# gmx.stakingsrewards.club — MALICIOUS

> gmx.stakingsrewards.club is an active phishing domain flagged by multiple blocklists. Stay alert and avoid interacting with this site.

## Summary
PhishDestroy has identified gmx.stakingsrewards.club as a high-risk generic phishing domain. The domain, created recently on February 21, 2026, impersonates a legitimate service with a misleading page title "Google" to lure victims. It is currently classified under generic phishing threats due to its deceptive nature and intent to capture sensitive user information.

Technical investigation reveals that the domain resolves to the IP address 142.250.80.36, which overlaps with legitimate infrastructure, complicating straightforward blocking. Despite this, the domain is flagged on two distinct security blocklists and is detected by 15 out of 95 VirusTotal security vendors, confirming its malicious reputation. These indicators, combined with its recent creation and suspicious naming convention, underscore its threat potential.

At present, gmx.stakingsrewards.club remains active, continuing to pose a danger to users. Security teams and users are advised to exercise caution and block access to this domain to prevent credential theft or other phishing-related attacks. PhishDestroy continues to monitor its status closely to provide timely updates and mitigation recommendations.

## Threat Details
- Verdict: MALICIOUS
- Site status: alive (HTTP 530)
- Page title: Google

## Domain Intelligence
- Registered: 2026-02-21 07:01:08
- IP: 142.250.80.36
- SSL Issuer: WR2

## Detection Status
- VirusTotal: 15 vendors flagged
  Vendors: ["ADMINUSLabs", "ChainPatrol", "BitDefender", "CRDF", "CyRadar", "ESET", "Forcepoint ThreatSeeker", "Fortinet", "G-Data", "Google Safebrowsing", "Kaspersky", "Lionic", "SOCRadar", "Sophos", "Webroot"]
- Google Safe Browsing: clean
- Blocklists: 2 hits
  Lists: ["PhishDestroy", "MetaMask"]

## Evidence
- Screenshot: https://urlscan.io/screenshots/019bb295-a12f-7547-a9dc-86c04d188a3e.png
- PhishDestroy: https://phishdestroy.io/domain/gmx.stakingsrewards.club/
- LLM endpoint: https://phishdestroy.io/domain/gmx.stakingsrewards.club/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gmx.stakingsrewards.club/
Last updated: 2026-03-19