# consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app — SUSPICIOUS > PhishDestroy identifies consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app as an active crypto drainer phishing domain flagged by 3/95. ## Summary PhishDestroy identifies consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app as an active crypto drainer phishing domain posing a significant risk to cryptocurrency users. This domain mimics legitimate development or interface repositories to deceive visitors into connecting wallets or entering sensitive credentials, which are then exploited to drain funds. The threat is elevated due to the domain's recent activity and its association with crypto-related impersonation tactics. Users should avoid interacting with this domain entirely and treat any unexpected prompts or requests from similar URLs with extreme caution. This domain was flagged by 3 out of 95 security vendors on VirusTotal, indicating a moderate but concerning detection rate. It resolves to IP address 64.29.17.67 and was registered through Vercel Inc., leveraging the platform's infrastructure to appear legitimate. The domain's SSL certificate is issued by Google Trust Services, adding a false sense of security. It has been blocked by SEAL and MetaMask, and appears on 2 separate security blocklists, further validating its malicious intent. The domain's structure, incorporating terms like 'monorepo' and 'morpho,' suggests an attempt to impersonate a legitimate software development project, likely targeting developers or users in the crypto ecosystem. If you visited this domain, disconnect your wallet immediately and revoke any permissions granted through your wallet's settings or a reputable revocation tool like revoke.cash. Scan your device for malware using a trusted antivirus solution, as crypto drainers often deploy additional payloads. Report the domain to your wallet provider and relevant security teams to help prevent further incidents. Always verify URLs manually, use hardware wallets for critical transactions, and enable multi-factor authentication where possible. Stay vigilant against unsolicited messages or links, even if they appear to come from trusted sources. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: Vercel Inc. - IP: 64.29.17.67 ## Detection Status - VirusTotal: 3 vendors flagged - Google Safe Browsing: clean - Blocklists: 2 hits Lists: ["SEAL", "MetaMask"] ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/scan/f68cd756-0008-4778-906f-260b7fe74f43 - PhishDestroy: https://phishdestroy.io/domain/consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app/ - LLM endpoint: https://phishdestroy.io/domain/consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/consumer-monorepo-interface-v2-git-batteer-5e577e-morpho-addmo.vercel.app/ Last updated: 2026-03-29