# eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com — MALICIOUS

> eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com is a crypto drainer domain with 13/95 VirusTotal flags. Block this URL to prevent wallet theft.

## Summary
PhishDestroy identifies eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com as an active crypto drainer domain designed to steal cryptocurrency wallet credentials and initiate unauthorized transfers. The site impersonates legitimate financial services to deceive users into connecting their wallets, leveraging social engineering tactics to prompt dangerous transaction confirmations. No specific drainer kit fingerprint (e.g., Inferno Drainer, Angel Drainer) is publicly confirmed, but the behavioral pattern aligns with known crypto-phishing toolkits that monitor clipboard activity and alter wallet addresses.  

This domain resolves to IP 74.115.51.8 and was registered on March 29, 2006 through MarkMonitor Inc., a domain registrar often used by enterprise brands, which adds a misleading layer of legitimacy. VirusTotal analysis shows 13 out of 95 security vendors flagging the domain as malicious, indicating moderate but significant threat detection. The domain holds a valid Let’s Encrypt SSL certificate, further enhancing its deceptive appearance. Google Safe Browsing (GSB) status and blocklist counts are not specified in this data, but the elevated VT score suggests inclusion in several threat intelligence feeds.  

As of current analysis, eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com remains active and poses an elevated risk to cryptocurrency users. Immediate defensive actions include blocking the domain at firewall and DNS levels, monitoring network traffic for outbound connections to 74.115.51.8, and issuing user advisories to avoid interacting with unsolicited links. While the domain’s age may suggest benign use, the convergence of high VT detection, crypto-drainer behavior, and active status elevates the risk profile. Users should treat any unsolicited requests to connect wallets via this domain as highly suspicious and report related incidents to their security teams immediately.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2006-03-29 00:25:07
- Registrar: MarkMonitor Inc.
- IP: 74.115.51.8

## Detection Status
- VirusTotal: 13 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com
- PhishDestroy: https://phishdestroy.io/domain/eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com/
- LLM endpoint: https://phishdestroy.io/domain/eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/eastlink-j636bjb47bb8bn4b8vv8b5858v8.weebly.com/
Last updated: 2026-04-09