# dropbox-home-page-cloneable.webflow.io — MALICIOUS

> dropbox-home-page-cloneable.webflow.io is flagged as a high-risk phishing domain. Stay alert and avoid entering sensitive data on this site.

## Summary
PhishDestroy identifies dropbox-home-page-cloneable.webflow.io as an active high-risk phishing domain designed to mimic Dropbox's homepage. The domain is leveraged in generic phishing campaigns intended to deceive users into disclosing sensitive information such as login credentials. This type of threat exploits brand familiarity to increase the likelihood of user compromise.

This domain resolves to the IP address 172.64.151.8 and is hosted on infrastructure that is commonly used in phishing activities. According to VirusTotal analysis, 15 out of 95 security vendors have flagged this domain, and it appears on at least one security blocklist. These indicators underline the malicious intent behind the domain's setup and operation.

Currently, dropbox-home-page-cloneable.webflow.io remains active and poses a substantial risk to users. PhishDestroy strongly recommends avoiding interaction with this domain and urges users to verify URLs carefully before entering any credentials. Organizations should consider blocking this domain at the network level and educating employees about the risks associated with phishing sites masquerading as legitimate services like Dropbox.

## Threat Details
- Verdict: MALICIOUS
- Site status: dead (HTTP 0)
- Page title: Dropbox-Home-Page-Cloneable

## Domain Intelligence
- Registered: 2026-03-06 13:07:01
- Registrar: MarkMonitor, Inc.
- Country: US
- IP: 172.64.151.8
- IP Country: US
- IP City: San Francisco
- IP Org: AS13335 Cloudflare, Inc.
- Nameservers: NS_NOT_FOUND
- SSL Issuer: Google Trust Services / WE1

## Detection Status
- VirusTotal: 18 vendors flagged
  Vendors: ["ADMINUSLabs", "alphaMountain.ai", "BitDefender", "CyRadar", "DNS8", "ESET", "Emsisoft", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Gridinsoft", "Kaspersky", "Lionic", "MalwareURL", "Netcraft", "Sophos", "VIPRE", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "Phishunt"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cc31c-70aa-71a5-8442-7d24a46ec0f7.png
- Cloudflare Radar: https://radar.cloudflare.com/domains/dropbox-home-page-cloneable.webflow.io
- Wayback Machine: https://web.archive.org/web/https://dropbox-home-page-cloneable.webflow.io
- PhishDestroy: https://phishdestroy.io/domain/dropbox-home-page-cloneable.webflow.io/
- LLM endpoint: https://phishdestroy.io/domain/dropbox-home-page-cloneable.webflow.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/dropbox-home-page-cloneable.webflow.io/
Last updated: 2026-03-19