# coinomii.icu — SUSPICIOUS

> coinomii.icu is under investigation for phishing activity. Learn what we know and how to stay protected from potential scams involving this domain.

## Summary
PhishDestroy identifies coinomii.icu as a domain under active investigation for generic phishing threats. Although no direct malware detections have been reported by VirusTotal or other major security vendors, the domain’s suspicious characteristics and appearance on multiple security blocklists warrant caution. Phishing remains a critical threat as it aims to deceive users into surrendering sensitive information, potentially leading to financial loss or identity theft.

The domain coinomii.icu was registered recently on March 4, 2026, through Gname.com Pte. Ltd., a registrar sometimes associated with less stringent verification processes. It resolves to the IP address 104.21.50.82, which is shared by other suspicious domains. Despite the lack of malware flags, the presence on two separate blocklists indicates that security researchers have identified potentially harmful activity or associations. This combination of factors suggests the domain could be part of a broader phishing infrastructure designed to exploit user trust.

Users are advised to exercise heightened vigilance when encountering coinomii.icu or related links, especially unsolicited messages or emails prompting credential entry or financial transactions. Avoid providing personal or payment information on this domain until further investigations clarify its intent. Employ multi-factor authentication and regularly update security software to mitigate risks. Reporting suspicious activity related to coinomii.icu to your IT department or security provider can help prevent phishing attacks from succeeding.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: dead (HTTP 403)
- Page title: Coinomi

## Domain Intelligence
- Registered: 2026-03-04 08:59:13
- Registrar: Gname.com Pte. Ltd.
- Country: SG
- IP: 104.21.50.82
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: syeef.ns.cloudflare.com tess.ns.cloudflare.com
- SSL Issuer: Let's Encrypt / E7

## Detection Status
- VirusTotal: 4 vendors flagged
  Vendors: ["ChainPatrol", "Forcepoint ThreatSeeker", "SOCRadar"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://i.ibb.co/sdrbHpQV/8f5db63744eb.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/503df051-9644-4eb6-828d-d377aec2c20a
- Wayback Machine: https://web.archive.org/web/https://phishdestroy.io/domain/coinomii.icu/
- PhishDestroy: https://phishdestroy.io/domain/coinomii.icu/
- LLM endpoint: https://phishdestroy.io/domain/coinomii.icu/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/coinomii.icu/
Last updated: 2026-03-19