# coibassprolgon.godaddysites.com — MALICIOUS > coibassprolgon.godaddysites.com is a cryptocurrency wallet drainer posing as a legitimate site. Blocked by MetaMask and SEAL, with 15/95 VirusTotal detections. ## Summary PhishDestroy identifies coibassprolgon.godaddysites.com as an active cryptocurrency wallet drainer site operating under a fraudulent facade. The domain is specifically engineered to deceive users into connecting their crypto wallets under the guise of legitimate services, enabling unauthorized fund extraction. This threat type represents a direct financial risk to cryptocurrency holders, leveraging social engineering tactics to trick users into signing malicious transactions through wallet connection interfaces. This domain was flagged by 15 out of 95 security vendors on VirusTotal, indicating substantial malicious reputation. It is registered through GoDaddy.com, LLC and resolves to IP address 13.248.243.5. The domain was created on November 18, 2013, and is currently blocked by MetaMask and SEAL security systems. Google Safe Browsing classifies this domain under SOCIAL_ENGINEERING, confirming its use in fraudulent user interaction schemes. It has appeared on 2 active security blocklists, further validating its malicious nature. At present, the domain remains active and poses a high risk to uninformed users. Immediate action has been taken by multiple security platforms to block access, including MetaMask and SEAL, but continued vigilance is required due to the domain’s longevity and ongoing hosting on GoDaddy Sites. Users are strongly advised to avoid any interaction with coibassprolgon.godaddysites.com and to verify all cryptocurrency-related domains through official channels before connecting wallets or making transactions. Remaining risk includes potential rebranding or domain reuse under similar naming conventions, necessitating continuous monitoring and proactive user education to prevent financial losses. ## Threat Details - Verdict: MALICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registered: 2013-11-18 17:08:35 - Registrar: GoDaddy.com, LLC - IP: 13.248.243.5 ## Detection Status - VirusTotal: 15 vendors flagged - Google Safe Browsing: FLAGGED - Blocklists: 2 hits Lists: ["MetaMask", "SEAL"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/31c5c670-7204-40e2-b5dd-ec296dca6df4 - PhishDestroy: https://phishdestroy.io/domain/coibassprolgon.godaddysites.com/ - LLM endpoint: https://phishdestroy.io/domain/coibassprolgon.godaddysites.com/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/coibassprolgon.godaddysites.com/ Last updated: 2026-03-27