# gro58v-cointelegraph.com — SUSPICIOUS

> PhishDestroy flags gro58v-cointelegraph.com as a counterfeit Cointelegraph clone pushing fake crypto giveaways. Check the full report.

## Summary
PhishDestroy identifies gro58v-cointelegraph.com as an active phishing domain masquerading as a legitimate Cointelegraph news outlet to harvest cryptocurrency investments. The fraudulent site was registered on April 12, 2026 through NICENIC INTERNATIONAL GROUP CO., LIMITED and resolves to IP 75.2.60.5. At present the domain remains undetected by 95 VirusTotal engines, indicating low signature coverage and a heightened risk of successful deception.  This domain was flagged under generic_phishing with a current risk level of under_investigation. The SSL certificate issued by Let’s Encrypt adds a veneer of legitimacy, while the recent creation date and unlisted status on major blocklists create a dangerous combination that can bypass automated defenses. Evidence shows zero detections on VirusTotal (0/95), indicating the site has not yet been widely profiled by security vendors.  If you have visited gro58v-cointelegraph.com, cease any cryptocurrency transactions connected to the site, revoke any API keys or wallet approvals exposed on the page, and run a full antivirus scan. Do not enter login credentials or personal information. Report the domain to your browser vendor and local cybercrime unit, and consider rotating passwords on unrelated accounts if the same credentials were reused. Monitor wallet addresses and blockchain transactions for unauthorized transfers.

## Threat Details
- Verdict: SUSPICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2026-04-12 03:05:22
- Registrar: NICENIC INTERNATIONAL GROUP CO., LIMITED
- IP: 75.2.60.5

## Detection Status
- VirusTotal: 0 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/75ffbc81-73ee-4f3a-b6a2-efe4639fac0e
- PhishDestroy: https://phishdestroy.io/domain/gro58v-cointelegraph.com/
- LLM endpoint: https://phishdestroy.io/domain/gro58v-cointelegraph.com/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/gro58v-cointelegraph.com/
Last updated: 2026-04-13