# ezvbux.com — SUSPICIOUS

> ezvbux.com poses a crypto drainer phishing threat, with VirusTotal detecting 2/95 vendors flagging it. Avoid cryptocurrency transactions on this site.

## Summary
PhishDestroy identifies ezvbux.com as an active crypto drainer posing elevated risks to unsuspecting users. This domain was flagged by only 2 of 95 VirusTotal security vendors, yet its recent registration date of May 11, 2025, through NameCheap, Inc. and association with IP 186.2.171.13 signal deceptive intent. The lack of robust detection underscores how quickly new crypto drainers emerge to exploit trust and steal digital assets.  The specific threat from ezvbux.com is credential theft targeting cryptocurrency users through deceptive web interfaces designed to drain wallets. This domain leverages a legitimate SSL certificate from Let's Encrypt to appear trustworthy, tricking visitors into connecting crypto wallets or entering seed phrases. Given its recent creation and low VirusTotal detection rate, it's likely part of a fast-moving campaign targeting crypto enthusiasts who may overlook subtle red flags.  Users who visited ezvbux.com should immediately disconnect any connected wallets, revoke permissions via blockchain explorers or wallet interfaces, and scan their devices for malware. Avoid entering any credentials or crypto-related information on this site. Report the domain to your browser's safe browsing tools and consider using hardware wallets for future transactions to minimize exposure. Always verify URLs and use trusted bookmarks for crypto platforms.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2025-05-11 20:35:54
- Registrar: NameCheap, Inc.
- IP: 186.2.171.13

## Detection Status
- VirusTotal: 2 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/79d0873b-0485-413d-899d-384d89f62ac0
- PhishDestroy: https://phishdestroy.io/domain/ezvbux.com/
- LLM endpoint: https://phishdestroy.io/domain/ezvbux.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/ezvbux.com/
Last updated: 2026-03-29