Threat Intelligence Dashboard

August 2025 Report

Detailed threat intelligence for 3,788 phishing domains. Registrar abuse, drainer kits, targeted brands, and AI-generated expert assessment.

147,432Total Detected
96,489Taken Down
68.8%Kill Rate
92.5%VT Coverage
39,312Abuse Reports
Overview May 262,806 Apr 2615,640 Mar 2618,819 Feb 2642,100 Jan 268,930 Dec 2511,773 Nov 2512,579 Oct 258,841 Sep 257,307 Aug 253,788 Jul 25700 Jun 254
August 2025 Intelligence Report 441.1%
3,788
2,603
Taken Down
1,097
Still Live
68.7%
Kill Rate
5047h
Avg Response
4.3
Avg VT Score

August 2025 saw a dramatic surge in phishing domains with 3,788 detected, marking a 441.1% increase from the previous month. The takedown rate stood at 67.6%, indicating significant operational success, though the mean registrar response time remains critically high at 4426.9 hours. Notably, Kraken and Ledger were heavily targeted, reflecting a strategic focus on cryptocurrency brands. The prevalence of the Angel Drainer kit, implicated in 220 cases, underscores a persistent threat of wallet draining for victims.

  • N/A remains the top abuse registrar with 458 domains, followed by NameSilo, LLC with 224 domains.
  • Targeting of Kraken and Ledger suggests a continued emphasis on cryptocurrency rather than traditional banking.
  • The .com TLD was the most weaponized with 1,828 instances, dwarfing other TLDs like .xyz and .life.
  • The Angel Drainer kit led the pack, posing a significant risk of wallet draining for cryptocurrency users.
  • The majority of phishing infrastructure is hosted in the US with 2,524 domains, indicating a concentration that defenders should prioritize.
  • Despite a takedown rate of 67.6%, the mean registrar response time of 4426.9 hours highlights a critical delay in mitigation efforts.
Outlook
Looking ahead to September 2025, defenders should anticipate continued targeting of cryptocurrency brands, with potential shifts towards new TLDs as attackers diversify. Registrars like N/A and NameSilo, LLC require escalated monitoring due to their high abuse concentrations. Vigilance against the Angel Drainer kit remains crucial to protect users from wallet draining threats.
Full Data on GitHub Browse All Domains Live Threats

Top Registrars

RegistrarDomains
Web Commerce Communications Limited 277
NameSilo, LLC 245
NiceNIC International Group Co., Limited 204
Dynadot LLC 189
NameCheap, Inc. 183
OwnRegistrar, Inc. 168
URL Solutions, Inc. 159
Cosmotown, Inc. 151

Targeted Brands

BrandDomains
across 450
Kraken 167
Google 159
Ethereum 148
Ledger 139
binance 126
Base 98
aave 70

Top TLDs

.com1,828 .xyz177 .life165 .app153 .org143 .top133 .live109 .net102

Hosting Countries

🇺🇸 US2,619 🇩🇪 DE278 🇷🇺 RU193 🇳🇱 NL157 🇨🇭 CH101 AE89 🇭🇰 HK56 🇺🇦 UA38

Active Drainer Kits

Angel Drainer220 Wallet Connect Abuse95 Solana Drainer31 Ice Phishing7 Inferno Drainer1

August 2025 Domains (3,788)

Sorted by VirusTotal detections. Click any domain for full security report.

moneytreestaking.xyz
11 VTTaken Down
myqfs.quantumflowsystems.com
11 VTTaken Down
nakamigos.art
11 VTLive
net-paycore.com
11 VTLive
nobletrust-bk.cc
11 VTLive
novastradexpro.com
11 VTTaken Down
nuviab.com
11 VTTaken Down
onweb3.org
11 VTLiveAngel Drainer
optima-fundex.com
11 VTTaken Down
pancakeswap.vip
11 VTWallet Connect Abuse
pancakeswapdefi.com
11 VTTaken DownSolana Drainer
pancckeswap.finance
11 VTTaken Down
pudgypenguin.games
11 VTTaken DownAngel Drainer
quanticfin.com.smeeconomic.com.ng
11 VTLive
quantumflowsystems.com
11 VTLive
rabby-wallet.com
11 VTTaken Down
rabdy-app.com
11 VTLive
realoum.netlify.app
11 VTTaken Down
spamer247.github.io
11 VTTaken Down
stakejim.com
11 VTLive
star-koala-hcy9.squarespace.com
11 VTTaken Down
steamcornmunlty.ru
11 VTLive
telegrameem.com
11 VTTaken Down
telegramgke.com
11 VTTaken Down
transactsureauthoritys.world
11 VTTaken Down
trump-house.com
11 VTTaken Down
trustwalletapp.app
11 VTTaken Down
trustwalletinvestment.com
11 VTTaken Down
ttzqiv.top
11 VTTaken DownWallet Connect Abuse
twitch-rust.com
11 VTTaken Down
txsamm-coin.top
11 VTLive
vipbase.vip
11 VTTaken Down
voyagexchange.com
11 VTTaken Down
vudabo.com
11 VTLive
vzj862.it
11 VTLive
welcome.ledgerr.us
11 VTTaken Down
wlficheckeligibily.xyz
11 VTTaken DownAngel Drainer
worldliberlyfinancial.com
11 VTTaken Down
worldquantumgloballedger.com
11 VTTaken Down
www-hyperliquid.xyz
11 VTLive
www.firstguaranteebank.xyz.inversionenbinance.xyz
11 VTLive
www.lonqrewards.live
11 VTTaken DownAngel Drainer
www.projectretrac.com
11 VTTaken Down
xverse-wallet.com
11 VTLive
01929182891.skillsoutfit.com
10 VTLive
acemarketplus.com
10 VTTaken Down
aethiredge.org
10 VTTaken Down
aldalealt.com
10 VTTaken Down
algonestcapital.com
10 VTLive
alliancelegacytrade.com
10 VTTaken Down
alpha-stock.org
10 VTLive
amazon.ses-iam.com
10 VTTaken Down
app-moonwell.com
10 VTTaken Down
app.blockswap.live
10 VTTaken Down
automated-trading.com.tr
10 VTLive
bafybeicrx6mxjdmgvh7372dgpwudwaunxrrcmmzyotodztwlzppzgiu5xm.ipfs.dweb.link
10 VTTaken Down
bafybeids32ox432igs5e4nk6fc6juvvuj4tdossnwegpsq7sefoipipwve.ipfs.dweb.link
10 VTTaken Down
bafybeieupax7fljy3xxi5l3ss6wq7wuohq3p2xfb3g756udlmxoslgxjpy.ipfs.dweb.link
10 VTTaken Down
bafybeigdc66io3yev7awofrteoyay6ghsx2jzqebhsim4sza26bvwm7ytq.ipfs.dweb.link
10 VTTaken Down
bankomot.cc
10 VTTaken Down
« Prev ... 5 6 7 8 9 10 11 ... Next »

Detection Trends

Monthly domain volume, kill rate, and live threats over time.

Monthly Detected Domains

Kill Rate %

Explore More

Related intelligence pages and data feeds.

Domain Hub

147,432+ domains with security reports

Live Threats

43,686 phishing sites still online

DestroyList on GitHub

Open-source daily phishing domain feeds

About PhishDestroy

Independent anti-phishing threat intelligence