# cryptopass.maxwill.group — SUSPICIOUS

> cryptopass.maxwill.group is a fake crypto wallet site posing as a phishing trap. It lures users with a Let's Encrypt SSL certificate and hosts on IP 45.137.214.

## Summary
PhishDestroy identifies cryptopass.maxwill.group as an active crypto wallet scam designed to steal cryptocurrency credentials. The domain mimics legitimate wallet services to trick users into entering private keys or seed phrases, which are then harvested by attackers.

This domain was flagged with 0/95 VirusTotal detections and operates from IP 45.137.214.40 under a Let's Encrypt SSL certificate, which attackers often use to appear legitimate. Its infrastructure suggests recent deployment, increasing the risk of unnoticed fraud.

If you visited cryptopass.maxwill.group, immediately revoke any entered credentials, transfer remaining funds to a secure wallet, and scan your devices for malware. Report the domain to your wallet provider and block it to prevent further access.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 45.137.214.40

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/7f502959-1b3b-4005-89ed-7bd2c68e418e
- PhishDestroy: https://phishdestroy.io/domain/cryptopass.maxwill.group/
- LLM endpoint: https://phishdestroy.io/domain/cryptopass.maxwill.group/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/cryptopass.maxwill.group/
Last updated: 2026-03-24