# cloneofair.vercel.app — SUSPICIOUS > cloneofair.vercel.app is a fake login site targeting crypto users. Detected on 2 blocklists. Verify its threat status on PhishDestroy now. ## Summary cloneofair.vercel.app poses a significant threat as a fake login page designed to drain cryptocurrency wallets. By impersonating legitimate crypto services, it attempts to steal private keys or login credentials, leading to potential financial losses for victims. This specific threat targets users involved in crypto transactions, exploiting trust to harvest sensitive data. Technical analysis reveals that cloneofair.vercel.app is currently under active investigation. It is registered through Vercel Inc. and resolves to IP address 216.198.79.131. The domain holds a valid SSL certificate issued by Google Trust Services, which may lend it an appearance of legitimacy. Despite this, it is listed on 2 security blocklists, including OpenPhish and OISD, highlighting its malicious intent. VirusTotal analysis shows 0 detections out of 95 scanners, indicating it may be a newly active or cleverly disguised threat. Users who have visited cloneofair.vercel.app should immediately cease any interaction with the site and avoid entering any credentials or private keys. It is crucial to verify the authenticity of crypto-related websites through trusted sources like PhishDestroy. If users suspect their information has been compromised, they should change passwords, enable two-factor authentication on their accounts, and monitor transactions closely. Reporting the domain to security services can help protect others from falling victim to this crypto drainer scam. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Vercel Inc. - IP: 216.198.79.131 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 2 hits Lists: ["OpenPhish", "OISD"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/cloneofair.vercel.app - PhishDestroy: https://phishdestroy.io/domain/cloneofair.vercel.app/ - LLM endpoint: https://phishdestroy.io/domain/cloneofair.vercel.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/cloneofair.vercel.app/ Last updated: 2026-04-04