# coeinsquaarrelogin.webflow.io — MALICIOUS

> coeinsquaarrelogin.webflow.io hosts a Microsoft credential phishing page flagged by 8 of 95 VirusTotal vendors. Analyze and block this threat now.

## Summary
PhishDestroy identifies coeinsquaarrelogin.webflow.io as an active credential phishing domain impersonating Microsoft login portals.

This domain was flagged by 8 of 95 VirusTotal security vendors, operates under Google Trust Services SSL certification, and resolves to IP 172.64.151.8. While specific creation details remain unverified, the domain’s infrastructure shows consistent red flags across multiple detection engines.

Given its elevated risk status and confirmed phishing operations, immediate action is required. Security teams should block coeinsquaarrelogin.webflow.io at the network perimeter and inspect endpoints for unauthorized credential submissions. Users should avoid interacting with this domain and report any suspicious login prompts.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 172.64.151.8

## Detection Status
- VirusTotal: 8 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/coeinsquaarrelogin.webflow.io
- PhishDestroy: https://phishdestroy.io/domain/coeinsquaarrelogin.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/coeinsquaarrelogin.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/coeinsquaarrelogin.webflow.io/
Last updated: 2026-04-02