# ellipaldesktop.store — SUSPICIOUS

> EllipalDesktop.store is linked to an active phishing campaign. Investigate risks and infrastructure details with PhishDestroy’s latest findings.

## Summary
PhishDestroy identifies ellipaldesktop.store as an active phishing domain engaged in deceptive practices targeting unsuspecting users. The domain is currently classified under a generic phishing threat type and remains under investigation due to suspicious characteristics and its potential for credential theft or financial fraud. The campaign appears to be hastily deployed, aiming to exploit trust in legitimate brands by mimicking desktop wallet services.

Technical analysis reveals ellipaldesktop.store resolves to the IP address 216.150.1.1. Performance metrics indicate a low PageSpeed score of 38 out of 100, consistent with rapidly assembled phishing sites designed to evade detection temporarily. VirusTotal scans show zero detections among 95 security vendors, suggesting the domain has not yet been flagged by major threat intelligence platforms. This lack of detection underscores the importance of proactive monitoring and caution when interacting with this domain.

At present, ellipaldesktop.store remains active and under close scrutiny. Users and security teams are advised to exercise vigilance by avoiding any engagement with the domain and to report suspicious activity. Organizations should consider implementing domain and IP reputation checks in their security controls to mitigate exposure. PhishDestroy continues to monitor developments related to this domain to provide timely updates and actionable intelligence.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 200)
- Page title: Ellipal Desktop Wallet - Secure Air-Gapped Crypto Wallet for XRP, XDC, XLM

## Domain Intelligence
- Registrar: REGISTRAR_NOT_FOUND
- IP: 216.150.1.1
- Nameservers: chuck.ns.cloudflare.com jessica.ns.cloudflare.com

## Detection Status
- VirusTotal: 3 vendors flagged
  Vendors: []
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019d0195-e207-75f0-b869-7f4a539e6a22.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/599401d4-49b9-4cc4-b12d-e8486630c481
- PhishDestroy: https://phishdestroy.io/domain/ellipaldesktop.store/
- LLM endpoint: https://phishdestroy.io/domain/ellipaldesktop.store/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ellipaldesktop.store/
Last updated: 2026-03-19