# binanceaff.com — MALICIOUS

> binanceaff.com poses a high threat by impersonating Binance. Stay alert and avoid this domain to protect your crypto assets. Check its safety status now.

## Summary
PhishDestroy identifies binanceaff.com as a high-risk domain engaged in brand impersonation targeting Binance. The domain’s primary threat stems from its attempt to mimic the reputable cryptocurrency exchange brand, which can deceive users into divulging sensitive information or falling victim to fraudulent schemes.

Supporting evidence includes its presence on two security blocklists and detection in one AlienVault OTX threat intelligence pulse, indicating ongoing malicious activity. VirusTotal analysis reveals that 15 out of 95 security vendors flag this domain as suspicious or malicious. The domain was registered recently on February 21, 2026, and currently resolves to IP address 172.236.117.221. The identified page title is a generic “Parking Page,” which may suggest it is either under preparation for a phishing campaign or used as a transient landing page for redirecting victims.

To mitigate risk, users are strongly advised to avoid interacting with binanceaff.com and report any suspicious communications referencing this domain. Security teams should continue monitoring its infrastructure due to its active status and potential for evolving phishing attacks. PhishDestroy recommends verifying official Binance URLs directly through trusted sources to prevent compromise from this high-risk impersonation threat.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Target brand: Binance
- Page title: Parking Page

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 172.236.117.221
- SSL Issuer: localhost

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["Criminal IP", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Kaspersky", "Lionic", "Seclookup", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "ScamSniffer"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019a0ba7-e051-77fb-9fb2-cc9901c1defb.png
- PhishDestroy: https://phishdestroy.io/domain/binanceaff.com/
- LLM endpoint: https://phishdestroy.io/domain/binanceaff.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/binanceaff.com/
Last updated: 2026-03-19