# coinex.global — MALICIOUS

> coinex.global is flagged as a crypto drainer impersonating legitimate exchanges. VirusTotal shows 5/95 security vendors detecting this threat.

## Summary
PhishDestroy identifies coinex.global as an active crypto drainer domain posing significant risk to cryptocurrency holders. This fraudulent site mimics CoinEx Exchange branding and infrastructure to trick users into connecting wallets or entering credentials, enabling direct fund theft via malicious smart contract interactions. Unlike traditional phishing pages that harvest login details, crypto drainers actively drain wallets upon connection by deploying unauthorized token approvals and transfer functions.  This domain was flagged by multiple security systems including CryptoFirewall and MetaMask, and appears on two established blocklists. VirusTotal analysis shows 5 out of 95 security vendors detected malicious activity as of current intelligence. Domain registration details indicate active deployment with a Google Trust Services SSL certificate, suggesting an attempt to appear legitimate. The site leverages the trusted Coinex brand to bypass user skepticism, making it particularly dangerous for users searching for exchange services.  If you visited coinex.global, disconnect your wallet immediately and check for unauthorized transactions or token approvals using blockchain explorers like etherscan.io. Revoke suspicious permissions through platforms such as revoke.cash. Do not enter any credentials or connect wallets to unknown sites. Report any fraudulent transactions to your wallet provider and relevant authorities. For safer alternatives, always verify exchange URLs through official channels and use bookmarks for regular access.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence

## Detection Status
- VirusTotal: 5 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["CryptoFirewall", "MetaMask"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/21199f6b-8d50-4fb5-a73f-b182378372f6
- PhishDestroy: https://phishdestroy.io/domain/coinex.global/
- LLM endpoint: https://phishdestroy.io/domain/coinex.global/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/coinex.global/
Last updated: 2026-03-22