# eigen.sushi-com.lol — SUSPICIOUS

> PhishDestroy identifies eigen.sushi-com.lol impersonating SushiSwap to harvest credentials. Domain registered Oct 21, 2025, resolving to 172.67.210.

## Summary
eigen.sushi-com.lol is an active brand-impersonation domain targeting SushiSwap users to steal login credentials and digital assets. The domain’s naming convention mimics the legitimate SushiSwap ecosystem (eigen + sushi) to deceive visitors into believing it is an official or affiliated platform. This tactic preys on users’ trust in established DeFi protocols, where a single credential compromise can result in catastrophic financial loss. PhishDestroy assesses this as a high-risk threat due to its immediate availability, plausible impersonation, and lack of current detection signatures.  

This domain was flagged by PhishDestroy during routine threat monitoring. It resolves to IP address 172.67.210.7, a Cloudflare edge node often abused by malicious actors for anonymity and resilience. Registered through Dynadot LLC on October 21, 2025, the domain currently carries a Google Trust Services SSL certificate, which may lend false legitimacy to unsuspecting users. As of the latest scan, VirusTotal returned 0 detections out of 95 engines, indicating it remains under the radar of most automated defenses. The domain has not yet been listed on major blocklists such as PhishTank or OpenPhish, allowing it to operate with minimal interference.  

Users must treat eigen.sushi-com.lol with extreme caution. SushiSwap impersonation typically involves fake liquidity pools, fraudulent wallet connection prompts, or spoofed governance portals designed to harvest private keys or seed phrases. To mitigate risk, users should verify all domain spellings, avoid clicking links in unsolicited messages, and only interact with SushiSwap via its official URL (sushi.com) or verified social channels. Bookmarking the correct site and using hardware wallets for transaction signing can further reduce exposure. Organizations should consider blocking the domain at the DNS level and updating threat intelligence feeds to include this indicator.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)
- Target brand: SushiSwap

## Domain Intelligence
- Registered: 2025-10-21 06:25:49
- Registrar: Dynadot LLC
- IP: 172.67.210.7

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/eigen.sushi-com.lol
- PhishDestroy: https://phishdestroy.io/domain/eigen.sushi-com.lol/
- LLM endpoint: https://phishdestroy.io/domain/eigen.sushi-com.lol/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/eigen.sushi-com.lol/
Last updated: 2026-04-10