# coinbas.one — MALICIOUS

> coinbas.one is flagged for social engineering risks. Stay vigilant, avoid clicking suspicious links, and verify sources to protect your data.

## Summary
PhishDestroy identifies coinbas.one as an active phishing domain posing a medium-level threat to users. This site attempts to deceive victims by impersonating legitimate cryptocurrency services, potentially compromising sensitive information.

Registered via Gname.com Pte. Ltd. and resolving to IP 172.189.184.225, this domain was created on March 03, 2026. Google Safe Browsing flags it for social engineering, and VirusTotal detects it as malicious in several scans.

Users should avoid interacting with coinbas.one, refrain from submitting any personal or financial details, and report suspicious activity. Staying informed and cautious is vital to prevent falling victim to these deceptive tactics.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Target brand: Coinbase
- Page title: Coinbase

## Domain Intelligence
- Registered: 2026-03-03 17:07:01
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 172.189.184.225
- IP Country: FR
- IP City: Paris
- IP Org: AS8075 Microsoft Corporation
- Nameservers: a.share-dns.com a3.share-dns.com b.share-dns.net b3.share-dns.net
- SSL Issuer: none

## Detection Status
- VirusTotal: 19 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "alphaMountain.ai", "BitDefender", "CRDF", "CyRadar", "DNS8", "ESET", "Fortinet", "G-Data", "Google Safebrowsing", "Gridinsoft", "Kaspersky", "Lionic", "OpenPhish", "Seclookup", "SOCRadar", "Sophos", "VIPRE"]
- Google Safe Browsing: FLAGGED
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://i.ibb.co/j01bCfw/63f9f7babf92.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/2f0f874e-7f5b-46fe-b371-48191abb507b
- PhishDestroy: https://phishdestroy.io/domain/coinbas.one/
- LLM endpoint: https://phishdestroy.io/domain/coinbas.one/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/coinbas.one/
Last updated: 2026-03-19