# bexlora.trade — SUSPICIOUS

> bexlora.trade is an active phishing domain targeting crypto users with fake login pages. Verify safety status on PhishDestroy to stay protected.

## Summary
PhishDestroy currently categorizes bexlora.trade as an active phishing domain under investigation, specifically engaging in generic phishing schemes that often involve fake login interfaces aimed at cryptocurrency users. Although the exact brand being impersonated is not confirmed, the domain’s behavior suggests it attempts to deceive users into submitting sensitive credentials, posing a risk of crypto asset theft or other financial fraud.

Technical intelligence shows bexlora.trade was registered on January 21, 2026, through NICENIC INTERNATIONAL GROUP CO., LIMITED. It resolves to the IP address 185.158.133.1 and has an SSL certificate issued by Google Trust Services, potentially lending it an appearance of legitimacy. The domain appears on one security blocklist maintained by ScamSniffer but currently has zero detections on VirusTotal out of 95 antivirus engines scanned, indicating it has not yet been widely flagged or analyzed by major antivirus solutions.

Users should avoid interacting with bexlora.trade, especially providing any login information or personal data. It is advisable to verify any suspicious domain on PhishDestroy before engagement. Given its phishing nature, mitigation includes blocking access via DNS filters, updating endpoint protection signatures regularly, and educating users to recognize fake login pages. Reporting the domain to security platforms and maintaining vigilance against unsolicited links in communications will further reduce exposure to this threat.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-01-21 09:20:06
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 185.158.133.1

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["ScamSniffer"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/3b72957e-f6ab-4e69-8e30-222717a03d1c
- PhishDestroy: https://phishdestroy.io/domain/bexlora.trade/
- LLM endpoint: https://phishdestroy.io/domain/bexlora.trade/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/bexlora.trade/
Last updated: 2026-03-27