# cryeptomlogina.webflow.io — MALICIOUS > Cryeptomlogina.webflow.io impersonates Crypto.com and poses high risks. Avoid this domain and verify official sources to protect your assets. ## Summary PhishDestroy identifies cryeptomlogina.webflow.io as a high-risk phishing domain impersonating the well-known cryptocurrency platform Crypto.com. This brand impersonation threat is significant because it aims to deceive users into divulging sensitive information such as login credentials and wallet access details, potentially leading to financial loss and identity theft. The domain’s page title, 'Crypto.com Wallet extension - - Login - webflow - Crypto,' is designed to mimic legitimate Crypto.com branding to lure unsuspecting victims. The domain cryeptomlogina.webflow.io was registered recently on March 2, 2026, through Cloudflare, Inc., a common registrar used by both legitimate and malicious actors. It resolves to IP address 104.18.36.248 and has been flagged by 15 out of 95 security vendors on VirusTotal, indicating credible suspicion. Additionally, it appears on at least one security blocklist and holds a very low Gridinsoft trust score of 0/100. Although currently taken offline, this domain’s infrastructure and brand targeting reflect a clear intent to defraud users by exploiting Crypto.com’s reputation. Users are strongly advised to avoid visiting cryeptomlogina.webflow.io or interacting with any links associated with it. To safeguard personal and financial data, always verify URLs directly through official Crypto.com channels and use multi-factor authentication on cryptocurrency accounts. If users have already engaged with this domain, they should immediately update their passwords and monitor their accounts for unauthorized activity. Staying vigilant against phishing attempts like this is crucial in protecting digital assets. ## Threat Details - Verdict: MALICIOUS - Site status: dead (HTTP 404) - Target brand: Crypto.com - Page title: Crypto.com Wallet extension - - Login - webflow - Crypto ## Domain Intelligence - Registered: 2026-03-02 15:00:01 - Registrar: Cloudflare, Inc. - Country: US - IP: 104.18.36.248 - IP Country: US - IP City: San Francisco - IP Org: AS13335 Cloudflare, Inc. - Nameservers: NS_NOT_FOUND - SSL Issuer: Google Trust Services / WE1 ## Detection Status - VirusTotal: 15 vendors flagged Vendors: ["ADMINUSLabs", "alphaMountain.ai", "CyRadar", "ESET", "Emsisoft", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "Netcraft", "OpenPhish", "Sophos", "Trustwave", "Webroot"] - Google Safe Browsing: clean - Blocklists: 1 hits Lists: ["PhishDestroy"] ## Evidence - Screenshot: https://urlscan.io/screenshots/019caecc-2bc3-70bf-b328-6c2cb26387d1.png - Cloudflare Radar: https://radar.cloudflare.com/scan/ccdab35a-2a2b-4d78-bd59-2927d5383563 - Wayback Machine: https://web.archive.org/web/https://cryeptomlogina.webflow.io - PhishDestroy: https://phishdestroy.io/domain/cryeptomlogina.webflow.io/ - LLM endpoint: https://phishdestroy.io/domain/cryeptomlogina.webflow.io/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/cryeptomlogina.webflow.io/ Last updated: 2026-03-19