# caseagora.com.br — SUSPICIOUS

> PhishDestroy warns: caseagora.com.br is a crypto drainer with 4/95 VirusTotal detections, created April 06, 2015. Verify every link before you connect.

## Summary
PhishDestroy identifies caseagora.com.br as an active crypto-draining phishing domain designed to steal cryptocurrency from unwary visitors. The site uses deceptive tactics to trick users into connecting wallets or revealing private keys, after which funds are drained without consent. Community and security-vendor reports show 4 out of 95 engines on VirusTotal currently flag this domain, indicating rising but still uneven detection. This domain resolves to IP 191.252.140.51 and holds a Let’s Encrypt SSL certificate, giving it a veneer of legitimacy that can fool casual observers.  This domain was flagged on April 06, 2015, which suggests it has been active for nearly a decade; however, its recent spike in malicious activity prompted re-evaluation. VirusTotal records show only 4 security vendors detecting the threat as of the latest scan, underscoring how quickly new phishing pages can evade broad detection while still posing real risk to visitors. The age of the domain also enables threat actors to build backlinks and trust signals over time, increasing the chance unwary users will land there via search or social engineering.  If you visited caseagora.com.br, stop any wallet connections immediately and disconnect from the site. Do not enter credentials, seed phrases, or private keys. Run a malware scan on all devices used for crypto transactions. Report the domain to PhishDestroy and your wallet provider; include the IP 191.252.140.51 for faster takedown. Moving forward, verify every URL against PhishDestroy’s blocklist before clicking and enable wallet-connect confirmations on hardware devices to add an extra layer of protection.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2015-04-06 00:00:00
- Registrar: REGISTRAR_NOT_FOUND
- IP: 191.252.140.51

## Detection Status
- VirusTotal: 4 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/f5f35315-cd90-4273-90e9-25ecfec0d838
- PhishDestroy: https://phishdestroy.io/domain/caseagora.com.br/
- LLM endpoint: https://phishdestroy.io/domain/caseagora.com.br/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/caseagora.com.br/
Last updated: 2026-03-23