# gemini.03vps.cn — MALICIOUS

> gemini.03vps.cn impersonates the Gemini cryptocurrency brand, posing as a legitimate platform. Flagged by 16 of 95 VirusTotal vendors, this domain hosts a.

## Summary
PhishDestroy identifies gemini.03vps.cn as an active brand impersonation scam impersonating the Gemini cryptocurrency exchange platform. Current threat status is elevated, indicating active exploitation by threat actors to deceive users into disclosing sensitive information or transferring funds. This domain specifically targets cryptocurrency users by mimicking the official Gemini brand to facilitate fraudulent activities.

This domain was flagged by 16 of 95 VirusTotal security vendors, resolving to IP address 172.67.197.116. Registered through 广州云讯信息科技有限公司, gemini.03vps.cn exhibits high-risk indicators, including association with known malicious infrastructure. The registrar, IP, and VirusTotal detection rate collectively confirm its malicious nature and alignment with active phishing campaigns targeting financial platforms.

Due to its confirmed malicious activity and elevated risk level, PhishDestroy recommends immediate avoidance of gemini.03vps.cn. Users who encounter this domain should report it to relevant cybersecurity authorities and block associated IP addresses. Financial institutions and cryptocurrency platforms should add this domain to blocklists to prevent user exposure. Exercise heightened caution with any unsolicited communications referencing this domain or the Gemini brand.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)
- Target brand: Gemini

## Domain Intelligence
- Registrar: 广州云讯信息科技有限公司
- IP: 172.67.197.116

## Detection Status
- VirusTotal: 16 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- PhishDestroy: https://phishdestroy.io/domain/gemini.03vps.cn/
- LLM endpoint: https://phishdestroy.io/domain/gemini.03vps.cn/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gemini.03vps.cn/
Last updated: 2026-03-26