# geminiai-trading.firebaseapp.com — SUSPICIOUS

> Discover risks linked to geminiai-trading.firebaseapp.com, a suspicious site impersonating Gemini. Stay informed and protect your assets now.

## Summary
PhishDestroy has identified geminiai-trading.firebaseapp.com as a domain engaging in brand impersonation, targeting the Gemini cryptocurrency platform. This site attempts to mislead users by adopting a similar name, potentially aiming to capture sensitive credentials or conduct fraudulent activities. Given the increasing attacks on crypto services, vigilance remains critical.

Technically, the domain is hosted on Firebase and registered through Google LLC, resolving to IP address 199.36.158.100. Despite thorough analysis, VirusTotal reports zero detections across 95 security vendors, indicating no current malware flags. However, the domain's suspicious branding and association with a trusted brand warrant further scrutiny. The unique seed 5e2518 helps differentiate this investigation from others.

The domain is active and under ongoing review. PhishDestroy recommends monitoring traffic to this address and advising users to verify URLs carefully before sharing any credentials. Blocking or filtering access may prevent potential phishing attempts. Continued observation and threat intelligence gathering are essential to assess evolving risks related to this Gemini impersonation.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: alive (HTTP 404)
- Target brand: Gemini

## Domain Intelligence
- Registrar: Google LLC
- Country: US
- IP: 199.36.158.100
- Nameservers: NS_NOT_FOUND

## Detection Status
- VirusTotal: 0 vendors flagged
  Vendors: []
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Screenshot: https://urlscan.io/screenshots/019cf7fb-4c3b-72ef-8621-56e405ce2d4b.png
- Cloudflare Radar: https://radar.cloudflare.com/scan/89034ce8-d8cb-44f4-b50b-ca1b367921d8
- PhishDestroy: https://phishdestroy.io/domain/geminiai-trading.firebaseapp.com/
- LLM endpoint: https://phishdestroy.io/domain/geminiai-trading.firebaseapp.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/geminiai-trading.firebaseapp.com/
Last updated: 2026-03-19