com
9 VTLive
coindbp.vip
9 VTTaken Down
crimsonagility.pro
9 VTTaken Down
cryptoaml-check.com
9 VTTaken Down
dashb0ard-littlepepe.com
9 VTTaken DownAngel Drainer
datadapp-manualdex.xyz
9 VTLiveAngel Drainer
fixedfloatt.com
9 VTLive
flarehodlclaim.live
9 VTLive
fuel-register.quest
9 VTLiveAngel Drainer
iconiccityb.com
9 VTLive
neto-launch.com
9 VTLive
nl-cionmrt.sbs
9 VTTaken DownAngel Drainer
noderectificationvip.com
9 VTLive
pancakswap.org
9 VTTaken Down
peerdevelopnetwork.online
9 VTLive
pi-activating.com
9 VTTaken Down
aethirclaim.online
8 VTTaken DownAngel Drainer
aixcbstake.xyz
8 VTLiveAngel Drainer
authenticate-api.xyz
8 VTLive
bitmine.top
8 VTLive
bitpiewa.com
8 VTLive
botto-sushi.xyz
8 VTLive
coinbase002.xyz
8 VTLive
crypto-flipperz.com
8 VTLive
cryptonomial.xyz
8 VTLiveAngel Drainer
« Prev 1 2 3 4 5 ... Next »

Detection Trends

Monthly domain volume, kill rate, and live threats over time.

Monthly Detected Domains

Kill Rate %

Explore More

Related intelligence pages and data feeds.

Domain Hub

146,053+ domains with security reports

Live Threats

59,687 phishing sites still online

DestroyList on GitHub

Open-source daily phishing domain feeds

About PhishDestroy

Independent anti-phishing threat intelligence