# ghibli-kapibala.entry-cryptolist.app — SUSPICIOUS > ghibli-kapibala.entry-cryptolist.app is a crypto drainer phishing site flagged by PhishDestroy. VirusTotal detects 0/95 scanners flagged—verify safety before. ## Summary PhishDestroy has flagged the domain ghibli-kapibala.entry-cryptolist.app as an active crypto drainer phishing site under investigation for malicious intent. This domain is designed to deceive users into connecting cryptocurrency wallets or entering sensitive credentials, with the primary goal of draining digital assets. The site exhibits classic red flags associated with crypto drainers, including obfuscated URLs, suspicious subdomains, and a reliance on urgency or fake incentives to prompt user interaction. Given its association with the 'cryptolist' keyword, it likely impersonates legitimate cryptocurrency services or promotional platforms to lure victims. This domain resolves to the IP address 188.114.96.3, which is hosted on infrastructure known to be involved in various malicious activities. The SSL certificate, issued by Google Trust Services, lends an air of legitimacy, but this is a common tactic used by threat actors to evade browser warnings. PhishDestroy's analysis reveals that while VirusTotal currently shows 0/95 detections, this does not guarantee safety, as many crypto drainers remain undetected by antivirus engines until widespread reports emerge. The domain was created recently, and while the exact creation date is not provided, its recent appearance and dynamic nature suggest it is part of a rapidly evolving campaign. Additionally, blocklist checks indicate this domain has not yet been widely blacklisted, allowing it to remain active and accessible to unsuspecting users. If you have visited ghibli-kapibala.entry-cryptolist.app or interacted with its content, disconnect your cryptocurrency wallet immediately and revoke any permissions you may have granted to suspicious domains. Do not enter any private keys, seed phrases, or wallet passwords on this site. Use a reputable tool such as PhishDestroy to verify the legitimacy of websites before engaging, especially those related to cryptocurrency transactions or wallet connections. Monitor your wallet for unauthorized transactions and consider transferring funds to a new wallet if you suspect compromise. Always enable multi-factor authentication (MFA) on your accounts and use hardware wallets for added security when dealing with digital assets. Report this domain to PhishDestroy to help protect the community from further harm. ## Threat Details - Verdict: SUSPICIOUS - Site status: unknown (HTTP ?) ## Domain Intelligence - Registrar: REGISTRAR_NOT_FOUND - IP: 188.114.96.3 ## Detection Status - VirusTotal: 0 vendors flagged - Google Safe Browsing: clean - Blocklists: 0 hits ## Evidence - Cloudflare Radar: https://radar.cloudflare.com/domains/ghibli-kapibala.entry-cryptolist.app - PhishDestroy: https://phishdestroy.io/domain/ghibli-kapibala.entry-cryptolist.app/ - LLM endpoint: https://phishdestroy.io/domain/ghibli-kapibala.entry-cryptolist.app/llm.txt ## If You Visited This Site 1. Change any passwords you may have entered 2. Enable 2FA on all related accounts 3. Monitor your accounts for unauthorized activity 4. Report to: FBI IC3, Europol, local authorities --- Report by PhishDestroy | https://phishdestroy.io/domain/ghibli-kapibala.entry-cryptolist.app/ Last updated: 2026-04-10