Threat Intelligence Dashboard

July 2025 Report

Detailed threat intelligence for 700 phishing domains. Registrar abuse, drainer kits, targeted brands, and AI-generated expert assessment.

146,053Total Detected
79,237Taken Down
57%Kill Rate
92.4%VT Coverage
38,873Abuse Reports
Overview May 261,969 Apr 2615,640 Mar 2618,821 Feb 2642,102 Jan 268,930 Dec 2511,773 Nov 2512,579 Oct 258,841 Sep 257,307 Aug 253,788 Jul 25700 Jun 254
July 2025 Intelligence Report 17400%
700
297
Taken Down
385
Still Live
42.4%
Kill Rate
5625h
Avg Response
4.3
Avg VT Score

In July 2025, PhishDestroy detected 700 phishing domains, marking a 17400.0% increase from the previous month, with a takedown rate of 85.1%. Notably, Angel Drainer kits were identified on 183 domains, posing significant risks of wallet drains and seed theft. The mean registrar response time was a concerning 4981.9 hours, highlighting gaps in takedown efficiency. Despite the high volume, our operational impact remains strong with a substantial number of domains taken offline, though registrar responsiveness needs improvement.

  • NameSilo, LLC and PDR Ltd. lead in registrar abuse with 75 and 71 domains respectively, indicating a need for targeted mitigation.
  • Crypto brands remain prime targets with Generic Crypto and SushiSwap being the most attacked, suggesting a persistent focus on digital asset theft.
  • The .com TLD is the most weaponized with 304 domains, followed by .xyz with 84, indicating a preference for these TLDs in phishing campaigns.
  • The dominance of Angel Drainer kits across 183 domains suggests a prevalent threat of wallet drains and seed theft.
  • The US hosts the majority of phishing infrastructure with 561 domains, indicating a concentration of malicious activities in this region.
  • The mean detection-to-takedown time remains high at 4981.9 hours, necessitating faster registrar responses to reduce active phishing threats.
Outlook
Given the surge in phishing domains and the focus on crypto brands, defenders should prioritize monitoring for Angel Drainer kits and .com TLDs. Registrars like NameSilo, LLC and PDR Ltd. require escalation to enhance response times. Expect continued targeting of crypto sectors, necessitating heightened vigilance and rapid takedown actions.
Full Data on GitHub Browse All Domains Live Threats

Top Registrars

RegistrarDomains
Web Commerce Communications Limited 85
NameSilo, LLC 78
PDR Ltd. d/b/a PublicDomainRegistry.com 75
NameCheap, Inc. 50
NiceNIC International Group Co., Limited 43
HOSTINGER operations, UAB 42
OwnRegistrar, Inc. 36
Dynadot LLC 31

Targeted Brands

BrandDomains
across 73
Ethereum 41
binance 25
SushiSwap 20
metamask 18
Coinbase 17
facebook 15
aave 14

Top TLDs

.com304 .xyz84 .org27 .net23 .live21 .pro20 .finance16 .site15

Hosting Countries

🇺🇸 US562 🇩🇪 DE18 🇳🇱 NL17 🇷🇺 RU11 🇭🇰 HK8 🇸🇬 SG6 🇬🇧 GB6 PL5

Active Drainer Kits

Angel Drainer183 Wallet Connect Abuse11 Inferno Drainer1 Solana Drainer1

July 2025 Domains (700)

Sorted by VirusTotal detections. Click any domain for full security report.

pi-xchange.com
6 VTTaken Down
pumpswaps.fun
6 VTTaken Down
qfsglobalz.com
6 VTTaken Down
30303033.xyz
5 VTTaken Down
5eplay-accept.xyz
5 VTLive
aevo-sushi.cfd
5 VTTaken DownAngel Drainer
airdrop-delabs.xyz
5 VTTaken Down
aletheacapro.com
5 VTTaken Down
bitminepool.xyz
5 VTLiveAngel Drainer
blockdagwork.net
5 VTLiveWallet Connect Abuse
bnb100k-register.network
5 VTLive
bookmaker-drop.xyz
5 VTLiveAngel Drainer
btcpepe.lol
5 VTLiveAngel Drainer
bybitcard.com
5 VT
bybitgum.org
5 VTTaken Down
claims-caldera.foundation
5 VTLiveAngel Drainer
cobydex.com
5 VTTaken Down
collab-shard-land.com
5 VTTaken Down
collabs-auth.xyz
5 VTTaken Down
coresky.cyou
5 VTLiveAngel Drainer
corkclaim.cloud
5 VTLive
crypweb3networks.org
5 VTTaken Down
dapp-resolver.xyz
5 VTLiveAngel Drainer
deepbook-ai.com
5 VTTaken Down
fuelconnects.net
5 VTLiveAngel Drainer
grt-sushi.cfd
5 VTTaken DownAngel Drainer
https-bybit.com
5 VTTaken Down
htxexchange.live
5 VTLive
naarisprotocol.com
5 VTTaken DownAngel Drainer
official-mar.com
5 VT
opensea-welcome.xyz
5 VTTaken Down
p2pmainnet.com
5 VTTaken Down
pay-seller.com
5 VTLive
peudlle.finance
5 VTLiveAngel Drainer
phantomfinanceinvestment.world
5 VTTaken Down
pibased.com
5 VTTaken Down
pumpclaim.xyz
5 VTTaken Down
pumppfunsol.net
5 VTTaken Down
qfsledgers.com
5 VTTaken Down
qubetlcsreward.xyz
5 VTLiveAngel Drainer
30eth.com
4 VTTaken DownAngel Drainer
aavegotchimigrate.com
4 VTLive
ai-eva.xyz
4 VTLiveAngel Drainer
airdropsonics.live
4 VTTaken Down
asterdexi.com
4 VTLive
bitget-walletsecurity.com
4 VTLiveAngel Drainer
byreal-register.network
4 VTTaken DownAngel Drainer
byreal.world
4 VTTaken DownAngel Drainer
catecoinpool.xyz
4 VTTaken Down
cbybit.com
4 VTTaken Down
claims-eclipse.xyz
4 VTLiveAngel Drainer
coinanex.com
4 VTLive
coinizex.com
4 VTLive
collect-xrp.com
4 VTTaken Down
cryptend.com
4 VTLive
dappserver.icu
4 VTLiveAngel Drainer
fdn-plasma.to
4 VTLiveAngel Drainer
fintrustinvestment.com
4 VTLive
fragmetric.world
4 VTLive
gpeng.world
4 VTLiveAngel Drainer
« Prev 1 2 3 4 5 6 7 ... Next »

Detection Trends

Monthly domain volume, kill rate, and live threats over time.

Monthly Detected Domains

Kill Rate %

Explore More

Related intelligence pages and data feeds.

Domain Hub

146,053+ domains with security reports

Live Threats

59,687 phishing sites still online

DestroyList on GitHub

Open-source daily phishing domain feeds

About PhishDestroy

Independent anti-phishing threat intelligence