# aeave.trade — SUSPICIOUS

> PhishDestroy identifies aeave.trade as an Aave brand impersonation phishing domain. Check the full report for mitigation insights.

## Summary
PhishDestroy’s anti-phishing systems have identified aeave.trade as an active brand impersonation phishing domain targeting the Aave protocol. This domain is designed to deceive users into disclosing sensitive information or transferring cryptocurrency by mimicking Aave’s official branding and user interface. The site is classified as a malicious drainer kit, leveraging social engineering tactics to exploit trust in the Aave ecosystem. Domain registration and hosting details indicate coordinated infrastructure designed to evade detection while maximizing victim engagement.

Technical analysis reveals aeave.trade resolves to IP address 188.114.96.3, a server associated with malicious hosting providers. Registered on January 25, 2026 through Global Domain Group LLC, this domain has already been flagged by 3 out of 95 security vendors on VirusTotal as malicious. It holds a valid SSL certificate issued by Google Trust Services, which increases its credibility to unsuspecting users. Despite this legitimacy indicator, the domain has not yet been widely blocked, as confirmed by its limited presence across major threat intelligence platforms.

The domain remains active as of this report, with no evidence of takedown or remediation. Users are strongly advised to avoid interacting with aeave.trade or any associated links. Security teams should block this domain and IP at the network perimeter using DNS and firewall rules. While the immediate risk is elevated due to active hosting and SSL encryption, the long-term threat may escalate as more intelligence feeds incorporate this indicator. Immediate action is recommended to prevent credential theft or financial loss within DeFi communities.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Aave

## Domain Intelligence
- Registered: 2026-01-25 16:15:03
- Registrar: Global Domain Group LLC
- IP: 188.114.96.3

## Detection Status
- VirusTotal: 3 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/5ef909d1-d345-464f-b2b1-1f9063875c86
- PhishDestroy: https://phishdestroy.io/domain/aeave.trade/
- LLM endpoint: https://phishdestroy.io/domain/aeave.trade/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/aeave.trade/
Last updated: 2026-03-27